Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3662DAB/048F88108F3211EDB0EEF1B7F1222468/2BCE620636E811F0AFEF58D4DAE4EC9C.roa
File: 2BCE620636E811F0AFEF58D4DAE4EC9C.roa (raw, json)
Hash identifier: P7lmUgIS9Hm4lWbQ/Ee8DkBKFNBVl2htZZLdVzqMPOo=
Subject key identifier: 7C:41:BA:9A:C1:22:2C:75:E1:DC:22:C7:08:AA:E8:B8:CA:D8:7A:4E
Certificate issuer: /CN=F3662DABAF/serialNumber=5CA389FB8051D2412BA5DF801D89B2CACE57259C
Certificate serial: 0386
Authority key identifier: 5C:A3:89:FB:80:51:D2:41:2B:A5:DF:80:1D:89:B2:CA:CE:57:25:9C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/XKOJ-4BR0kErpd-AHYmyys5XJZw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3662DAB/048F88108F3211EDB0EEF1B7F1222468/2BCE620636E811F0AFEF58D4DAE4EC9C.roa
Signing time: Thu 22 May 2025 08:38:45 +0000
ROA not before: Thu 22 May 2025 08:38:40 +0000
ROA not after: Wed 22 May 2030 08:38:40 +0000
asID: 328073
IP address blocks: 2c0f:6d80::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3662DAB/048F88108F3211EDB0EEF1B7F1222468/XKOJ-4BR0kErpd-AHYmyys5XJZw.crl
rsync://rpki.afrinic.net/repository/member_repository/F3662DAB/048F88108F3211EDB0EEF1B7F1222468/XKOJ-4BR0kErpd-AHYmyys5XJZw.mft
rsync://rpki.afrinic.net/repository/afrinic/XKOJ-4BR0kErpd-AHYmyys5XJZw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 902 (0x386)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3662DABAF, serialNumber=5CA389FB8051D2412BA5DF801D89B2CACE57259C
Validity
Not Before: May 22 08:38:40 2025 GMT
Not After : May 22 08:38:40 2030 GMT
Subject: CN=682ee295-85a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:81:b0:54:59:a9:08:d6:78:16:c5:54:07:8a:
54:cd:6c:77:0d:d2:3f:c2:66:27:dd:ab:d9:2e:d4:
16:4f:e6:d4:73:9b:e2:b6:ae:a3:6f:13:a3:93:6d:
da:97:42:63:0f:5a:3b:24:74:38:f4:57:7c:4c:f5:
a6:de:39:d9:c8:4c:4d:0d:8c:01:92:ba:19:f3:9e:
dc:eb:bf:3c:7a:d2:eb:3d:50:d6:d1:86:67:fe:36:
95:5d:19:aa:8d:da:9c:95:d2:4c:4a:ac:e9:42:da:
b2:2f:30:47:f8:35:ec:cb:9c:68:23:ef:55:ea:3a:
2a:3f:7a:1f:96:79:b7:5c:16:89:14:10:aa:53:6e:
f6:49:63:d1:13:25:ee:b0:df:72:99:21:02:1b:9f:
b5:37:b6:7a:ec:37:7d:aa:ce:14:83:d8:61:20:1d:
27:b9:3c:f8:23:57:78:98:0f:eb:74:80:48:fc:6d:
1a:63:bc:3b:6f:d9:6b:a5:1a:4d:4b:62:a7:9d:32:
f0:2e:7c:db:8d:43:a5:a4:94:d1:b2:a5:d6:a6:26:
03:66:20:43:29:58:60:2a:aa:b2:4d:f8:8e:a7:be:
0e:2a:a7:c7:a0:ba:53:a6:7b:cf:6c:7e:d0:48:12:
07:dd:a2:79:18:0d:f8:1e:e3:f8:fe:38:7c:34:31:
23:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:41:BA:9A:C1:22:2C:75:E1:DC:22:C7:08:AA:E8:B8:CA:D8:7A:4E
X509v3 Authority Key Identifier:
keyid:5C:A3:89:FB:80:51:D2:41:2B:A5:DF:80:1D:89:B2:CA:CE:57:25:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3662DAB/048F88108F3211EDB0EEF1B7F1222468/XKOJ-4BR0kErpd-AHYmyys5XJZw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/XKOJ-4BR0kErpd-AHYmyys5XJZw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3662DAB/048F88108F3211EDB0EEF1B7F1222468/2BCE620636E811F0AFEF58D4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:6d80::/32
Signature Algorithm: sha256WithRSAEncryption
b0:6a:6d:42:6e:b5:4a:42:df:6d:af:62:50:62:e2:63:22:d2:
dc:75:a5:fc:0a:07:e8:c8:84:92:c4:73:c1:77:7a:1a:23:ea:
e9:ac:95:6a:7f:a9:db:fb:7d:30:4e:ee:5b:9f:77:53:7c:79:
7b:fa:0d:fe:4d:b3:e7:58:d4:49:a9:a7:41:bc:8b:1d:dc:dc:
f9:61:91:36:2d:2b:39:6d:bb:e0:4d:0a:c4:d6:73:3b:ee:d2:
0c:39:b5:0a:0c:01:44:9d:7d:09:55:e2:ae:3d:16:75:65:61:
36:da:8f:fb:ae:21:f0:ff:12:65:a6:59:88:38:be:e7:fb:42:
ab:bb:35:83:de:34:c9:1f:6b:63:6d:b2:76:f9:e5:9e:84:79:
12:98:37:82:e8:9a:1a:25:69:11:fc:01:3e:a2:83:67:9e:7e:
da:b4:cb:be:d9:5b:5d:55:c7:3c:46:fd:fe:d0:13:01:1f:ba:
6b:c6:3a:50:a6:ef:39:b1:cc:51:37:3e:42:ce:6c:8e:fc:3e:
ee:21:28:00:c5:26:34:ff:2a:91:9c:2a:40:34:84:f0:17:87:
4a:3c:8e:51:31:44:98:2f:43:4e:48:c3:df:67:0e:04:a0:e3:
7c:e9:f8:50:7e:38:b2:fe:61:c0:12:eb:49:60:ff:6b:89:5d:
9d:23:c7:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 18:21:25 2025 by rpki-client