Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/FCD1B060823D11F082F2DCDDDAE4EC9C.roa
File: FCD1B060823D11F082F2DCDDDAE4EC9C.roa (raw, json)
Hash identifier: DEMbJ1fpxckeqnBF4G9Ph+TgPF8w10GVo9kBf+4mx1Q=
Subject key identifier: 57:44:A0:25:13:97:AB:5B:8D:EE:2E:34:5A:94:F6:1C:41:DD:55:41
Certificate issuer: /CN=F3671347AF/serialNumber=3128B1596F1DA0AA6CEDCFC99DEC8E1D628489E5
Certificate serial: 10
Authority key identifier: 31:28:B1:59:6F:1D:A0:AA:6C:ED:CF:C9:9D:EC:8E:1D:62:84:89:E5
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/MSixWW8doKps7c_JneyOHWKEieU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/FCD1B060823D11F082F2DCDDDAE4EC9C.roa
Signing time: Tue 26 Aug 2025 05:32:00 +0000
ROA not before: Tue 26 Aug 2025 05:31:54 +0000
ROA not after: Thu 31 Aug 2045 05:31:54 +0000
asID: 36983
IP address blocks: 41.222.110.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/MSixWW8doKps7c_JneyOHWKEieU.crl
rsync://rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/MSixWW8doKps7c_JneyOHWKEieU.mft
rsync://rpki.afrinic.net/repository/afrinic/MSixWW8doKps7c_JneyOHWKEieU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 19 Sep 2025 05:13:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16 (0x10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3671347AF, serialNumber=3128B1596F1DA0AA6CEDCFC99DEC8E1D628489E5
Validity
Not Before: Aug 26 05:31:54 2025 GMT
Not After : Aug 31 05:31:54 2045 GMT
Subject: CN=68ad46d0-7693
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:79:6b:53:c4:28:57:3d:da:e2:d7:8c:4e:27:
84:77:25:cc:17:60:19:da:c3:c6:bb:17:f5:b9:05:
67:35:68:63:8c:24:03:8c:da:b3:38:61:a9:0a:34:
0d:c4:fe:38:25:c2:0a:da:84:dd:62:9c:f7:0f:b6:
38:d9:8d:5d:19:49:a9:97:a4:11:c6:44:a2:84:1c:
00:be:5a:f3:76:0f:99:6c:6f:4f:b8:2b:d4:20:4b:
60:b0:79:e2:c9:4d:72:58:3d:12:9c:3d:29:a6:3c:
e0:5f:79:54:79:c8:70:88:ed:ad:ea:34:fb:a3:8f:
1d:f7:0d:5e:8d:8e:7b:2c:4a:bd:20:d4:5c:83:e1:
ec:fe:02:e6:3c:53:64:72:da:2e:85:b6:b4:b0:de:
91:a6:39:87:5e:6b:8f:fe:a9:c4:12:a3:da:23:b9:
1c:7c:dc:e2:32:de:e8:83:a5:25:1e:ef:dc:51:f2:
e6:c9:c8:2c:6b:d1:63:03:43:55:21:10:74:78:83:
2a:31:78:d0:3c:11:e4:0a:ef:9a:f6:8c:c6:39:cd:
37:9c:00:44:53:e1:9a:8b:e1:36:8f:b9:dd:1a:db:
b9:84:e3:0d:d0:4a:2c:30:26:7e:19:e4:6a:16:a1:
c4:0b:2a:ee:0a:ee:58:f8:cc:f7:c0:9b:42:53:53:
40:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:44:A0:25:13:97:AB:5B:8D:EE:2E:34:5A:94:F6:1C:41:DD:55:41
X509v3 Authority Key Identifier:
keyid:31:28:B1:59:6F:1D:A0:AA:6C:ED:CF:C9:9D:EC:8E:1D:62:84:89:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/MSixWW8doKps7c_JneyOHWKEieU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/MSixWW8doKps7c_JneyOHWKEieU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/FCD1B060823D11F082F2DCDDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.222.110.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:96:4a:22:03:e5:09:e4:a0:d8:4d:4d:91:02:1d:a1:52:73:
0d:e0:0b:b2:ff:d4:c3:8e:8e:72:83:65:69:3a:38:f3:80:ef:
97:56:f9:d2:f5:58:b5:8f:ce:4d:d1:f4:da:41:51:b8:79:c5:
e4:5d:49:d9:29:bd:5b:84:ff:cd:f4:4d:b1:43:27:d9:96:ad:
2c:b5:6d:76:50:b2:03:b3:9d:40:a0:e3:73:1c:9c:c7:29:92:
c9:3e:9c:e2:43:c6:f1:0b:4a:8c:c0:98:39:78:64:47:0f:77:
1b:de:08:fa:7b:8b:57:59:f2:49:3c:10:b2:f9:45:00:8b:08:
b7:99:ed:de:58:b4:1b:ba:32:0c:06:33:77:7f:ce:4b:45:59:
74:eb:17:56:06:11:61:21:17:bd:80:e5:3d:39:e4:94:96:41:
06:f3:ea:5f:54:09:96:5b:05:ee:8e:d9:50:80:d8:05:7f:9d:
e8:45:3d:6e:08:38:76:d4:f9:4e:ed:42:ee:e4:11:fd:ec:a2:
69:83:0c:8b:42:fa:c9:ce:5f:05:85:79:1b:69:f1:9f:40:db:
ce:16:57:a6:13:e1:a8:19:6e:03:0b:df:c5:2b:a4:47:11:33:
78:35:93:5d:1f:00:46:1f:bf:e0:84:21:d3:9d:1b:f3:fb:d8:
cb:2c:4b:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 02:15:22 2025 by rpki-client