Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/508F352C831711F0B3785EEBDAE4EC9C.roa
File: 508F352C831711F0B3785EEBDAE4EC9C.roa (raw, json)
Hash identifier: YbDgbDLMtXN3AZVFIOOlm7MZiL6PmRwwy5gRqCfekGk=
Subject key identifier: 5E:64:EE:E6:94:99:5A:15:74:FC:40:DE:2D:79:6B:F0:C0:6C:01:DB
Certificate issuer: /CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Certificate serial: 0A6F
Authority key identifier: 95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/508F352C831711F0B3785EEBDAE4EC9C.roa
Signing time: Wed 27 Aug 2025 07:27:41 +0000
ROA not before: Wed 27 Aug 2025 07:27:36 +0000
ROA not after: Mon 27 Aug 2035 07:27:36 +0000
asID: 36916
IP address blocks: 41.180.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.mft
rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 19 Sep 2025 01:26:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2671 (0xa6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAF, serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Validity
Not Before: Aug 27 07:27:36 2025 GMT
Not After : Aug 27 07:27:36 2035 GMT
Subject: CN=68aeb36d-34fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:37:1a:49:2c:29:64:3b:34:11:63:9d:07:62:
aa:3f:96:2d:c3:46:d2:a8:10:7c:ed:84:25:62:e6:
eb:2f:21:c8:f9:bb:56:8c:01:c0:bc:a8:1a:3b:c9:
77:a9:ba:8d:ed:0c:24:15:75:d8:a0:14:8b:6e:fc:
59:5d:84:49:2f:bf:bb:42:3c:8a:46:36:0b:5f:a0:
37:b7:af:3b:24:e7:fb:ef:82:55:77:ad:00:f3:a5:
c6:1e:de:80:15:be:d9:c6:51:72:a1:8f:52:d5:8d:
54:04:34:1b:56:4b:33:38:8d:cd:18:f8:01:2a:db:
05:6e:49:d1:d1:2e:78:77:4f:aa:dd:dd:d2:80:94:
5c:fb:88:bf:f7:5e:8e:d1:c4:e4:6e:b3:11:0b:6d:
a8:ff:df:b0:8f:1e:5d:db:39:59:12:3d:ff:38:72:
09:75:df:76:0b:28:b1:ec:3b:a9:7d:40:4b:5a:48:
16:c8:8a:1e:a6:c5:ab:48:d3:e8:ba:8c:85:f4:fd:
0d:81:17:60:02:31:7d:69:9f:04:13:49:a0:16:b1:
0c:29:54:2b:a6:2d:88:93:b9:07:76:03:80:b6:1b:
74:15:98:24:9c:e9:7f:3d:b7:51:ab:a9:d5:bd:bf:
61:5a:94:3c:13:92:9a:3a:5a:c8:00:4f:37:5f:18:
da:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:64:EE:E6:94:99:5A:15:74:FC:40:DE:2D:79:6B:F0:C0:6C:01:DB
X509v3 Authority Key Identifier:
keyid:95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/508F352C831711F0B3785EEBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.180.75.0/24
Signature Algorithm: sha256WithRSAEncryption
51:96:75:ee:21:86:b4:b8:1d:7b:be:9b:51:82:3d:4c:67:9a:
00:fd:30:4d:23:7e:2c:a2:9d:e9:88:ef:28:b2:31:77:f0:56:
82:f1:ef:77:d1:99:e3:dc:60:8a:48:18:75:f3:f6:cb:e1:36:
48:13:da:ce:d4:e2:7c:76:4a:06:5d:68:b7:4b:7c:5f:33:19:
d8:9b:a6:b1:d6:94:d5:32:5f:87:5e:2f:e4:51:05:90:a6:4a:
5f:8f:60:97:37:4e:0b:aa:96:e3:df:42:6f:69:56:cf:c4:d6:
d6:73:aa:0d:19:5a:27:8f:00:d8:b9:15:f4:c2:65:1a:03:68:
d9:1d:44:48:39:c4:6e:be:53:d5:ca:ac:85:ff:0e:b5:6d:92:
79:5b:0d:39:ad:1b:85:1c:0e:65:66:3c:42:62:e4:bb:be:28:
c2:d4:94:4e:d3:f5:69:0a:f5:d1:5e:c2:f1:e4:bf:62:6a:34:
20:02:78:e7:b7:71:14:1e:e2:32:f6:1d:01:8c:cc:c2:07:00:
21:87:53:51:ba:00:79:19:f1:bf:98:8d:49:95:9e:65:8b:51:
bf:52:9a:18:1d:1b:43:89:b5:58:75:61:82:06:5a:d3:5e:dc:
9c:db:f0:5b:67:90:ef:bc:9a:d5:f0:13:1a:ee:95:9d:67:2b:
c8:ff:3d:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 02:01:45 2025 by rpki-client