Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/87CF258C2DA511F09658F3D7DAE4EC9C.roa
File: 87CF258C2DA511F09658F3D7DAE4EC9C.roa (raw, json)
Hash identifier: VWlaDjgTjpyuACktZVZWNtbFZ4HkyIqtY/A3o1MKtyU=
Subject key identifier: 3E:9E:62:AB:05:8C:BD:08:C6:9C:76:BB:CE:C9:53:D0:D7:D6:25:7B
Certificate issuer: /CN=F364FE7FAF/serialNumber=4102690498AC378BFFEFEE27BC695F91A123BF43
Certificate serial: 037D
Authority key identifier: 41:02:69:04:98:AC:37:8B:FF:EF:EE:27:BC:69:5F:91:A1:23:BF:43
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/QQJpBJisN4v_7-4nvGlfkaEjv0M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/87CF258C2DA511F09658F3D7DAE4EC9C.roa
Signing time: Sat 10 May 2025 13:49:02 +0000
ROA not before: Sat 10 May 2025 13:48:57 +0000
ROA not after: Fri 10 May 2030 13:48:57 +0000
asID: 328200
IP address blocks: 102.212.136.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/QQJpBJisN4v_7-4nvGlfkaEjv0M.crl
rsync://rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/QQJpBJisN4v_7-4nvGlfkaEjv0M.mft
rsync://rpki.afrinic.net/repository/afrinic/QQJpBJisN4v_7-4nvGlfkaEjv0M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Jun 2025 03:25:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 893 (0x37d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364FE7FAF, serialNumber=4102690498AC378BFFEFEE27BC695F91A123BF43
Validity
Not Before: May 10 13:48:57 2025 GMT
Not After : May 10 13:48:57 2030 GMT
Subject: CN=681f594e-1891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:51:31:ae:8e:80:d4:83:9d:7f:19:1b:5b:ad:
5f:33:3d:81:94:e5:22:1a:e9:47:54:db:ce:0b:84:
b7:00:3e:40:94:92:9f:fc:5f:a0:3e:fa:09:7f:1d:
8b:6c:34:27:ed:b7:9e:ab:84:1d:80:9a:7c:f4:cd:
32:fc:0b:6e:d0:53:84:3b:6c:1f:8b:f4:d4:02:a0:
1f:ce:fe:eb:b0:5b:8c:c3:57:31:9a:4e:cd:13:ee:
ed:9f:f6:d6:f8:00:8e:d8:b8:b1:7f:fd:d7:87:e9:
79:99:d6:48:3b:b5:78:20:6f:c1:f7:e3:56:d4:c2:
8a:cb:42:11:db:ae:6d:dd:63:b4:b7:ef:49:bd:3f:
4d:35:e9:cc:9e:96:a4:90:fd:42:fd:00:25:13:7b:
74:45:4e:c8:b7:65:70:5e:d6:13:3e:04:8c:fa:11:
d5:dd:c5:70:f8:b9:12:12:f7:4d:cf:ed:4e:1f:4a:
cc:ed:d4:5d:1a:51:b9:da:bf:0c:1a:b5:24:15:44:
52:ac:c8:9b:02:4a:09:bd:d4:81:43:4d:76:cc:b5:
58:45:5a:18:8d:d6:15:48:53:4a:f1:84:30:c5:82:
c9:18:ef:b7:95:6f:ce:1b:d6:e8:c9:6f:76:59:5c:
52:d1:7c:75:14:3a:1e:5d:18:09:fe:70:32:ff:5f:
c8:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:9E:62:AB:05:8C:BD:08:C6:9C:76:BB:CE:C9:53:D0:D7:D6:25:7B
X509v3 Authority Key Identifier:
keyid:41:02:69:04:98:AC:37:8B:FF:EF:EE:27:BC:69:5F:91:A1:23:BF:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/QQJpBJisN4v_7-4nvGlfkaEjv0M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/QQJpBJisN4v_7-4nvGlfkaEjv0M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/87CF258C2DA511F09658F3D7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.212.136.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:1f:cc:5c:42:fd:9e:75:dd:48:c4:fb:91:17:60:1c:f5:f0:
a0:11:34:85:5c:de:fc:c8:54:61:b7:a7:bc:de:af:69:71:f2:
1b:3a:a6:a3:4a:0c:f9:a6:07:c4:84:5e:18:5d:3e:fb:6e:b5:
8b:9a:b7:cf:13:a1:fb:e3:81:ce:b3:71:80:aa:cd:06:91:27:
bf:d2:1f:83:7d:40:a7:73:32:b2:b3:9a:30:82:d2:02:f1:96:
34:43:3d:72:38:6d:d8:31:64:4a:62:c9:4b:f0:b4:e1:b0:5d:
e9:e7:b4:a5:17:6a:d9:43:32:fe:bf:6d:45:72:e3:15:3f:7c:
c1:03:44:2d:87:19:a6:d7:99:2e:2a:57:ef:24:52:bd:10:ae:
d6:6f:90:51:94:e9:61:d9:21:78:e4:6c:dd:d6:5f:e7:05:b3:
67:97:80:ea:12:fc:0d:42:14:84:f9:7d:76:4f:bf:a4:70:14:
82:09:e4:21:2b:fc:ff:43:69:13:25:32:3a:32:5d:9f:34:2a:
4e:a2:55:ff:dc:83:41:04:19:36:8e:de:4b:4b:80:65:8b:6a:
8b:36:54:a8:07:21:79:6f:57:2d:ef:12:8b:93:7d:20:b2:28:
bc:84:9c:cf:e5:2d:09:1b:2d:32:f6:77:fc:13:88:9d:33:45:
cc:6b:c8:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:48:26 2025 by rpki-client