Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36364C2/643B7A54B58411ECB7CFC7755A40D577/5378F76C349511F096B3B5C7DAE4EC9C.roa
File: 5378F76C349511F096B3B5C7DAE4EC9C.roa (raw, json)
Hash identifier: HLBVldJzh2ysbRoXQEfhequ4jMArrYS5fveYMjIw02U=
Subject key identifier: 38:22:FC:B3:31:C7:3E:C6:F6:A1:DA:41:D3:30:5D:C2:7D:53:C1:5F
Certificate issuer: /CN=F36364C2AF/serialNumber=5EE80C7E888C71B3102418780BD6E10A52D17088
Certificate serial: 04A2
Authority key identifier: 5E:E8:0C:7E:88:8C:71:B3:10:24:18:78:0B:D6:E1:0A:52:D1:70:88
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/XugMfoiMcbMQJBh4C9bhClLRcIg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36364C2/643B7A54B58411ECB7CFC7755A40D577/5378F76C349511F096B3B5C7DAE4EC9C.roa
Signing time: Mon 19 May 2025 09:40:41 +0000
ROA not before: Mon 19 May 2025 09:40:36 +0000
ROA not after: Sun 19 May 2030 09:40:36 +0000
asID: 328974
IP address blocks: 102.206.84.0/22 maxlen: 24
102.206.84.0/30 maxlen: 32
102.217.228.0/22 maxlen: 24
102.217.228.0/30 maxlen: 32
2c0f:5f00::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36364C2/643B7A54B58411ECB7CFC7755A40D577/XugMfoiMcbMQJBh4C9bhClLRcIg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36364C2/643B7A54B58411ECB7CFC7755A40D577/XugMfoiMcbMQJBh4C9bhClLRcIg.mft
rsync://rpki.afrinic.net/repository/afrinic/XugMfoiMcbMQJBh4C9bhClLRcIg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Jun 2025 02:54:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1186 (0x4a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36364C2AF, serialNumber=5EE80C7E888C71B3102418780BD6E10A52D17088
Validity
Not Before: May 19 09:40:36 2025 GMT
Not After : May 19 09:40:36 2030 GMT
Subject: CN=682afc99-8da8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:27:72:fb:1c:e1:9c:62:65:ee:43:86:a7:0f:
82:d1:ad:bf:59:53:cb:83:f7:79:b9:ea:27:34:f7:
86:22:57:d2:78:79:8b:2c:35:61:8f:e9:72:bd:bc:
71:7a:68:ba:b3:ee:d3:d8:35:25:5a:43:83:3f:c9:
0c:20:49:a0:ed:10:fe:8d:93:fa:2c:e2:99:a8:93:
72:ea:b3:fe:be:d3:38:62:6f:2c:d8:b7:72:76:8a:
a7:88:7f:97:09:bc:d9:5a:96:45:f8:88:66:6a:15:
cc:9f:88:8f:c0:5f:90:dd:62:f5:6b:d4:6a:84:d0:
61:8d:d4:00:a9:e7:0a:76:0f:5c:91:24:36:05:51:
44:65:c7:f8:43:ca:d4:f0:dd:9a:79:6e:a3:4d:e0:
d8:bb:ef:53:4a:63:bf:b5:71:dd:da:92:dc:78:6a:
19:77:01:a8:1f:b1:c1:16:54:50:52:9a:43:9f:ce:
6b:ad:f9:16:ac:eb:09:0d:e0:d0:58:36:c2:7e:ff:
56:4d:03:08:6c:fb:bf:2d:ef:7c:17:e9:34:08:1a:
a7:ab:d7:13:37:7a:d6:07:a3:4a:32:a1:6b:52:74:
5d:3e:cf:f5:17:72:0a:47:64:f3:2a:b3:3b:7b:bb:
b9:bc:3c:50:63:dd:f2:e5:2a:87:d8:77:6b:25:03:
e0:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:22:FC:B3:31:C7:3E:C6:F6:A1:DA:41:D3:30:5D:C2:7D:53:C1:5F
X509v3 Authority Key Identifier:
keyid:5E:E8:0C:7E:88:8C:71:B3:10:24:18:78:0B:D6:E1:0A:52:D1:70:88
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36364C2/643B7A54B58411ECB7CFC7755A40D577/XugMfoiMcbMQJBh4C9bhClLRcIg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/XugMfoiMcbMQJBh4C9bhClLRcIg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36364C2/643B7A54B58411ECB7CFC7755A40D577/5378F76C349511F096B3B5C7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.206.84.0/22
102.217.228.0/22
IPv6:
2c0f:5f00::/32
Signature Algorithm: sha256WithRSAEncryption
58:7c:c3:3e:1b:af:c3:1d:30:2b:78:38:63:23:b4:d4:34:7f:
67:51:41:62:51:3d:3f:ca:b7:b5:54:cc:e3:01:83:f0:e0:67:
bb:be:6f:c5:49:55:df:6b:f7:01:ee:de:2f:af:1a:3c:1f:41:
35:c1:b9:b4:48:eb:9b:24:53:e1:96:1b:80:2b:26:c5:eb:9d:
3c:d7:28:3d:09:1d:5f:21:6f:3f:c0:66:6b:62:5d:d4:96:17:
cc:6e:c1:12:50:c3:d9:c1:92:80:ff:1a:9c:4a:55:c8:f7:fb:
db:ab:16:66:ff:6e:78:a8:ad:83:41:42:21:27:b9:d5:ba:ea:
08:0e:da:12:2f:9c:de:b7:90:7b:01:1e:49:f6:0a:97:61:ea:
6b:2c:95:70:ad:a1:eb:25:04:a1:5b:59:cd:1e:24:d1:0c:3f:
45:91:ab:fb:83:32:ed:58:ff:72:0b:48:59:43:9e:94:9a:73:
56:ee:d3:f8:28:3d:b0:5c:06:fb:f4:fc:61:f0:ce:31:95:9e:
85:a4:6c:d1:3c:da:15:7c:b1:f7:48:98:b3:4d:d6:97:a7:11:
17:04:36:43:d0:86:81:49:46:bc:76:d3:0d:64:9e:5d:b7:a3:
ce:3c:fa:f0:cc:42:a4:bf:23:ee:9d:2a:2f:f5:46:91:38:38:
22:53:c1:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 19:05:57 2025 by rpki-client