Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/3C2CF984877211F0A9B2A8D4DAE4EC9C.roa
File: 3C2CF984877211F0A9B2A8D4DAE4EC9C.roa (raw, json)
Hash identifier: PGGmmBj6elL5Cx7UgU1F5kqdSEnECnDaQb7vXaqB20E=
Subject key identifier: CE:5E:D5:91:B2:EE:18:67:C9:30:7A:0A:32:2D:6F:03:97:94:C5:23
Certificate issuer: /CN=F366FE6CAF/serialNumber=4A1FE76B4DFB0173B6F31B7F36A5A982E08D9C19
Certificate serial: 0769
Authority key identifier: 4A:1F:E7:6B:4D:FB:01:73:B6:F3:1B:7F:36:A5:A9:82:E0:8D:9C:19
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Sh_na037AXO28xt_NqWpguCNnBk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/3C2CF984877211F0A9B2A8D4DAE4EC9C.roa
Signing time: Mon 01 Sep 2025 20:28:36 +0000
ROA not before: Mon 01 Sep 2025 20:28:31 +0000
ROA not after: Sat 01 Sep 2035 20:28:31 +0000
asID: 328748
IP address blocks: 2c0f:e9f0:a100::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/Sh_na037AXO28xt_NqWpguCNnBk.crl
rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/Sh_na037AXO28xt_NqWpguCNnBk.mft
rsync://rpki.afrinic.net/repository/afrinic/Sh_na037AXO28xt_NqWpguCNnBk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 20 Sep 2025 00:06:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1897 (0x769)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366FE6CAF, serialNumber=4A1FE76B4DFB0173B6F31B7F36A5A982E08D9C19
Validity
Not Before: Sep 1 20:28:31 2025 GMT
Not After : Sep 1 20:28:31 2035 GMT
Subject: CN=68b601f4-9a78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c3:19:f2:4b:7a:0a:cd:a7:b4:19:7c:39:47:
64:a1:4d:b0:3e:fe:04:60:6b:13:00:d7:cb:40:99:
a8:94:5a:73:a5:86:f4:53:ef:17:63:95:f9:6d:4b:
e9:15:c8:91:9b:a4:ea:7d:04:f7:41:8a:2f:17:0c:
0e:d3:63:57:46:01:ab:3f:7f:b8:fa:9a:06:67:76:
cc:a7:18:11:80:21:ed:3b:3e:8d:28:5f:1f:bd:a7:
f8:06:b2:51:40:8f:ea:ee:47:15:d5:e0:56:10:ab:
38:c8:94:3d:5a:d8:17:79:2d:20:f3:67:27:49:19:
87:e5:5b:9c:4c:ad:83:0c:d6:d5:77:8f:1d:95:d6:
58:43:c7:d3:56:1e:ac:9b:af:cc:70:55:b7:81:36:
7a:e6:db:b8:6a:29:11:eb:ce:5e:20:cb:b2:96:08:
cd:64:52:77:b1:c8:77:92:79:21:9d:09:c1:8f:8f:
cd:8f:38:5c:26:56:1d:e1:8f:88:9d:1c:a2:5c:45:
bc:9c:cf:73:63:ba:c7:32:46:23:4f:3a:cc:b3:be:
50:2c:d2:83:51:01:b1:48:54:23:f4:88:06:58:49:
15:a0:66:93:c0:f1:24:bf:57:bf:b0:6a:42:8b:25:
a9:c0:e5:5c:5e:23:3c:c3:94:e7:c6:50:d6:a7:2c:
24:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:5E:D5:91:B2:EE:18:67:C9:30:7A:0A:32:2D:6F:03:97:94:C5:23
X509v3 Authority Key Identifier:
keyid:4A:1F:E7:6B:4D:FB:01:73:B6:F3:1B:7F:36:A5:A9:82:E0:8D:9C:19
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/Sh_na037AXO28xt_NqWpguCNnBk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Sh_na037AXO28xt_NqWpguCNnBk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/3C2CF984877211F0A9B2A8D4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:e9f0:a100::/40
Signature Algorithm: sha256WithRSAEncryption
8a:20:5c:5f:51:1f:e7:c9:e1:37:ca:94:ed:a4:16:87:00:a5:
24:30:89:d1:ba:83:87:98:31:c0:e1:dc:a5:3d:f3:8d:e9:a3:
dd:cd:7f:26:4a:64:97:87:a8:31:69:98:de:5d:d4:81:89:fa:
28:ee:4d:7d:1d:a1:6b:0d:94:fe:56:87:60:f6:ef:07:24:70:
22:62:a2:8a:a9:64:f5:17:c3:4a:75:b0:86:3b:33:34:0d:b6:
ac:df:ca:e9:9c:81:9c:51:30:74:7d:34:f0:87:ad:76:db:09:
3b:6c:df:46:1c:dd:9b:ec:5f:41:cd:4b:0d:10:f2:3f:ae:b2:
99:fd:ee:7d:d0:27:ee:30:8a:ff:56:0e:3d:e3:ef:e5:54:da:
7e:a2:d3:52:94:b6:05:1f:a7:0f:bd:08:c0:0e:67:5b:2c:60:
e0:18:6e:aa:31:f9:9d:48:01:cc:a3:7b:8c:48:8f:ba:a7:a6:
c7:79:a3:51:0e:68:8d:2e:43:f4:e7:9f:e9:bb:6e:e6:36:c7:
ce:23:f0:42:e3:95:bb:13:18:5e:44:e7:29:d9:b4:23:f4:24:
ce:e1:da:ff:17:d0:61:56:a0:ac:5f:31:6a:9e:bb:e8:4d:08:
66:df:cb:74:05:b0:9a:9d:ed:62:c1:92:68:06:50:14:7b:c2:
74:d7:1a:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 10:50:40 2025 by rpki-client