Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364DD25/F30273FA529D11F095582EAADAE4EC9C/09F47684529F11F0AC9FA6B2DAE4EC9C.roa
File: 09F47684529F11F0AC9FA6B2DAE4EC9C.roa (raw, json)
Hash identifier: MdGJ3CUnVttvPq+a7aB4/HqidShiV81Q3YLvvUB2hgE=
Subject key identifier: 6F:F7:C8:26:19:39:EC:F1:7D:CD:80:39:7D:BD:5A:4A:03:4E:AD:4F
Certificate issuer: /CN=F364DD25AF/serialNumber=04D6CAC23B145B66ED68BED67F2C1D87665CF5B2
Certificate serial: 04
Authority key identifier: 04:D6:CA:C2:3B:14:5B:66:ED:68:BE:D6:7F:2C:1D:87:66:5C:F5:B2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/BNbKwjsUW2btaL7Wfywdh2Zc9bI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364DD25/F30273FA529D11F095582EAADAE4EC9C/09F47684529F11F0AC9FA6B2DAE4EC9C.roa
Signing time: Thu 26 Jun 2025 15:05:47 +0000
ROA not before: Thu 26 Jun 2025 15:05:42 +0000
ROA not after: Sat 26 Jun 2027 15:05:42 +0000
asID: 328965
IP address blocks: 102.208.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364DD25/F30273FA529D11F095582EAADAE4EC9C/BNbKwjsUW2btaL7Wfywdh2Zc9bI.crl
rsync://rpki.afrinic.net/repository/member_repository/F364DD25/F30273FA529D11F095582EAADAE4EC9C/BNbKwjsUW2btaL7Wfywdh2Zc9bI.mft
rsync://rpki.afrinic.net/repository/afrinic/BNbKwjsUW2btaL7Wfywdh2Zc9bI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Jul 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364DD25AF, serialNumber=04D6CAC23B145B66ED68BED67F2C1D87665CF5B2
Validity
Not Before: Jun 26 15:05:42 2025 GMT
Not After : Jun 26 15:05:42 2027 GMT
Subject: CN=685d61cb-63fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:06:9e:8d:f4:88:c6:4a:71:16:d4:d3:0c:8f:
65:03:ec:19:01:31:e0:45:91:15:95:09:ff:1b:4d:
b2:6c:ee:69:b2:71:1d:7b:aa:94:bb:ca:1b:f8:8a:
b3:50:61:80:7a:14:86:f9:9d:0b:95:ad:68:56:39:
7e:bd:a2:0b:2e:09:9d:e0:f7:b7:b6:45:1a:50:50:
b1:9f:2d:44:b8:f0:03:df:73:0a:93:14:c3:07:17:
b5:10:b1:b2:5e:d2:d5:8b:7d:6e:2c:ad:bd:82:bc:
7e:de:9d:86:5d:a1:7d:c3:1d:8e:94:e1:af:2f:8f:
75:5c:0a:af:4f:b9:59:5f:0f:79:81:31:68:26:9a:
8b:dd:b1:71:15:1b:48:22:83:f0:2b:1c:8b:40:04:
da:25:b1:c0:eb:26:de:3c:07:96:c4:ee:b7:bc:a5:
da:65:ad:4e:98:1a:3b:c9:b1:6b:09:d3:80:d0:59:
9d:85:04:65:a9:40:d4:7d:2c:31:a0:59:b2:16:f5:
32:d9:8e:ea:a4:b1:3e:3b:ad:c4:bc:f2:c6:64:5a:
9d:40:2b:61:81:6a:76:a9:56:23:92:ea:40:70:18:
4d:9d:72:7d:59:9e:44:ec:fb:eb:e3:f6:b5:dc:f1:
59:a5:58:b7:04:92:58:f1:5e:58:c9:ad:16:6d:bc:
0e:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:F7:C8:26:19:39:EC:F1:7D:CD:80:39:7D:BD:5A:4A:03:4E:AD:4F
X509v3 Authority Key Identifier:
keyid:04:D6:CA:C2:3B:14:5B:66:ED:68:BE:D6:7F:2C:1D:87:66:5C:F5:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364DD25/F30273FA529D11F095582EAADAE4EC9C/BNbKwjsUW2btaL7Wfywdh2Zc9bI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/BNbKwjsUW2btaL7Wfywdh2Zc9bI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364DD25/F30273FA529D11F095582EAADAE4EC9C/09F47684529F11F0AC9FA6B2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.208.241.0/24
Signature Algorithm: sha256WithRSAEncryption
34:20:b9:3a:98:87:99:23:ec:ff:5b:0b:54:ee:81:e5:09:31:
db:3e:45:4c:f7:e7:b6:52:9c:8f:6a:9d:fa:e2:dd:5f:e0:fd:
f7:7f:41:72:9b:e8:4c:84:20:60:a2:ee:f5:50:f1:6f:54:b4:
30:4d:e5:56:07:5d:d1:3c:20:2f:0c:97:60:33:2f:22:d3:5f:
98:52:ea:87:2e:fb:b3:f3:c0:8e:61:15:d6:a5:08:ce:b5:2a:
7c:0d:fb:3f:42:49:81:e7:ca:30:91:64:0d:43:12:0f:e2:86:
37:63:87:e1:ee:da:ea:b0:78:5c:e2:36:f6:fe:e0:bc:10:c8:
bb:b1:28:56:b8:81:7c:be:d7:e7:ba:7a:45:51:f8:29:be:9f:
ff:0a:85:67:5a:45:0e:b6:4e:2f:c3:9d:2c:d3:90:4b:30:66:
f4:59:15:d3:c4:7a:06:ec:ce:6d:42:6b:4d:c9:fd:f0:37:53:
1e:b5:8d:b3:77:d5:77:87:83:df:29:5d:bc:88:b9:30:ae:81:
a3:c0:66:26:20:50:9e:32:e9:da:a1:41:bb:16:74:26:12:fa:
85:7b:f5:ca:10:63:b6:7a:a9:5a:85:73:48:9a:5f:44:d8:d5:
2e:77:12:a7:64:9c:4f:0d:b0:91:a7:ae:be:57:f4:37:7a:0e:
8a:69:8f:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 08:05:09 2025 by rpki-client