Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36580B0/24B7AD5841CE11EEB62278114AD9E6FC/F6014E24370D11F0A9AE9EC6DAE4EC9C.roa
File: F6014E24370D11F0A9AE9EC6DAE4EC9C.roa (raw, json)
Hash identifier: /c4sEFV6yDMdPKbHf6tAF/ORJg3oZvCxiMncTFmAdSI=
Subject key identifier: F4:B4:9F:52:15:05:4F:AA:00:68:5A:7F:11:12:38:6D:1D:63:5B:98
Certificate issuer: /CN=F36580B0AF/serialNumber=8361D5A6D0F3D49C6760C0EA686C67C4149DD6DF
Certificate serial: 029E
Authority key identifier: 83:61:D5:A6:D0:F3:D4:9C:67:60:C0:EA:68:6C:67:C4:14:9D:D6:DF
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/g2HVptDz1JxnYMDqaGxnxBSd1t8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36580B0/24B7AD5841CE11EEB62278114AD9E6FC/F6014E24370D11F0A9AE9EC6DAE4EC9C.roa
Signing time: Thu 22 May 2025 13:09:15 +0000
ROA not before: Thu 22 May 2025 13:09:11 +0000
ROA not after: Wed 23 May 2035 13:09:11 +0000
asID: 327992
IP address blocks: 2c0f:eea0:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36580B0/24B7AD5841CE11EEB62278114AD9E6FC/g2HVptDz1JxnYMDqaGxnxBSd1t8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36580B0/24B7AD5841CE11EEB62278114AD9E6FC/g2HVptDz1JxnYMDqaGxnxBSd1t8.mft
rsync://rpki.afrinic.net/repository/afrinic/g2HVptDz1JxnYMDqaGxnxBSd1t8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 03:58:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 670 (0x29e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36580B0AF, serialNumber=8361D5A6D0F3D49C6760C0EA686C67C4149DD6DF
Validity
Not Before: May 22 13:09:11 2025 GMT
Not After : May 23 13:09:11 2035 GMT
Subject: CN=682f21fb-296f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:44:3f:e0:a2:4a:a0:72:fa:fd:65:f9:aa:ba:
af:a1:bc:28:ba:a5:2f:61:2e:83:c1:ed:79:d7:a0:
ac:4b:9b:f9:17:69:18:85:37:5c:9a:bc:d2:1f:08:
c5:ba:80:3c:5c:8d:84:91:af:ef:1f:32:82:4a:46:
22:52:2e:1a:2c:eb:6c:ff:9d:db:f2:e4:02:18:68:
18:0e:26:ae:70:8b:82:30:96:01:bd:c9:7b:37:b1:
d1:04:e0:07:2f:de:82:ba:72:66:e3:80:55:d1:50:
3c:d8:a8:80:67:fc:42:f7:56:04:34:b3:61:14:c3:
ff:eb:cb:a6:3a:f0:35:ba:36:be:6b:06:d6:42:9c:
e2:cf:86:e9:5f:f5:de:07:96:33:bd:fc:1f:78:29:
e3:36:0e:fa:a7:d6:07:4c:b8:c4:42:57:b0:77:0f:
23:57:0d:19:10:4f:1b:70:81:e1:ed:a7:96:53:ad:
bd:91:a0:a9:8a:e5:b9:bc:cb:e8:81:a8:6e:6d:5a:
2a:61:a3:d4:12:38:5a:3c:22:4c:7f:4e:38:ff:92:
96:b5:6f:0e:b0:53:6b:44:88:23:ea:95:61:27:51:
78:da:84:e5:fd:1b:d5:38:1a:a9:e4:64:23:ed:9f:
6a:12:93:3e:df:fa:97:9f:9c:cc:8c:84:e6:39:2c:
dc:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:B4:9F:52:15:05:4F:AA:00:68:5A:7F:11:12:38:6D:1D:63:5B:98
X509v3 Authority Key Identifier:
