Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36628D0/4F501028C73411EEB4A18965775412E6/22722218325311F0BEE5CBA8DAE4EC9C.roa
File: 22722218325311F0BEE5CBA8DAE4EC9C.roa (raw, json)
Hash identifier: 7FOq4iC+f8KGAzh35/6t4/kdL+NWHJr1WwivNfCgRGY=
Subject key identifier: 92:3A:03:AE:FC:A5:5F:3F:D2:19:FC:36:FA:CE:06:9F:D7:37:C6:A6
Certificate issuer: /CN=F36628D0AF/serialNumber=CF3F4F9243A61D3BED933CC0F3533CA2BE093BDC
Certificate serial: 01DC
Authority key identifier: CF:3F:4F:92:43:A6:1D:3B:ED:93:3C:C0:F3:53:3C:A2:BE:09:3B:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/zz9PkkOmHTvtkzzA81M8or4JO9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36628D0/4F501028C73411EEB4A18965775412E6/22722218325311F0BEE5CBA8DAE4EC9C.roa
Signing time: Fri 16 May 2025 12:41:49 +0000
ROA not before: Fri 16 May 2025 12:41:44 +0000
ROA not after: Wed 16 May 2035 12:41:44 +0000
asID: 329350
IP address blocks: 102.210.210.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36628D0/4F501028C73411EEB4A18965775412E6/zz9PkkOmHTvtkzzA81M8or4JO9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F36628D0/4F501028C73411EEB4A18965775412E6/zz9PkkOmHTvtkzzA81M8or4JO9w.mft
rsync://rpki.afrinic.net/repository/afrinic/zz9PkkOmHTvtkzzA81M8or4JO9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Jun 2025 04:23:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 476 (0x1dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36628D0AF, serialNumber=CF3F4F9243A61D3BED933CC0F3533CA2BE093BDC
Validity
Not Before: May 16 12:41:44 2025 GMT
Not After : May 16 12:41:44 2035 GMT
Subject: CN=6827328d-ed0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:d1:5c:55:96:84:75:b8:fe:12:be:ad:e6:14:
7b:41:ea:37:9a:3f:f3:2b:06:6b:f4:fc:bf:e9:bb:
95:16:b4:1b:be:9c:b2:bf:ef:df:8c:0e:ed:c7:e3:
11:c6:07:7e:a7:73:5f:bc:fe:af:73:a9:61:5c:e6:
6f:c9:f1:65:51:58:2b:48:ba:3b:84:51:aa:19:0a:
f3:58:01:b4:25:3e:62:9e:66:00:94:a9:61:04:ae:
9a:9c:c1:00:1e:4b:4c:cc:77:6f:7c:71:61:21:d1:
95:4b:8a:da:b2:48:e4:5f:44:17:c3:ac:fb:90:36:
d2:6c:ed:4e:a8:cc:2b:19:10:d2:24:73:76:e4:51:
c6:85:f3:d3:49:81:17:4f:38:99:13:64:44:bb:ea:
47:30:66:4e:7a:9f:5d:78:83:79:9c:6b:17:bb:2d:
10:37:74:6d:2d:07:47:ba:25:56:c3:f5:7e:ef:e7:
07:1c:ad:48:63:e9:20:dd:ed:21:58:3d:e5:f2:55:
bb:ed:fa:ba:06:4c:7b:74:1e:c7:f8:63:1c:00:09:
00:55:eb:3c:37:2f:a4:7d:ad:2d:3c:1d:e8:98:d6:
02:6d:ba:1f:65:c1:4a:ad:e4:17:42:a8:51:e2:17:
a6:49:11:0b:25:c0:e9:77:22:05:8d:fd:c4:56:f7:
ae:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:3A:03:AE:FC:A5:5F:3F:D2:19:FC:36:FA:CE:06:9F:D7:37:C6:A6
X509v3 Authority Key Identifier:
keyid:CF:3F:4F:92:43:A6:1D:3B:ED:93:3C:C0:F3:53:3C:A2:BE:09:3B:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36628D0/4F501028C73411EEB4A18965775412E6/zz9PkkOmHTvtkzzA81M8or4JO9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/zz9PkkOmHTvtkzzA81M8or4JO9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36628D0/4F501028C73411EEB4A18965775412E6/22722218325311F0BEE5CBA8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.210.210.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:a8:82:bd:55:d5:5c:ba:81:c1:d8:56:76:90:66:c8:8a:32:
87:93:c4:4c:40:bb:48:e6:78:d9:ce:e3:d5:14:d5:3f:21:d7:
41:0d:dd:88:b5:3c:f8:5f:17:aa:f3:11:3e:37:06:2d:b5:a2:
3b:32:27:af:be:95:8e:79:29:5b:62:da:fc:55:88:f0:bc:36:
e4:56:57:24:2b:e7:ed:c8:3b:d8:54:45:bd:7a:a1:cc:c6:7a:
b8:6f:94:f0:bc:2e:0a:24:2d:64:95:35:7d:80:bb:5b:46:dc:
16:f5:ac:92:27:1e:6e:01:7d:32:97:f2:21:72:fa:23:f5:8e:
9c:5d:52:1f:8f:ce:0c:6b:38:a8:9a:11:64:a0:11:f5:23:87:
0f:c7:08:bc:0a:ba:24:81:34:8c:1d:da:ae:f7:74:17:34:c8:
ca:87:e5:50:44:ad:6e:d2:74:e1:39:6e:ad:18:b9:c2:dc:b2:
39:47:c8:07:84:25:0e:ac:73:1b:98:22:92:59:6a:86:2c:ad:
e1:01:54:e6:0e:e1:cd:96:a0:ad:57:8d:e6:1c:83:b4:3e:1b:
ac:54:a5:7d:03:d4:54:52:01:d4:fe:ad:08:91:02:f2:33:56:
f0:08:05:d1:15:97:24:45:fc:86:b6:5e:f1:8e:8d:23:84:69:
2b:8c:00:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 03:14:28 2025 by rpki-client