Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3662367/B4508CE8082011ED828588F7F1222468/E6DF30E4F82B11EFA5C0E79C762E951A.roa
File: E6DF30E4F82B11EFA5C0E79C762E951A.roa (raw, json)
Hash identifier: XT/378XgrexD0cGPoUkpGHpC1ayYncJAvh9qFOMCnmA=
Subject key identifier: 71:7F:FF:B1:49:FD:7A:0E:B5:B1:CD:4B:13:10:57:7E:6B:5D:6F:2E
Certificate issuer: /CN=F3662367AF/serialNumber=0BD00848F838FD90B99EDC37690720955FB00906
Certificate serial: 03F4
Authority key identifier: 0B:D0:08:48:F8:38:FD:90:B9:9E:DC:37:69:07:20:95:5F:B0:09:06
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/C9AISPg4_ZC5ntw3aQcglV-wCQY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3662367/B4508CE8082011ED828588F7F1222468/E6DF30E4F82B11EFA5C0E79C762E951A.roa
Signing time: Mon 03 Mar 2025 12:34:51 +0000
ROA not before: Mon 03 Mar 2025 12:34:47 +0000
ROA not after: Sat 31 Mar 2035 12:34:47 +0000
asID: 328178
IP address blocks: 102.206.188.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3662367/B4508CE8082011ED828588F7F1222468/C9AISPg4_ZC5ntw3aQcglV-wCQY.crl
rsync://rpki.afrinic.net/repository/member_repository/F3662367/B4508CE8082011ED828588F7F1222468/C9AISPg4_ZC5ntw3aQcglV-wCQY.mft
rsync://rpki.afrinic.net/repository/afrinic/C9AISPg4_ZC5ntw3aQcglV-wCQY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 02:09:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1012 (0x3f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3662367AF
Validity
Not Before: Mar 3 12:34:47 2025 GMT
Not After : Mar 31 12:34:47 2035 GMT
Subject: CN=67c5a1eb-4636
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3e:96:ad:a1:8c:02:a1:06:04:7b:dc:a2:7b:
22:40:2c:b7:11:62:cf:59:97:cc:2d:67:63:6f:1a:
c3:ec:10:40:20:f1:ca:fb:6c:1a:b7:fc:27:90:ab:
dd:03:45:2a:e7:86:36:af:73:50:b5:be:7f:78:2c:
fc:d1:d6:9a:21:b2:88:0f:d9:ee:df:2d:79:bd:32:
02:86:d1:01:2a:f6:bb:cc:35:5c:68:c6:24:7c:84:
99:cb:60:ca:a8:5f:78:50:9c:51:1e:aa:29:93:aa:
49:e0:9e:1d:5c:18:20:27:db:ac:7e:68:48:b5:b8:
67:68:ab:30:4e:f7:e6:d5:88:c9:ec:0d:2b:d8:81:
65:40:a0:e4:bf:74:f9:45:19:e4:80:40:95:74:a8:
58:ac:d2:aa:cd:4c:dd:c6:cc:51:b8:f6:65:77:97:
ba:cb:c4:fd:97:a3:a1:50:e0:33:2e:e0:48:11:73:
52:31:24:0c:c4:92:d0:bd:ac:f2:a9:a6:a8:cf:99:
66:43:03:b9:74:30:f6:01:12:da:cb:65:4a:f5:33:
eb:a5:df:f2:55:3e:1b:1b:d9:d5:9a:76:2d:9b:9b:
14:ac:88:d7:9a:b8:50:ee:5a:ea:7d:76:d6:0b:7c:
a3:32:f6:09:20:20:7c:27:ea:88:60:fc:54:b6:14:
fd:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:7F:FF:B1:49:FD:7A:0E:B5:B1:CD:4B:13:10:57:7E:6B:5D:6F:2E
X509v3 Authority Key Identifier:
keyid:0B:D0:08:48:F8:38:FD:90:B9:9E:DC:37:69:07:20:95:5F:B0:09:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3662367/B4508CE8082011ED828588F7F1222468/C9AISPg4_ZC5ntw3aQcglV-wCQY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/C9AISPg4_ZC5ntw3aQcglV-wCQY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3662367/B4508CE8082011ED828588F7F1222468/E6DF30E4F82B11EFA5C0E79C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.206.188.0/22
Signature Algorithm: sha256WithRSAEncryption
64:20:68:93:87:22:b1:1d:67:2d:d2:9d:82:1e:fc:c6:c0:91:
02:e5:87:b4:c4:cc:62:20:bf:31:be:7a:0b:4d:16:20:fc:aa:
d1:8d:e9:e6:c0:8d:c4:93:30:ed:aa:cf:cf:a5:ff:19:2e:70:
ac:11:ec:ae:7c:5d:c0:7f:89:72:c2:a9:aa:d8:f4:cb:65:e0:
f7:47:93:08:89:d7:a9:53:89:90:dd:2a:1d:64:55:2a:9b:9e:
71:0f:c5:7a:87:29:01:c2:a3:cd:6e:52:6e:e7:b9:50:32:0e:
6d:7d:18:29:2c:07:dd:16:59:96:da:53:ae:58:34:77:db:c9:
ee:ec:e9:da:dc:c6:90:0b:b9:4d:3c:a2:13:8f:30:e7:80:86:
47:c8:d4:4e:ed:8a:81:b6:e3:7f:dc:af:07:f9:5e:a4:f1:8c:
61:dd:5e:9c:c9:73:9b:33:1e:47:bd:79:bc:95:18:3b:c6:3b:
2f:c4:93:a7:c5:5e:04:8a:5a:78:6e:62:3e:18:0c:39:70:27:
bc:23:ff:31:14:c7:36:f5:e3:7b:9f:8a:13:af:cc:35:cd:33:
be:1c:b7:bd:9d:1c:36:18:0b:3e:01:12:4d:da:8c:3d:00:22:
f1:9d:fc:70:a8:97:65:e0:67:c1:77:23:23:68:b7:70:a5:8c:
95:a8:52:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:05:40 2025 by rpki-client