Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3662123/0F3617B29D2811ED8302EC8AF1222468/27EE2B4290B311F09FE99A99DAE4EC9C.roa
File: 27EE2B4290B311F09FE99A99DAE4EC9C.roa (raw, json)
Hash identifier: 08bdIyeGAvENvyYR9kdIYMQj8xo49Was4u9/sqMLubc=
Subject key identifier: C5:28:D9:A9:A5:5B:30:8E:74:EE:C8:77:C3:0F:C5:37:38:32:6B:B6
Certificate issuer: /CN=F3662123AF/serialNumber=1E7D1B6E12647084043879DE5DD90790A6AD500B
Certificate serial: 03E3
Authority key identifier: 1E:7D:1B:6E:12:64:70:84:04:38:79:DE:5D:D9:07:90:A6:AD:50:0B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Hn0bbhJkcIQEOHneXdkHkKatUAs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3662123/0F3617B29D2811ED8302EC8AF1222468/27EE2B4290B311F09FE99A99DAE4EC9C.roa
Signing time: Sat 13 Sep 2025 15:05:59 +0000
ROA not before: Sat 13 Sep 2025 15:05:54 +0000
ROA not after: Sun 13 Sep 2037 15:05:54 +0000
asID: 329129
IP address blocks: 102.69.0.0/19 maxlen: 19
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3662123/0F3617B29D2811ED8302EC8AF1222468/Hn0bbhJkcIQEOHneXdkHkKatUAs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3662123/0F3617B29D2811ED8302EC8AF1222468/Hn0bbhJkcIQEOHneXdkHkKatUAs.mft
rsync://rpki.afrinic.net/repository/afrinic/Hn0bbhJkcIQEOHneXdkHkKatUAs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 18 Sep 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 995 (0x3e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3662123AF, serialNumber=1E7D1B6E12647084043879DE5DD90790A6AD500B
Validity
Not Before: Sep 13 15:05:54 2025 GMT
Not After : Sep 13 15:05:54 2037 GMT
Subject: CN=68c58857-3561
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8f:5c:07:b5:a6:79:43:8c:cf:cb:92:20:7b:
6f:f7:fb:dd:42:7e:dc:53:0e:39:3a:ae:a9:5b:bb:
08:3d:b7:9b:1e:7c:76:71:b1:ab:e2:3e:4a:22:a2:
d3:98:1d:1a:b4:33:39:15:28:4b:a4:f8:f0:40:43:
90:ba:48:2e:71:1b:f0:c4:21:65:89:f0:11:1b:50:
d9:04:06:28:6a:76:60:28:d6:bd:49:2a:25:94:e7:
7a:42:c9:f8:9e:9d:78:af:e2:4a:86:57:cd:e2:ae:
b7:0d:c2:69:1d:44:d8:a1:d4:60:d0:d3:23:64:c6:
92:33:a8:ae:6f:4c:3d:ef:5e:74:25:42:7a:4a:8f:
17:cc:d8:03:13:1b:c4:b3:04:dc:81:a7:7c:7a:57:
f2:ce:20:b6:d8:83:78:39:92:57:4e:84:09:8b:69:
e4:e6:a2:b3:11:b1:3c:94:46:b3:fb:ab:8c:a9:b2:
6f:85:6e:c0:06:4d:3a:f7:f4:4c:c6:da:dc:d0:46:
16:d0:cd:23:95:f3:7f:15:4e:f4:8f:fb:70:4e:07:
f0:c0:c4:3b:91:bb:47:2a:bb:b3:49:0f:f8:09:df:
c9:ce:82:1d:0d:97:0f:b0:c5:fd:5a:1e:e4:e1:aa:
12:f9:8b:af:8e:6e:cd:92:f1:32:8e:e4:1a:12:4b:
bb:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:28:D9:A9:A5:5B:30:8E:74:EE:C8:77:C3:0F:C5:37:38:32:6B:B6
X509v3 Authority Key Identifier:
keyid:1E:7D:1B:6E:12:64:70:84:04:38:79:DE:5D:D9:07:90:A6:AD:50:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3662123/0F3617B29D2811ED8302EC8AF1222468/Hn0bbhJkcIQEOHneXdkHkKatUAs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Hn0bbhJkcIQEOHneXdkHkKatUAs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3662123/0F3617B29D2811ED8302EC8AF1222468/27EE2B4290B311F09FE99A99DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.69.0.0/19
Signature Algorithm: sha256WithRSAEncryption
16:18:05:5e:42:43:3c:d9:99:94:0c:d1:e9:d8:b6:a7:59:a5:
b3:b8:05:6a:c8:5f:c7:5b:66:4c:5a:c5:19:3b:98:02:2a:3e:
39:be:48:00:d8:20:a8:4d:75:f4:47:fa:34:92:55:6c:b3:9c:
12:9e:46:ff:29:dc:cf:50:e2:ac:a6:e3:ac:6c:90:13:e6:14:
6f:28:ed:19:25:26:ed:2b:34:34:51:af:44:af:62:e8:b2:ea:
6c:30:65:0f:34:47:fd:4a:72:b9:f6:e0:37:2a:0f:06:3e:4e:
f1:a4:aa:5b:9b:90:76:1f:e0:da:2f:43:0c:58:f1:d5:9c:b4:
42:9c:a2:c4:c7:43:be:1c:af:46:26:4e:8e:10:48:ee:88:6d:
28:01:35:84:80:68:44:0e:ed:aa:f6:80:8f:d5:f5:ea:02:0c:
e5:1e:0f:77:6d:2c:5c:ae:f5:f6:fe:0d:99:32:80:2d:1b:4a:
c0:89:49:1a:bc:34:52:13:b2:71:fc:90:2b:ef:0e:97:43:69:
f5:86:80:fb:ea:54:e4:e1:f5:3b:c4:e0:bd:23:d3:c1:ea:18:
4f:b8:85:4c:c7:91:cf:1d:f8:6c:5b:66:2a:db:52:2c:9c:d1:
06:ee:e2:0f:1f:ca:45:a4:1c:d6:8f:b7:a2:bb:9e:ee:3c:71:
8a:28:ee:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 16 23:16:36 2025 by rpki-client