Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/88670070819511F09786F98BDAE4EC9C.roa
File: 88670070819511F09786F98BDAE4EC9C.roa (raw, json)
Hash identifier: T1wOQVQ7DTYzmeNn2R6QyD9aOQXs8A6sr9yud0Xydxk=
Subject key identifier: E2:1D:18:8A:6D:95:F6:80:D5:A8:90:2D:B3:44:9C:C7:6D:7B:21:CE
Certificate issuer: /CN=F3671347AF/serialNumber=3128B1596F1DA0AA6CEDCFC99DEC8E1D628489E5
Certificate serial: 04
Authority key identifier: 31:28:B1:59:6F:1D:A0:AA:6C:ED:CF:C9:9D:EC:8E:1D:62:84:89:E5
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/MSixWW8doKps7c_JneyOHWKEieU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/88670070819511F09786F98BDAE4EC9C.roa
Signing time: Mon 25 Aug 2025 09:26:09 +0000
ROA not before: Mon 25 Aug 2025 09:26:04 +0000
ROA not after: Thu 31 Aug 2045 09:26:04 +0000
asID: 36983
IP address blocks: 41.222.108.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/MSixWW8doKps7c_JneyOHWKEieU.crl
rsync://rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/MSixWW8doKps7c_JneyOHWKEieU.mft
rsync://rpki.afrinic.net/repository/afrinic/MSixWW8doKps7c_JneyOHWKEieU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 19 Sep 2025 05:13:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3671347AF, serialNumber=3128B1596F1DA0AA6CEDCFC99DEC8E1D628489E5
Validity
Not Before: Aug 25 09:26:04 2025 GMT
Not After : Aug 31 09:26:04 2045 GMT
Subject: CN=68ac2c31-ccf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:27:21:c7:24:e1:a1:46:d6:e6:c1:df:cf:f3:
ce:11:7b:3a:f5:6d:2f:d7:53:d8:70:65:11:05:ca:
b5:22:63:f3:e2:70:7c:97:60:5b:36:4e:f4:0e:20:
6b:7b:68:22:e9:f0:9d:a6:7b:ed:c9:be:c7:28:34:
51:60:14:99:d1:20:8d:23:13:1f:f5:83:b3:b5:92:
0b:06:88:c6:b6:a2:9f:fb:4d:ef:88:f0:6c:63:35:
21:19:01:46:15:69:30:50:7d:70:2e:68:ee:70:e5:
15:93:15:b8:56:54:f2:ba:4a:c3:04:b4:9b:f4:1b:
37:18:42:6b:9f:7b:0c:b9:d0:f0:68:cc:17:8c:ee:
2c:b0:5f:ae:a3:b3:79:a7:4f:42:c9:a4:30:af:a4:
c3:5a:69:c0:da:07:8e:23:c7:e9:78:98:3d:f0:6a:
53:e4:79:cd:d9:6f:9a:f0:8d:c3:ec:09:d6:2a:39:
51:6a:85:1a:f8:f8:57:30:bb:5f:5a:39:c7:83:c6:
e5:f9:a0:b7:43:21:45:8b:fb:57:ff:7c:d6:9b:63:
04:e8:a8:c0:58:69:ef:9f:ab:32:f3:ee:34:50:70:
de:55:8e:b5:57:91:46:eb:ba:aa:f9:36:83:4b:aa:
d6:79:37:62:8f:3c:06:c2:b2:55:c0:26:4b:36:60:
26:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:1D:18:8A:6D:95:F6:80:D5:A8:90:2D:B3:44:9C:C7:6D:7B:21:CE
X509v3 Authority Key Identifier:
keyid:31:28:B1:59:6F:1D:A0:AA:6C:ED:CF:C9:9D:EC:8E:1D:62:84:89:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/MSixWW8doKps7c_JneyOHWKEieU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/MSixWW8doKps7c_JneyOHWKEieU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/88670070819511F09786F98BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.222.108.0/22
Signature Algorithm: sha256WithRSAEncryption
50:38:78:24:29:58:3e:0b:ab:9b:b5:3e:fd:d6:1d:da:63:fa:
8e:17:52:f8:65:f2:f3:9b:c8:f0:0a:0c:55:fe:80:55:34:71:
c6:1b:08:b4:cc:dd:55:39:72:ec:50:ca:c1:71:64:3a:73:8d:
07:ac:1b:88:6b:e7:eb:11:f0:07:29:f4:42:f8:9a:a4:c5:d9:
3c:81:f8:39:13:ad:d1:2a:44:06:b8:d1:af:14:02:8e:39:61:
25:17:73:d3:a9:b4:80:f2:cc:47:e3:de:b3:61:a1:36:95:05:
d6:be:8c:1b:74:91:dc:35:63:eb:0a:f1:16:36:97:b9:d8:10:
c7:5f:2c:5a:81:bd:85:db:e5:85:2f:8d:a5:cb:5d:5e:c2:4f:
0e:ce:b5:22:e4:c4:9c:74:e6:27:46:79:56:9e:bb:eb:ba:a5:
89:d2:b5:bc:16:ad:84:f9:67:8b:e9:b4:2a:94:15:94:2b:9f:
cc:cf:3d:6f:47:ca:92:d3:08:e4:81:24:c8:46:39:08:db:d0:
29:92:d7:91:4a:1f:73:50:53:18:6f:f4:fb:ce:12:b5:4a:7b:
e8:c3:0d:f9:01:ea:20:60:13:11:b0:26:1d:4e:4a:b6:60:88:
6f:dc:41:be:a5:ff:cd:70:66:f6:b8:f4:a1:89:63:e9:05:ae:
cc:6a:21:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 03:34:23 2025 by rpki-client