Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363763A/B60ABD70536F11ED855D7AA2F1222468/0C17C5923C6511F0BEB31A91DAE4EC9C.roa
File: 0C17C5923C6511F0BEB31A91DAE4EC9C.roa (raw, json)
Hash identifier: Dk3egDXLcZWiCKWFaQebnI7KBH7G+aSO1771Cj6q3cY=
Subject key identifier: 6C:02:BC:95:70:0F:61:CB:E4:70:F0:21:24:4F:E7:66:81:D1:B2:9C
Certificate issuer: /CN=F363763AAF/serialNumber=099DBB9928A5C29FA5922CFDB95F190EC0FB4AC8
Certificate serial: 03DF
Authority key identifier: 09:9D:BB:99:28:A5:C2:9F:A5:92:2C:FD:B9:5F:19:0E:C0:FB:4A:C8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CZ27mSilwp-lkiz9uV8ZDsD7Ssg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363763A/B60ABD70536F11ED855D7AA2F1222468/0C17C5923C6511F0BEB31A91DAE4EC9C.roa
Signing time: Thu 29 May 2025 08:15:14 +0000
ROA not before: Thu 29 May 2025 08:15:09 +0000
ROA not after: Wed 29 May 2030 08:15:09 +0000
asID: 328535
IP address blocks: 102.36.212.0/23 maxlen: 23
102.36.212.0/24 maxlen: 24
102.36.213.0/24 maxlen: 24
102.36.214.0/23 maxlen: 23
102.36.214.0/24 maxlen: 24
102.36.215.0/24 maxlen: 24
2c0f:d80::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363763A/B60ABD70536F11ED855D7AA2F1222468/CZ27mSilwp-lkiz9uV8ZDsD7Ssg.crl
rsync://rpki.afrinic.net/repository/member_repository/F363763A/B60ABD70536F11ED855D7AA2F1222468/CZ27mSilwp-lkiz9uV8ZDsD7Ssg.mft
rsync://rpki.afrinic.net/repository/afrinic/CZ27mSilwp-lkiz9uV8ZDsD7Ssg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 10 Jun 2025 00:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 991 (0x3df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363763AAF, serialNumber=099DBB9928A5C29FA5922CFDB95F190EC0FB4AC8
Validity
Not Before: May 29 08:15:09 2025 GMT
Not After : May 29 08:15:09 2030 GMT
Subject: CN=68381792-8edc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:44:80:e2:97:01:00:2e:e0:f6:07:f0:d2:a7:
c4:e6:8f:32:e2:b0:0b:54:92:64:f0:60:f8:a6:d3:
0a:c4:bd:df:fb:8f:b5:ef:57:ab:83:bc:50:12:95:
20:09:30:e0:a4:7d:1e:7a:e3:c0:c9:42:2d:d5:fd:
91:70:87:37:87:2b:cb:68:d0:ab:1a:3d:5e:71:b0:
5e:30:e3:37:07:6e:68:2f:db:b9:51:ce:0b:92:76:
1b:70:07:8a:e1:88:77:07:12:1d:49:5d:83:7b:cb:
30:85:16:22:1e:b9:a5:ba:5a:9e:1e:fd:a2:04:b5:
c2:32:c7:c7:38:af:b2:96:7f:90:1d:6e:95:a0:cc:
98:20:dd:a9:f0:8c:37:41:65:23:9e:90:f7:b1:f9:
95:7d:92:b8:21:44:64:d3:27:b0:16:c9:74:96:6c:
49:35:b1:3f:bd:7d:31:2f:70:da:43:b4:47:52:dc:
2f:ef:37:03:53:8c:68:e9:10:2f:77:4e:6b:3a:b9:
61:64:de:f0:e4:e0:07:68:4a:f3:42:09:1b:8f:da:
a7:18:0d:d2:74:05:e8:df:4e:9f:01:3c:a3:6e:c9:
7e:1d:ac:8f:ba:b3:18:fe:29:3f:dc:98:4d:d3:76:
38:44:a8:3a:09:81:81:e0:5b:4b:ae:2b:bf:c7:22:
94:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:02:BC:95:70:0F:61:CB:E4:70:F0:21:24:4F:E7:66:81:D1:B2:9C
X509v3 Authority Key Identifier:
