Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/E5FD19E037C111F08C089ADBDAE4EC9C.roa
File: E5FD19E037C111F08C089ADBDAE4EC9C.roa (raw, json)
Hash identifier: WSTUjBXRVuiAIXxXadMdKCjmnxqyjMHAgKMrm2ZTNkA=
Subject key identifier: BA:F9:B8:61:88:51:64:96:26:07:41:DA:A4:8A:64:5E:50:39:0C:24
Certificate issuer: /CN=F364FE7FAF/serialNumber=4102690498AC378BFFEFEE27BC695F91A123BF43
Certificate serial: 038C
Authority key identifier: 41:02:69:04:98:AC:37:8B:FF:EF:EE:27:BC:69:5F:91:A1:23:BF:43
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/QQJpBJisN4v_7-4nvGlfkaEjv0M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/E5FD19E037C111F08C089ADBDAE4EC9C.roa
Signing time: Fri 23 May 2025 10:37:18 +0000
ROA not before: Fri 23 May 2025 10:37:13 +0000
ROA not after: Thu 23 May 2030 10:37:13 +0000
asID: 328200
IP address blocks: 2c0f:ed18::/32 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/QQJpBJisN4v_7-4nvGlfkaEjv0M.crl
rsync://rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/QQJpBJisN4v_7-4nvGlfkaEjv0M.mft
rsync://rpki.afrinic.net/repository/afrinic/QQJpBJisN4v_7-4nvGlfkaEjv0M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 07 Jun 2025 03:24:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 908 (0x38c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364FE7FAF, serialNumber=4102690498AC378BFFEFEE27BC695F91A123BF43
Validity
Not Before: May 23 10:37:13 2025 GMT
Not After : May 23 10:37:13 2030 GMT
Subject: CN=68304fde-df01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:d5:76:4a:21:da:35:1a:fe:1e:39:9b:17:41:
12:58:b3:f3:2a:dd:fe:79:63:26:60:b6:22:33:50:
34:a0:64:63:96:1e:0c:33:54:f9:5d:da:ee:a6:a9:
2e:26:4d:7d:2d:5b:01:b1:a4:b3:23:99:aa:42:77:
25:b2:c5:0e:8b:9d:87:1a:7e:b9:71:17:45:dc:56:
83:ef:89:77:84:86:ed:89:aa:0d:6d:0b:b0:76:4e:
1e:9e:b8:45:91:5c:41:05:0b:92:ee:5f:22:c7:81:
39:7e:81:0a:e5:44:3c:97:71:8d:bf:d1:86:b2:ae:
82:5c:bc:35:6a:b6:97:b7:7a:69:3f:a8:20:cd:61:
54:f2:1b:ea:ab:43:34:69:c1:46:b2:c3:69:f4:7f:
b7:64:90:1d:96:a1:12:47:5e:cb:48:70:88:1e:16:
f6:31:51:49:80:bb:97:72:87:c1:41:b2:64:35:b9:
e0:c1:b8:47:0b:ba:c7:2a:c9:75:05:10:69:6a:dc:
91:1d:7f:18:b4:a0:f2:6b:49:95:35:4f:6a:ea:15:
8d:3d:14:02:20:1b:be:df:80:9c:e1:c9:31:e1:ef:
e7:52:86:ec:f0:45:07:03:ff:e8:7e:f4:85:ed:19:
c4:f3:5d:89:d1:ca:e2:14:94:bf:a9:5e:57:9b:e4:
6b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:F9:B8:61:88:51:64:96:26:07:41:DA:A4:8A:64:5E:50:39:0C:24
X509v3 Authority Key Identifier:
keyid:41:02:69:04:98:AC:37:8B:FF:EF:EE:27:BC:69:5F:91:A1:23:BF:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/QQJpBJisN4v_7-4nvGlfkaEjv0M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/QQJpBJisN4v_7-4nvGlfkaEjv0M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/E5FD19E037C111F08C089ADBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:ed18::/32
Signature Algorithm: sha256WithRSAEncryption
45:4b:0b:52:fa:3f:24:cc:92:0c:c2:27:16:3b:51:be:9f:9a:
49:92:c1:90:57:6f:3d:86:51:9d:a1:8c:55:79:d7:1e:c3:0c:
6c:19:6c:b2:46:e9:37:2c:ff:1b:45:b0:89:f9:21:75:3a:3e:
19:11:0a:17:4b:cd:29:31:71:80:e9:07:3c:50:46:f1:c5:ee:
43:9f:b1:49:2c:63:f0:6c:34:a0:3e:d8:5a:e3:b1:d5:4c:d9:
c2:7b:40:66:a7:46:b6:b0:5e:06:22:ec:66:41:2b:8e:a9:51:
ea:68:54:a9:87:f3:9c:2c:eb:93:8d:bb:c9:e2:09:d9:01:5e:
24:75:de:58:d4:d1:5f:7f:32:dc:5d:bf:b9:3a:a1:2b:ab:b5:
52:44:29:41:e3:5d:bf:ee:22:d8:92:b5:b5:ba:94:bc:3c:d0:
2a:4c:7f:85:94:8e:ed:36:df:e3:dc:2d:5a:09:33:c7:51:dd:
1b:66:da:23:a6:1a:b0:fa:8a:0a:10:22:64:d3:dc:66:da:bc:
c4:ca:8c:bb:0b:db:d0:7d:d8:96:13:32:3a:13:70:92:f7:31:
ca:2a:b8:4e:58:9d:7d:80:5d:66:bc:6a:27:0a:01:ef:00:cd:
a3:c4:06:dd:51:d4:84:53:72:ec:0a:9b:1e:16:61:ee:1d:b2:
16:07:ce:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 04:58:12 2025 by rpki-client