Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/D64D49223E5911F0956A9DBBDAE4EC9C.roa
File: D64D49223E5911F0956A9DBBDAE4EC9C.roa (raw, json)
Hash identifier: YsGQStqKKIJfkra1egaJQtfLnvLGLX2PlxNcSWIc/0Q=
Subject key identifier: 41:40:C0:B1:54:2C:2B:C9:21:91:1E:CA:82:33:2B:C4:05:F5:76:9F
Certificate issuer: /CN=F3614659AF/serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Certificate serial: 068A
Authority key identifier: 60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/D64D49223E5911F0956A9DBBDAE4EC9C.roa
Signing time: Sat 31 May 2025 20:00:02 +0000
ROA not before: Sat 31 May 2025 19:59:57 +0000
ROA not after: Fri 31 May 2030 19:59:57 +0000
asID: 996
IP address blocks: 102.215.225.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.mft
rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 10 Jun 2025 00:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1674 (0x68a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3614659AF, serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Validity
Not Before: May 31 19:59:57 2025 GMT
Not After : May 31 19:59:57 2030 GMT
Subject: CN=683b5fc2-169b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b7:4d:0b:fa:cd:95:60:43:57:53:e9:60:76:
37:36:ae:50:3f:ec:f5:b6:93:22:85:47:03:fe:b1:
c6:4d:81:bc:91:94:64:bf:6a:53:2e:f1:ae:b8:a1:
37:e1:e6:7e:b2:31:75:6d:0d:8d:22:77:12:3f:79:
65:b6:20:d0:df:55:b3:f9:2a:59:24:6f:a5:bc:04:
d0:cd:28:06:dc:e9:b2:70:54:6f:32:34:c0:18:e9:
ce:98:14:a7:07:85:2f:ea:9c:25:07:87:e0:9e:f1:
33:30:fe:88:19:04:d6:39:44:d1:04:31:1d:0b:11:
2b:63:3a:72:f7:9f:a9:fc:73:f9:b6:71:73:f8:f1:
fb:e9:b9:4e:ae:c8:78:68:14:ff:02:4a:f2:07:1d:
cf:b8:9e:79:75:55:72:74:d6:a8:cb:fb:67:1a:09:
83:a8:c0:ad:e4:20:31:4d:09:7f:66:09:b7:eb:05:
79:e2:8a:00:0d:ea:ba:e9:d7:0f:3d:49:53:3a:1f:
d4:9b:f2:87:73:25:d2:9a:05:7e:14:3a:eb:6d:18:
3a:7d:4a:20:ee:5c:22:d6:0c:51:4e:dc:43:63:4d:
f8:e8:14:26:f4:07:ef:ee:20:e0:44:71:af:ca:05:
82:32:4a:ce:af:f8:f9:33:76:74:ab:20:08:50:c2:
ed:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:40:C0:B1:54:2C:2B:C9:21:91:1E:CA:82:33:2B:C4:05:F5:76:9F
X509v3 Authority Key Identifier:
keyid:60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/D64D49223E5911F0956A9DBBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.215.225.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:31:80:a0:cb:66:56:e0:3c:ec:27:54:58:bb:ba:ad:43:b0:
0d:f7:32:79:75:05:0a:29:12:81:25:30:dc:c4:8b:88:bb:29:
b2:2e:fc:dc:53:cd:b9:4e:47:35:ad:25:1f:f6:dd:2c:df:63:
46:93:b9:c8:a1:e2:5e:fc:87:50:1f:20:6f:fd:75:ac:c0:2b:
6d:9d:9a:d8:94:7d:57:22:bc:a1:d7:e3:cb:5f:c1:e6:f5:79:
08:c4:22:0e:97:0e:4d:37:53:99:49:64:95:5e:75:7f:ab:a8:
8c:79:3d:7a:f2:75:4b:7b:cd:80:62:48:ad:e9:64:fe:ed:de:
f6:19:74:f9:45:58:9f:d5:ca:6e:d8:4e:d6:34:fd:4c:2b:a3:
a1:e5:80:b4:47:32:73:e2:32:f7:a2:d5:7f:7c:6b:7f:2c:91:
7f:b4:7c:23:3a:fd:7e:ff:a8:46:a6:cc:5f:fc:a8:76:f3:f4:
ce:e0:98:9c:46:09:1e:eb:49:48:ff:8b:df:c0:56:a8:9e:c7:
3a:77:39:d3:9a:01:83:5f:91:41:ae:d5:1d:9d:87:68:4c:5b:
98:cd:a3:90:b9:85:82:c8:02:2d:60:64:05:36:0b:dd:95:6b:
a3:66:84:22:cb:63:e4:9a:eb:a7:a4:7f:8c:12:36:6b:4c:44:
cd:03:5a:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:55:31 2025 by rpki-client