Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/C62BE790831611F0848ADEE8DAE4EC9C.roa
File: C62BE790831611F0848ADEE8DAE4EC9C.roa (raw, json)
Hash identifier: 2jF111Vd/S7zsiWrg4vZQJoQV7Acsi0SEn4OzYgJrJk=
Subject key identifier: F3:90:23:4C:DE:5D:42:CE:CA:97:29:40:E0:DE:BD:DE:9F:7C:BF:0F
Certificate issuer: /CN=F3671347AF/serialNumber=3128B1596F1DA0AA6CEDCFC99DEC8E1D628489E5
Certificate serial: 16
Authority key identifier: 31:28:B1:59:6F:1D:A0:AA:6C:ED:CF:C9:9D:EC:8E:1D:62:84:89:E5
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/MSixWW8doKps7c_JneyOHWKEieU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/C62BE790831611F0848ADEE8DAE4EC9C.roa
Signing time: Wed 27 Aug 2025 07:23:49 +0000
ROA not before: Wed 27 Aug 2025 07:23:44 +0000
ROA not after: Thu 31 Aug 2045 07:23:44 +0000
asID: 36983
IP address blocks: 41.222.104.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/MSixWW8doKps7c_JneyOHWKEieU.crl
rsync://rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/MSixWW8doKps7c_JneyOHWKEieU.mft
rsync://rpki.afrinic.net/repository/afrinic/MSixWW8doKps7c_JneyOHWKEieU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 19 Sep 2025 05:13:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22 (0x16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3671347AF, serialNumber=3128B1596F1DA0AA6CEDCFC99DEC8E1D628489E5
Validity
Not Before: Aug 27 07:23:44 2025 GMT
Not After : Aug 31 07:23:44 2045 GMT
Subject: CN=68aeb285-2df9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:bf:d9:a2:e9:23:15:03:8c:5a:9a:b6:49:b1:
a9:a3:ef:6c:3d:fa:7b:4f:d0:1b:47:a3:b5:8f:45:
ea:ad:69:cc:94:46:0b:ca:ec:d8:ae:3e:bf:2e:93:
a4:e5:22:8c:fb:a0:ee:3a:d0:ed:14:69:73:65:b8:
3f:34:04:7d:95:84:a1:1b:94:12:0c:1d:92:1b:42:
25:aa:6a:31:3d:77:5a:eb:c3:b8:c0:ee:46:e7:11:
89:eb:0a:aa:36:81:1b:e8:79:90:44:6b:47:e0:cb:
6e:11:9e:25:43:e4:b2:6d:ac:c5:24:1c:e2:44:50:
dc:22:62:fa:28:f8:f1:1c:b0:70:17:bd:d0:44:78:
ca:c6:76:13:e5:d9:b7:78:83:9d:db:36:40:7f:b8:
ff:63:26:43:b4:a1:2e:db:46:aa:7f:6b:92:cc:a1:
ba:fa:89:fc:2e:a3:10:83:48:dc:40:33:0c:2f:8a:
af:2a:4a:33:d1:30:9c:2e:7f:c4:8e:2b:3b:d7:4c:
67:be:1c:4b:9f:cd:97:d9:1f:16:fb:69:54:8b:eb:
c0:62:9a:11:51:0c:c3:e7:80:a8:8f:f0:cd:c5:db:
78:e7:66:8f:d1:e4:17:fa:f2:92:fe:37:0d:a9:fc:
5f:be:2f:2b:9e:11:57:97:bd:a3:d0:a9:85:71:06:
8c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:90:23:4C:DE:5D:42:CE:CA:97:29:40:E0:DE:BD:DE:9F:7C:BF:0F
X509v3 Authority Key Identifier:
keyid:31:28:B1:59:6F:1D:A0:AA:6C:ED:CF:C9:9D:EC:8E:1D:62:84:89:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/MSixWW8doKps7c_JneyOHWKEieU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/MSixWW8doKps7c_JneyOHWKEieU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/C62BE790831611F0848ADEE8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.222.104.0/23
Signature Algorithm: sha256WithRSAEncryption
49:d2:82:13:dd:00:d3:0b:44:d2:64:a8:1a:e2:7f:97:ea:8c:
00:11:5e:ce:19:9f:d2:54:11:a6:61:c0:de:e8:43:62:0c:c3:
35:77:67:73:f8:60:86:57:d7:7f:02:9b:7b:94:90:a2:c6:e1:
e2:6c:89:6d:d3:f2:38:83:a6:3b:24:1d:bd:4b:97:9e:cd:e8:
1b:e4:68:e2:ab:87:7f:db:36:fd:39:59:37:34:6f:7c:dc:fd:
5b:67:09:42:a3:59:d4:a7:d5:89:5c:b4:61:c6:3a:d6:60:66:
54:1a:e5:d9:d7:08:0c:d8:9f:1d:0d:dc:46:ee:2f:ff:8d:8a:
13:6f:f3:db:a5:b4:e6:ee:01:2b:7b:a4:05:21:fd:03:b0:29:
a2:6f:ef:d6:e4:29:ee:4f:ad:76:15:61:bc:fc:97:d1:28:c3:
0f:c8:b7:cf:26:1f:69:f7:5e:40:ef:04:17:0f:b7:78:1a:df:
bc:b4:e0:40:93:b4:50:7b:1d:9d:93:ef:54:f7:fd:0e:0c:32:
10:bb:3d:2c:7d:76:9c:b3:23:1d:4f:aa:02:06:08:6f:79:77:
18:32:de:84:8a:70:8b:25:ce:d3:b6:97:cb:87:9f:ec:41:cd:
9c:d2:d5:28:91:c4:92:db:1b:0c:e8:82:05:02:c2:d8:1b:ba:
1c:25:f7:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 02:15:19 2025 by rpki-client