keyid:09:9D:BB:99:28:A5:C2:9F:A5:92:2C:FD:B9:5F:19:0E:C0:FB:4A:C8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363763A/B60ABD70536F11ED855D7AA2F1222468/CZ27mSilwp-lkiz9uV8ZDsD7Ssg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CZ27mSilwp-lkiz9uV8ZDsD7Ssg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363763A/B60ABD70536F11ED855D7AA2F1222468/0C17C5923C6511F0BEB31A91DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.36.212.0/22
IPv6:
2c0f:d80::/32
Signature Algorithm: sha256WithRSAEncryption
75:45:a3:8b:a1:02:56:ba:f7:3b:fd:85:9e:5a:ee:5b:86:60:
3f:45:3c:87:6e:14:12:e2:34:36:32:da:0b:0d:ba:f9:b4:7f:
ab:82:fb:77:c1:8f:af:7b:b8:37:8c:e0:d4:26:15:48:dd:91:
2f:ca:63:66:3e:9e:b3:b9:a8:5d:7e:8e:08:61:0b:10:b6:66:
31:6b:8b:7d:b2:fd:63:7d:bd:5f:3a:d7:55:46:2e:9b:63:9e:
14:66:3f:02:a7:57:49:e3:01:54:38:91:60:a8:5f:5f:a8:5d:
c1:90:7d:3d:7f:98:41:d2:a0:bd:16:49:32:51:e8:20:b9:f0:
9d:4e:13:59:0c:cf:d5:a7:cd:d4:e1:b3:3c:76:12:69:79:b1:
9b:2b:87:27:c7:f0:a2:ef:2c:cc:f2:67:eb:af:6b:f8:22:07:
1a:f0:e9:fc:65:04:e7:79:fe:57:ec:2b:73:ef:96:67:5d:61:
54:be:b1:19:ff:30:c1:1f:23:00:a1:51:21:cf:66:cd:a4:25:
37:4c:80:2b:37:5a:57:cc:cc:e8:39:2e:25:8e:a1:bf:e2:2a:
42:5d:5f:12:da:97:33:9b:7e:07:a7:94:74:d1:20:c3:5e:58:
60:6a:37:06:8e:68:d2:e4:49:ca:eb:90:48:85:1f:3f:92:69:
1c:80:9e:3d
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgICA98wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
Mzc2M0FBRjExMC8GA1UEBRMoMDk5REJCOTkyOEE1QzI5RkE1OTIyQ0ZEQjk1RjE5
MEVDMEZCNEFDODAeFw0yNTA1MjkwODE1MDlaFw0zMDA1MjkwODE1MDlaMBgxFjAU
BgNVBAMTDTY4MzgxNzkyLThlZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDMRIDilwEALuD2B/DSp8TmjzLisAtUkmTwYPim0wrEvd/7j7XvV6uDvFAS
lSAJMOCkfR5648DJQi3V/ZFwhzeHK8to0KsaPV5xsF4w4zcHbmgv27lRzguSdhtw
B4rhiHcHEh1JXYN7yzCFFiIeuaW6Wp4e/aIEtcIyx8c4r7KWf5AdbpWgzJgg3anw
jDdBZSOekPex+ZV9krghRGTTJ7AWyXSWbEk1sT+9fTEvcNpDtEdS3C/vNwNTjGjp
EC93Tms6uWFk3vDk4AdoSvNCCRuP2qcYDdJ0BejfTp8BPKNuyX4drI+6sxj+KT/c
mE3TdjhEqDoJgYHgW0uuK7/HIpRDAgMBAAGjggK0MIICsDAdBgNVHQ4EFgQUbAK8
lXAPYcvkcPAhJE/nZoHRspwwHwYDVR0jBBgwFoAUCZ27mSilwp+lkiz9uV8ZDsD7
SsgwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjM3NjNBL0I2MEFCRDcwNTM2RjExRUQ4NTVEN0FBMkYxMjIyNDY4L0NaMjdt
U2lsd3AtbGtpejl1VjhaRHNEN1NzZy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NaMjdtU2lsd3AtbGtpejl1VjhaRHNEN1NzZy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjM3NjNBL0I2MEFCRDcwNTM2RjExRUQ4NTVEN0FBMkYx
MjIyNDY4LzBDMTdDNTkyM0M2NTExRjBCRUIzMUE5MURBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAJmJNQwDQQCAAIwBwMFACwP
DYAwDQYJKoZIhvcNAQELBQADggEBAHVFo4uhAla69zv9hZ5a7luGYD9FPIduFBLi
NDYy2gsNuvm0f6uC+3fBj697uDeM4NQmFUjdkS/KY2Y+nrO5qF1+jghhCxC2ZjFr
i32y/WN9vV8611VGLptjnhRmPwKnV0njAVQ4kWCoX1+oXcGQfT1/mEHSoL0WSTJR
6CC58J1OE1kMz9WnzdThszx2Eml5sZsrhyfH8KLvLMzyZ+uva/giBxrw6fxlBOd5
/lfsK3PvlmddYVS+sRn/MMEfIwChUSHPZs2kJTdMgCs3WlfMzOg5LiWOob/iKkJd
XxLalzObfgenlHTRIMNeWGBqNwaOaNLkScrrkEiFHz+SaRyAnj0=
-----END CERTIFICATE-----
Generated at Sun Jun 8 15:26:03 2025 by rpki-client