keyid:83:61:D5:A6:D0:F3:D4:9C:67:60:C0:EA:68:6C:67:C4:14:9D:D6:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36580B0/24B7AD5841CE11EEB62278114AD9E6FC/g2HVptDz1JxnYMDqaGxnxBSd1t8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/g2HVptDz1JxnYMDqaGxnxBSd1t8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36580B0/24B7AD5841CE11EEB62278114AD9E6FC/F6014E24370D11F0A9AE9EC6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:eea0:2::/48
Signature Algorithm: sha256WithRSAEncryption
3b:6c:45:f9:75:29:95:53:1b:8c:12:55:88:de:c0:3a:60:25:
a5:20:f8:1f:93:d9:18:b8:1c:c4:c4:63:58:9e:7a:1a:0b:03:
d3:44:d2:a7:76:8e:d8:ed:90:96:e6:6e:8c:98:1b:76:a3:dd:
80:a1:c4:cb:3d:cc:9d:12:c1:a5:2c:ae:62:92:08:a9:0d:0c:
fc:c7:0f:cb:cf:d6:88:44:91:0b:8b:50:6d:ce:a0:82:f2:33:
76:67:5b:0b:c9:43:90:b5:ba:7c:07:66:f0:2b:28:28:91:00:
83:09:55:16:2e:d9:80:e4:e8:67:b7:95:08:cc:75:d9:2b:0f:
59:9a:a8:72:a4:f8:f6:d4:5f:6a:2e:ba:6c:4f:98:6f:e2:7c:
3d:78:80:cc:5b:9d:37:20:fd:fd:f7:66:d3:2c:79:86:f8:7d:
53:1f:7c:90:44:e6:5f:2c:b0:0c:c4:18:eb:3c:f9:0e:aa:c4:
2d:18:09:48:85:4e:fd:7a:45:d8:0a:7a:01:4d:c3:fc:d9:ec:
7f:e5:18:60:99:d2:85:ea:73:ec:50:5a:24:05:6a:7f:c8:a6:
e2:ac:7a:7d:a8:fe:d7:53:9e:8e:f6:bb:40:96:3c:05:f3:24:
2a:88:2b:32:14:26:7b:99:34:13:f6:2f:5a:21:9e:07:1f:fc:
ab:76:e1:17
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgICAp4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NTgwQjBBRjExMC8GA1UEBRMoODM2MUQ1QTZEMEYzRDQ5QzY3NjBDMEVBNjg2QzY3
QzQxNDlERDZERjAeFw0yNTA1MjIxMzA5MTFaFw0zNTA1MjMxMzA5MTFaMBgxFjAU
BgNVBAMTDTY4MmYyMWZiLTI5NmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDQRD/gokqgcvr9Zfmquq+hvCi6pS9hLoPB7XnXoKxLm/kXaRiFN1yavNIf
CMW6gDxcjYSRr+8fMoJKRiJSLhos62z/ndvy5AIYaBgOJq5wi4IwlgG9yXs3sdEE
4Acv3oK6cmbjgFXRUDzYqIBn/EL3VgQ0s2EUw//ry6Y68DW6Nr5rBtZCnOLPhulf
9d4HljO9/B94KeM2Dvqn1gdMuMRCV7B3DyNXDRkQTxtwgeHtp5ZTrb2RoKmK5bm8
y+iBqG5tWipho9QSOFo8Ikx/Tjj/kpa1bw6wU2tEiCPqlWEnUXjahOX9G9U4Gqnk
ZCPtn2oSkz7f+pefnMyMhOY5LNx/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9LSf
UhUFT6oAaFp/ERI4bR1jW5gwHwYDVR0jBBgwFoAUg2HVptDz1JxnYMDqaGxnxBSd
1t8wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjU4MEIwLzI0QjdBRDU4NDFDRTExRUVCNjIyNzgxMTRBRDlFNkZDL2cySFZw
dER6MUp4bllNRHFhR3hueEJTZDF0OC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2cySFZwdER6MUp4bllNRHFhR3hueEJTZDF0OC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjU4MEIwLzI0QjdBRDU4NDFDRTExRUVCNjIyNzgxMTRB
RDlFNkZDL0Y2MDE0RTI0MzcwRDExRjBBOUFFOUVDNkRBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAsD+6gAAIwDQYJKoZIhvcN
AQELBQADggEBADtsRfl1KZVTG4wSVYjewDpgJaUg+B+T2Ri4HMTEY1ieehoLA9NE
0qd2jtjtkJbmboyYG3aj3YChxMs9zJ0SwaUsrmKSCKkNDPzHD8vP1ohEkQuLUG3O
oILyM3ZnWwvJQ5C1unwHZvArKCiRAIMJVRYu2YDk6Ge3lQjMddkrD1maqHKk+PbU
X2ouumxPmG/ifD14gMxbnTcg/f33ZtMseYb4fVMffJBE5l8ssAzEGOs8+Q6qxC0Y
CUiFTv16RdgKegFNw/zZ7H/lGGCZ0oXqc+xQWiQFan/IpuKsen2o/tdTno72u0CW
PAXzJCqIKzIUJnuZNBP2L1ohngcf/Kt24Rc=
-----END CERTIFICATE-----
Generated at Sat Jun 7 05:10:55 2025 by rpki-client