Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3610674/FE8B3976725911E991F8EB70F8AEA228/0530CDFC45F511F0B8D116B4DAE4EC9C.roa
File: 0530CDFC45F511F0B8D116B4DAE4EC9C.roa (raw, json)
Hash identifier: NAagYOuoz83gJBbc9yz2V2e+hj5eern7tDyLsDy4nYU=
Subject key identifier: 96:C1:45:C3:66:E6:49:4F:C8:2D:41:3C:6B:36:FA:0C:20:72:DF:99
Certificate issuer: /CN=F3610674AF/serialNumber=7046A652760C8E9035701D6A44DC271A0E33015C
Certificate serial: 08ED
Authority key identifier: 70:46:A6:52:76:0C:8E:90:35:70:1D:6A:44:DC:27:1A:0E:33:01:5C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/cEamUnYMjpA1cB1qRNwnGg4zAVw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3610674/FE8B3976725911E991F8EB70F8AEA228/0530CDFC45F511F0B8D116B4DAE4EC9C.roa
Signing time: Tue 10 Jun 2025 12:18:31 +0000
ROA not before: Tue 10 Jun 2025 12:18:26 +0000
ROA not after: Sun 10 Jun 2035 12:18:26 +0000
asID: 3741
IP address blocks: 102.65.32.0/24 maxlen: 24
102.65.33.0/24 maxlen: 24
102.65.34.0/24 maxlen: 24
102.65.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3610674/FE8B3976725911E991F8EB70F8AEA228/cEamUnYMjpA1cB1qRNwnGg4zAVw.crl
rsync://rpki.afrinic.net/repository/member_repository/F3610674/FE8B3976725911E991F8EB70F8AEA228/cEamUnYMjpA1cB1qRNwnGg4zAVw.mft
rsync://rpki.afrinic.net/repository/afrinic/cEamUnYMjpA1cB1qRNwnGg4zAVw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 15 Jun 2025 01:23:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2285 (0x8ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3610674AF, serialNumber=7046A652760C8E9035701D6A44DC271A0E33015C
Validity
Not Before: Jun 10 12:18:26 2025 GMT
Not After : Jun 10 12:18:26 2035 GMT
Subject: CN=68482297-9f86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:09:ad:41:d7:8c:81:47:16:5f:9a:95:92:9e:
cf:01:3f:72:f2:e9:16:60:5c:5c:4e:e9:e5:5e:8e:
3a:09:5d:96:14:fa:d2:11:30:13:93:71:23:08:7f:
f4:5e:10:b8:65:6a:d3:98:f1:28:dc:77:a2:8c:2a:
dd:4a:2a:5a:eb:74:c1:1e:2d:e8:32:43:49:49:83:
50:99:ff:01:15:b1:b6:30:ef:28:55:46:a1:7c:17:
e6:00:dd:c8:07:a7:0e:55:fd:9f:5c:1b:be:9a:b1:
cf:8b:ba:49:3e:cc:f1:a6:d8:2d:4f:81:c6:7a:0c:
b6:60:28:b6:15:57:70:73:fa:2f:66:8e:4b:ae:8a:
e5:c2:49:2f:d5:0c:67:37:3a:e3:dd:3b:78:c9:be:
6a:f3:fe:1b:3b:ff:6d:46:9a:c3:bd:6f:b0:24:32:
71:a6:eb:cb:cf:ff:c2:30:cb:3c:04:46:e1:1d:51:
11:d9:84:21:23:41:38:55:34:5f:60:fd:63:6b:bb:
6b:b4:d7:bc:1c:1a:fa:e4:d4:6f:90:fe:99:4b:50:
9a:fb:28:43:f4:64:18:0d:5b:9f:9b:fd:e0:07:ed:
8d:9f:17:32:42:c5:4e:04:fd:1d:53:b1:f5:a9:5b:
f9:9e:53:bc:86:aa:05:f5:60:d4:55:e1:20:de:21:
dd:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:C1:45:C3:66:E6:49:4F:C8:2D:41:3C:6B:36:FA:0C:20:72:DF:99
X509v3 Authority Key Identifier:
keyid:70:46:A6:52:76:0C:8E:90:35:70:1D:6A:44:DC:27:1A:0E:33:01:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3610674/FE8B3976725911E991F8EB70F8AEA228/cEamUnYMjpA1cB1qRNwnGg4zAVw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/cEamUnYMjpA1cB1qRNwnGg4zAVw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3610674/FE8B3976725911E991F8EB70F8AEA228/0530CDFC45F511F0B8D116B4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.65.32.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:bf:8c:d4:84:60:f2:d7:6c:9f:25:49:5d:5b:70:97:14:a3:
d3:fe:63:d9:ba:c2:a5:be:bc:46:03:72:7a:07:98:20:e3:bc:
24:bd:80:23:18:78:bc:7e:c2:0f:18:ee:de:8e:46:88:76:b5:
7a:a4:43:c3:35:f3:83:a6:d7:11:2a:2b:d9:dd:f9:a4:20:21:
d3:d9:fe:75:d4:3b:9f:8e:40:86:bf:ff:10:dc:d2:bf:af:8c:
8d:ea:1b:39:b6:eb:a7:61:9e:54:db:13:09:aa:0d:af:80:55:
d4:ac:49:6e:35:f6:f8:dc:1a:1e:a6:ee:6f:69:1e:67:74:fc:
9f:82:2c:55:47:50:b6:16:b9:5e:3b:76:15:82:42:cc:a7:61:
2d:57:c8:42:d5:37:01:e3:88:6b:d1:15:57:5b:75:e6:18:7a:
c2:f7:89:8c:ad:fa:8f:84:2d:6d:b2:1f:83:28:1f:ea:92:6c:
af:b3:2f:7d:9c:5c:43:87:79:aa:81:38:65:bc:0c:7f:5f:59:
69:ef:67:c2:fb:6e:c2:e6:09:f1:e5:24:fa:04:e0:a6:c4:ef:
b9:f4:33:1c:13:8e:e4:d3:b4:c0:1c:1c:d8:75:8b:bf:e7:62:
4d:dc:60:0e:f8:da:0f:e4:8f:38:c2:fb:5d:56:e6:21:b3:fb:
a5:59:de:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 20:41:22 2025 by rpki-client