Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B2F5/B5C786A63B9111F0A0FE1AB2DAE4EC9C/F3CD790A3B9211F0B6A215B9DAE4EC9C.roa
File: F3CD790A3B9211F0B6A215B9DAE4EC9C.roa (raw, json)
Hash identifier: uy0pfZG46ZecPcXleZMS+n60uaQG5DsddR4RCRLej+Q=
Subject key identifier: 6C:08:C6:66:38:83:16:22:ED:AB:78:8B:44:37:93:63:08:C6:75:06
Certificate issuer: /CN=F362B2F5AF/serialNumber=04C70D0FE10C8F6B2AF827B7C66617ADC2EF21E5
Certificate serial: 02
Authority key identifier: 04:C7:0D:0F:E1:0C:8F:6B:2A:F8:27:B7:C6:66:17:AD:C2:EF:21:E5
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/BMcND-EMj2sq-Ce3xmYXrcLvIeU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B2F5/B5C786A63B9111F0A0FE1AB2DAE4EC9C/F3CD790A3B9211F0B6A215B9DAE4EC9C.roa
Signing time: Wed 28 May 2025 07:11:19 +0000
ROA not before: Wed 28 May 2025 07:11:14 +0000
ROA not after: Wed 31 May 2034 07:11:14 +0000
asID: 138915
IP address blocks: 102.217.236.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B2F5/B5C786A63B9111F0A0FE1AB2DAE4EC9C/BMcND-EMj2sq-Ce3xmYXrcLvIeU.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B2F5/B5C786A63B9111F0A0FE1AB2DAE4EC9C/BMcND-EMj2sq-Ce3xmYXrcLvIeU.mft
rsync://rpki.afrinic.net/repository/afrinic/BMcND-EMj2sq-Ce3xmYXrcLvIeU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 07 Jun 2025 00:06:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B2F5AF, serialNumber=04C70D0FE10C8F6B2AF827B7C66617ADC2EF21E5
Validity
Not Before: May 28 07:11:14 2025 GMT
Not After : May 31 07:11:14 2034 GMT
Subject: CN=6836b717-1179
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f8:74:0b:87:52:c9:38:74:c6:c8:55:8c:53:
bb:c1:16:d8:99:a5:a6:7e:1f:34:b2:74:43:18:dd:
46:2a:e3:e1:a9:d3:1b:0b:93:6c:4c:10:af:85:3e:
b7:d5:48:65:a9:57:df:bb:a5:1a:d8:bc:1b:1e:d4:
0f:b8:1a:5a:d3:11:70:14:e7:77:f9:d7:1d:18:48:
36:69:51:4a:1e:cc:bb:a6:14:23:18:0f:09:7c:9a:
cd:95:a4:36:11:ab:6b:d7:d6:bb:e9:77:d9:ac:a0:
f3:b8:d8:94:46:98:72:a3:8f:1f:77:9d:0a:de:21:
04:ab:41:89:5b:ca:b2:d1:5d:78:d8:22:18:bf:2b:
00:4f:a1:05:8a:36:c5:d9:9a:be:13:81:fb:48:b1:
0c:ee:f5:bc:e4:69:62:35:0b:93:b6:12:1f:ab:4b:
bb:dd:2d:d6:25:91:00:b1:4a:d1:59:b6:69:6d:ea:
e0:97:af:3b:ef:23:f4:ec:60:6b:eb:4d:34:a1:70:
43:2f:79:66:3f:a7:a9:4e:80:09:09:1b:4d:8e:6d:
ad:72:d7:70:4d:ff:35:cc:aa:54:17:02:ab:d8:b9:
20:78:8c:5f:f9:46:5e:3b:e9:69:e5:7a:63:45:f2:
f8:90:a2:b0:bb:92:e0:23:c2:79:c3:8f:1e:98:1b:
8e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:08:C6:66:38:83:16:22:ED:AB:78:8B:44:37:93:63:08:C6:75:06
X509v3 Authority Key Identifier:
keyid:04:C7:0D:0F:E1:0C:8F:6B:2A:F8:27:B7:C6:66:17:AD:C2:EF:21:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B2F5/B5C786A63B9111F0A0FE1AB2DAE4EC9C/BMcND-EMj2sq-Ce3xmYXrcLvIeU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/BMcND-EMj2sq-Ce3xmYXrcLvIeU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B2F5/B5C786A63B9111F0A0FE1AB2DAE4EC9C/F3CD790A3B9211F0B6A215B9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.217.236.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:de:dd:44:fe:ef:68:91:d1:a6:2f:15:92:29:10:83:bb:c5:
ea:2d:ac:02:21:9c:d0:9b:fb:b0:b7:6d:e8:ba:f7:3e:08:11:
22:b6:b5:d8:bb:2c:0f:5a:f7:22:59:5d:b7:29:af:d4:3f:c7:
24:f4:45:17:84:e6:fc:7b:c5:e6:d2:4b:75:4b:0f:9b:47:89:
4f:b3:e9:a4:83:7c:36:d9:e3:7b:e2:8f:52:a4:02:c2:3d:b4:
4d:f9:ee:ac:51:be:01:b1:f2:22:cd:17:c7:8b:55:46:95:ae:
5e:52:93:5d:dd:c6:1c:cc:67:1f:dc:77:39:91:b4:60:aa:40:
26:e4:f0:68:40:07:83:c1:56:d6:de:82:95:0a:5b:69:c5:c8:
f5:35:0a:fe:89:cd:cd:d3:0a:de:61:a8:1b:05:e3:73:3a:e3:
1d:d3:f1:e8:42:a5:e8:3c:da:18:bd:75:fc:25:52:ba:72:5d:
e8:2a:1a:a8:01:e5:ac:be:52:54:a0:cd:c0:19:75:1b:dc:56:
6c:24:fc:2e:84:6d:1e:c8:31:a8:10:a0:42:a9:a4:af:9e:5c:
39:aa:5e:e1:41:87:f6:87:c2:7b:b2:49:c4:25:ab:97:88:cc:
ca:65:c6:8e:99:ec:a8:3a:67:c8:b5:e4:df:50:b7:f9:e5:9c:
1c:f0:5e:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 18:28:59 2025 by rpki-client