Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/052B7830323511F0B1A49CE0DAE4EC9C.roa
File: 052B7830323511F0B1A49CE0DAE4EC9C.roa (raw, json)
Hash identifier: cqtDt1rIA5Hdbq078GWMJ2u//hvZFNHoWZaKCgRdgd0=
Subject key identifier: 5A:6C:5B:F3:14:3D:DB:49:10:BB:AC:62:AC:C1:23:28:BB:EB:B2:EE
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0CBD
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/052B7830323511F0B1A49CE0DAE4EC9C.roa
Signing time: Fri 16 May 2025 09:06:15 +0000
ROA not before: Fri 16 May 2025 09:06:11 +0000
ROA not after: Wed 16 May 2035 09:06:11 +0000
asID: 36916
IP address blocks: 192.142.144.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Jun 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3261 (0xcbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR, serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: May 16 09:06:11 2025 GMT
Not After : May 16 09:06:11 2035 GMT
Subject: CN=68270007-6742
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:05:76:38:a6:c2:99:46:c5:b7:37:81:5d:70:
68:89:c7:bd:c2:5d:b2:e1:7c:89:da:bd:f4:ba:76:
98:e7:b3:82:f6:e1:b7:49:c9:28:83:fc:20:ab:a6:
74:27:31:11:31:85:87:84:4f:19:40:92:a9:1e:9b:
c9:a4:3e:ff:7e:68:73:dd:7e:8c:97:21:fa:6a:5e:
87:5f:8b:50:a7:48:ff:ba:ff:64:8c:68:4d:8e:88:
94:41:f2:b2:c8:6b:66:73:2e:51:55:98:1a:8c:e5:
e1:a3:1b:37:d4:b5:82:b3:7f:d4:0f:50:df:e0:c9:
90:f4:6f:60:37:2f:e9:bd:99:a7:fd:9c:a7:8f:b1:
e1:63:de:c0:77:eb:07:eb:47:ac:5e:72:b3:69:58:
02:77:08:02:c9:f3:cd:4c:6b:81:99:c3:dc:ea:f7:
13:1e:8f:bc:b8:6a:3a:b0:d8:a2:03:01:18:f4:15:
35:8c:bf:fd:ab:62:7b:54:e7:9b:7b:a6:63:53:a7:
2a:f4:c6:97:2f:e8:58:da:a6:33:16:e5:b0:40:c6:
8e:91:df:13:c0:71:5d:06:aa:a7:eb:69:59:01:fc:
17:d0:51:a1:00:5c:78:66:8d:4f:50:ed:a7:2d:56:
71:ea:0d:d6:3a:a8:8a:82:0b:01:64:ab:22:23:8d:
50:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:6C:5B:F3:14:3D:DB:49:10:BB:AC:62:AC:C1:23:28:BB:EB:B2:EE
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/052B7830323511F0B1A49CE0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.144.0/20
Signature Algorithm: sha256WithRSAEncryption
0c:31:25:95:1f:9c:26:a3:a7:84:81:4e:19:41:28:ea:bc:8f:
24:5b:03:58:49:59:f6:f7:7b:c7:47:53:16:90:99:6b:14:00:
d2:a6:9c:2e:75:d1:3d:e8:d6:d4:dd:69:0d:56:10:6b:04:72:
cb:88:bb:c7:c1:58:be:c6:44:59:9f:bd:af:13:ff:7f:44:01:
a8:05:5e:ed:1f:1c:22:91:4d:4a:0d:09:2a:20:95:d7:17:96:
dd:4e:37:f8:85:fb:b7:60:77:a6:9c:0f:d0:05:77:a8:3b:1f:
0d:9e:46:5a:4d:0e:c2:3d:a6:06:16:20:0a:ad:8b:6b:25:68:
59:3d:37:ad:d9:df:63:26:c2:d3:8c:b4:5b:bd:27:93:ca:2e:
d5:87:d3:1b:d6:36:1a:e7:9e:59:4c:98:13:6a:53:39:58:37:
c5:dc:a9:6b:33:9e:2e:f1:01:f1:26:b1:e9:99:cb:93:c7:4a:
31:c4:15:12:4d:c2:00:69:55:10:75:92:3e:94:41:6e:c2:72:
2f:a6:7f:7f:1a:7b:f2:93:79:79:89:e2:3e:ac:c1:91:34:d0:
8b:4b:ae:33:39:4f:f2:a6:bc:93:5c:05:61:1a:5e:8f:30:ec:
0c:ab:ba:5f:50:bc:e3:e8:79:85:2d:8d:b6:6b:58:6d:1c:25:
61:97:b4:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 10:57:38 2025 by rpki-client