Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/0A71212446C511F0B3816D7DDAE4EC9C.roa
File: 0A71212446C511F0B3816D7DDAE4EC9C.roa (raw, json)
Hash identifier: lv7fLpV1Z39qFrGvYE0On9CzDUQDfcH7arejVv2X+68=
Subject key identifier: 5D:35:0D:68:82:7A:8A:BA:02:82:44:98:CA:C0:A2:BC:53:9B:1B:9E
Certificate issuer: /CN=F362E39EAF/serialNumber=A1368E8BFC80F4EA5AB09716D257211936182851
Certificate serial: 0D42
Authority key identifier: A1:36:8E:8B:FC:80:F4:EA:5A:B0:97:16:D2:57:21:19:36:18:28:51
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/0A71212446C511F0B3816D7DDAE4EC9C.roa
Signing time: Wed 11 Jun 2025 13:07:35 +0000
ROA not before: Tue 24 Jun 2025 13:07:30 +0000
ROA not after: Fri 18 Oct 2030 13:07:30 +0000
asID: 11845
IP address blocks: 102.219.24.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.mft
rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 03 Jul 2025 01:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3394 (0xd42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362E39EAF, serialNumber=A1368E8BFC80F4EA5AB09716D257211936182851
Validity
Not Before: Jun 24 13:07:30 2025 GMT
Not After : Oct 18 13:07:30 2030 GMT
Subject: CN=68497f97-c7bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:00:4d:cb:7f:d5:f9:fb:ca:e7:0c:69:6f:18:
ec:34:42:a5:fd:67:d7:59:c2:23:91:19:5e:c4:a8:
63:97:13:34:2a:1d:83:99:ad:70:69:13:f6:9e:77:
37:2e:05:45:ed:2a:18:8a:b6:4f:a3:db:bb:cb:14:
2e:a3:56:da:8f:36:3b:b0:2d:ff:98:1e:4e:ed:a6:
50:80:ab:0d:ad:5b:dc:1f:7e:a5:4a:e7:53:ba:98:
dd:eb:18:fc:98:bf:96:97:87:6d:e0:7c:de:a4:42:
ba:03:9a:c0:87:4b:e3:17:32:d1:1a:2e:85:a4:48:
84:2b:a1:ee:ee:45:d5:ba:d3:65:eb:86:99:79:73:
83:ea:4f:ac:b6:b1:d9:99:d5:3f:5e:c1:10:33:a6:
b9:00:71:36:d4:20:6b:f3:47:b4:ba:9f:14:4f:49:
49:bc:ec:18:66:10:01:5c:f1:e8:4b:57:c3:e9:92:
06:31:f4:1a:63:82:dd:e4:c3:1b:23:e9:b7:63:a2:
39:3c:6a:d8:6e:4b:f9:50:a2:8c:1b:df:c7:4a:0f:
d8:2a:4c:40:63:e2:ea:4b:d6:57:dd:77:c0:b2:93:
a7:d7:ce:6c:20:7e:53:b0:a9:13:84:33:e7:9f:d6:
90:51:a8:4d:e0:8b:65:0c:48:16:35:42:41:f7:d7:
43:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:35:0D:68:82:7A:8A:BA:02:82:44:98:CA:C0:A2:BC:53:9B:1B:9E
X509v3 Authority Key Identifier:
keyid:A1:36:8E:8B:FC:80:F4:EA:5A:B0:97:16:D2:57:21:19:36:18:28:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/0A71212446C511F0B3816D7DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.219.24.0/22
Signature Algorithm: sha256WithRSAEncryption
af:31:d9:d6:cd:61:f8:a7:86:25:6b:c9:4d:30:30:e9:6e:65:
93:2e:02:7b:ec:9b:8f:3f:51:2e:fb:52:0c:c7:50:5b:e5:1c:
bb:16:78:51:81:cf:66:c9:60:e3:9a:56:e6:77:f8:e4:6b:f1:
2a:82:41:03:99:68:7a:dc:17:94:ec:db:57:1d:a5:e6:58:8c:
c9:76:ab:cd:b1:71:40:05:84:69:4d:2e:1c:eb:13:43:ab:62:
e3:10:d6:4f:f5:1f:16:fc:fa:0e:cc:c4:ba:4b:cb:a6:34:22:
0d:0b:fe:6f:4c:de:b0:43:de:e1:4b:9b:30:ca:2c:50:2a:0b:
72:69:4b:6b:1a:8c:a7:5f:c5:f6:26:1a:65:05:9c:68:92:5c:
54:b2:71:8c:e4:6d:b3:58:56:68:c4:03:46:3d:4d:df:75:f4:
e6:ed:30:98:73:48:86:e6:f3:ad:be:a7:4e:a1:83:36:9d:cb:
ac:e8:6d:5a:ed:1f:6d:f0:7e:bc:27:c3:d8:65:c6:91:1b:a3:
19:07:5b:19:61:1b:89:5c:b6:2a:05:65:e3:8d:37:fa:19:7a:
c2:1c:33:8c:c9:fa:2d:eb:68:5a:4f:b5:cf:2b:3a:b1:fb:02:
5c:4c:40:5a:e0:1b:82:d6:5a:03:be:98:c6:8e:25:0e:5d:c4:
25:18:64:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 07:57:01 2025 by rpki-client