Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3681ED0/5251C078CE2411EDA092D0ACF1222468/F65930865B2911F0A6F411CCDAE4EC9C.roa
File: F65930865B2911F0A6F411CCDAE4EC9C.roa (raw, json)
Hash identifier: zlBIS1j6PkXW4nIJqeYYZE1QxvGn2R6vJr3qJUI1Apc=
Subject key identifier: 41:28:C1:76:69:37:7B:CD:BC:88:B0:28:A7:75:D5:FA:38:0A:AA:EC
Certificate issuer: /CN=F3681ED0AF/serialNumber=4A83F31B1B0604CA6D0B72A453DAA3EB587B4C82
Certificate serial: 0376
Authority key identifier: 4A:83:F3:1B:1B:06:04:CA:6D:0B:72:A4:53:DA:A3:EB:58:7B:4C:82
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SoPzGxsGBMptC3KkU9qj61h7TII.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3681ED0/5251C078CE2411EDA092D0ACF1222468/F65930865B2911F0A6F411CCDAE4EC9C.roa
Signing time: Mon 07 Jul 2025 12:00:24 +0000
ROA not before: Mon 07 Jul 2025 12:00:13 +0000
ROA not after: Sat 07 Jul 2035 12:00:13 +0000
asID: 30986
IP address blocks: 2c0e:a000::/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3681ED0/5251C078CE2411EDA092D0ACF1222468/SoPzGxsGBMptC3KkU9qj61h7TII.crl
rsync://rpki.afrinic.net/repository/member_repository/F3681ED0/5251C078CE2411EDA092D0ACF1222468/SoPzGxsGBMptC3KkU9qj61h7TII.mft
rsync://rpki.afrinic.net/repository/afrinic/SoPzGxsGBMptC3KkU9qj61h7TII.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 29 Jul 2025 00:06:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 886 (0x376)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3681ED0AF, serialNumber=4A83F31B1B0604CA6D0B72A453DAA3EB587B4C82
Validity
Not Before: Jul 7 12:00:13 2025 GMT
Not After : Jul 7 12:00:13 2035 GMT
Subject: CN=686bb6d8-9671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:05:01:94:ae:e4:17:95:9d:2e:53:3c:52:66:
55:79:33:1f:14:ca:32:be:19:bd:3f:7c:ae:4d:6a:
d6:dc:ba:bf:2d:71:f4:4b:b1:e6:30:09:57:ad:ca:
02:35:d8:c4:d1:a2:44:09:e6:4e:b0:db:62:aa:cd:
9c:1b:4c:f5:63:1d:e2:71:b9:c6:5c:a5:90:a5:8d:
67:5e:56:02:52:2e:30:98:92:13:3b:59:f2:17:6f:
ac:11:31:73:af:a1:85:ca:1a:f5:56:73:21:7b:40:
54:48:32:9f:4d:ae:b6:83:bc:b6:1d:85:4e:cd:ab:
81:03:25:39:c7:3c:21:fa:70:b5:e9:12:d3:9e:3e:
f0:6c:c5:4a:8f:fd:a0:b7:b0:2c:7f:6e:ff:3e:aa:
1d:5f:41:23:2f:24:fe:43:63:71:18:bd:d2:e8:2d:
b3:87:96:06:ed:4f:fa:7b:66:b0:c4:5e:73:2e:a8:
6d:26:7f:41:8e:24:d9:85:a2:93:38:60:b5:cc:12:
94:f7:82:55:a3:9d:98:0b:ee:72:c7:33:fe:21:64:
80:bd:a4:a2:74:2c:a9:7b:98:8d:45:fa:d7:24:6c:
4a:cb:03:22:52:d6:f6:22:77:d7:d3:52:51:6e:14:
21:9b:ff:b0:6f:d9:d2:87:a2:43:d9:5d:e7:d4:cf:
83:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:28:C1:76:69:37:7B:CD:BC:88:B0:28:A7:75:D5:FA:38:0A:AA:EC
X509v3 Authority Key Identifier:
keyid:4A:83:F3:1B:1B:06:04:CA:6D:0B:72:A4:53:DA:A3:EB:58:7B:4C:82
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3681ED0/5251C078CE2411EDA092D0ACF1222468/SoPzGxsGBMptC3KkU9qj61h7TII.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SoPzGxsGBMptC3KkU9qj61h7TII.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3681ED0/5251C078CE2411EDA092D0ACF1222468/F65930865B2911F0A6F411CCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0e:a000::/24
Signature Algorithm: sha256WithRSAEncryption
15:93:c9:5c:58:89:0a:97:1f:3e:dc:5f:99:17:94:2d:26:4b:
2f:5e:9b:da:2f:2d:6c:d8:af:83:ea:4c:86:7e:90:0d:27:5b:
ba:95:1c:6c:92:27:0f:16:a4:61:59:81:e3:97:f9:73:e3:18:
bc:cc:80:8b:8d:b8:fe:23:a4:82:b6:2a:f3:d7:29:fd:6b:77:
9a:89:60:82:19:0a:09:49:38:90:35:51:b0:38:8a:27:19:7e:
a4:9a:38:39:11:8b:c4:8b:53:99:2f:18:db:0c:10:56:5f:d6:
ce:6f:8f:c0:6d:19:6d:48:7b:04:df:4b:23:8d:8c:ea:7b:60:
df:1c:90:56:a5:06:ad:0c:e4:6b:7a:68:4b:0f:20:35:d8:eb:
b9:88:d2:14:23:54:bf:1b:89:e2:6b:36:0e:5a:b7:83:b9:c9:
a5:43:7a:f1:57:48:a3:27:94:fb:40:b8:9a:d6:cc:6d:d4:df:
3e:c9:e3:c1:31:5f:59:1b:66:9c:3e:19:5c:91:ce:ca:3d:0d:
7e:3c:29:d7:41:4c:70:43:33:55:92:24:31:47:95:9c:4f:67:
1c:e4:f8:b1:9d:03:b3:0d:ea:58:40:3f:a0:db:e6:67:52:7e:
8d:a2:5b:41:ef:90:15:28:e2:60:69:54:7a:9b:04:41:f3:4a:
a9:94:68:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 07:52:40 2025 by rpki-client