Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/38B9E0FC3AEA11F09031D7EADAE4EC9C.roa
File: 38B9E0FC3AEA11F09031D7EADAE4EC9C.roa (raw, json)
Hash identifier: DkWbx0raViQTKKpNCQtOW02syseaXfxlhdylKduKLS8=
Subject key identifier: 55:42:81:71:F8:04:19:EE:F4:BE:1B:5D:2F:E9:C5:25:E8:D7:7B:1A
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1AF7
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/38B9E0FC3AEA11F09031D7EADAE4EC9C.roa
Signing time: Tue 27 May 2025 11:03:30 +0000
ROA not before: Tue 27 May 2025 11:03:25 +0000
ROA not after: Thu 27 May 2027 11:03:25 +0000
asID: 46337
IP address blocks: 154.16.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 06 Jun 2025 00:07:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6903 (0x1af7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: May 27 11:03:25 2025 GMT
Not After : May 27 11:03:25 2027 GMT
Subject: CN=68359c02-de0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:c2:5a:e3:b1:48:16:2b:3e:c4:45:ef:53:e1:
1e:bf:d4:ef:84:3b:11:08:f3:dd:89:b6:70:b6:8c:
6c:3b:5f:c8:50:78:d0:02:af:35:98:ac:76:b4:71:
7e:12:74:01:d7:d1:fe:cc:d9:af:19:47:ff:a6:d9:
ae:10:91:b5:df:fc:c9:e3:8d:fb:60:47:53:0b:6f:
14:57:81:8b:ab:a2:7f:f5:ba:f5:ea:1c:16:96:48:
93:60:13:ad:22:61:b0:b0:95:b1:08:2c:24:b5:f9:
77:f3:a6:5f:f4:58:27:d7:3d:9e:a8:c7:b3:73:2c:
23:c1:95:d1:97:30:42:07:e0:2e:81:78:7e:4d:4e:
02:fb:60:62:19:49:5f:35:c0:7a:96:25:56:90:cd:
b0:4a:63:60:3f:d3:ff:c8:0f:df:e0:9a:ee:eb:96:
57:98:91:3b:0b:10:f3:27:1e:b5:03:c5:32:c6:a3:
a7:6f:d5:74:0e:da:b4:87:72:18:d6:04:cc:4c:10:
9f:88:74:45:68:ae:0e:2b:af:9a:73:27:5c:c7:74:
bc:d9:ac:d7:02:79:95:a7:e8:b5:6d:3d:8c:d1:dc:
22:a4:13:2a:fe:88:09:3f:9e:7a:7d:59:37:32:3b:
52:11:1f:d6:53:7c:56:0e:41:96:2e:07:b0:2c:8b:
3b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:42:81:71:F8:04:19:EE:F4:BE:1B:5D:2F:E9:C5:25:E8:D7:7B:1A
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/38B9E0FC3AEA11F09031D7EADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.117.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:e8:56:9f:98:71:e9:03:4d:c8:5e:9a:14:e2:65:98:72:02:
68:c5:0b:e4:09:23:f5:71:12:44:ba:77:86:ed:33:31:b8:36:
12:98:13:5a:fc:cd:a9:2b:55:4f:17:5e:ae:60:52:2d:07:92:
a2:25:c4:9e:8d:e4:eb:e9:9e:2c:fa:73:2c:c5:d0:6f:78:82:
9e:fa:f7:ac:d8:ab:26:c3:ad:3f:9f:6e:2d:a6:63:36:3e:1a:
30:1e:24:00:d7:ad:80:6b:97:e7:b8:30:ba:ee:5a:0a:60:13:
5b:1c:9b:32:e9:5f:9e:6d:d3:dc:60:66:1f:f5:fd:45:47:e4:
f3:69:bd:33:3e:da:35:72:dc:51:fd:52:ae:2f:c9:28:94:8d:
73:a9:e4:24:e3:40:c3:26:5a:f8:3c:ff:fe:f4:f3:6d:ac:b2:
d9:ef:72:bc:da:db:0d:8e:60:92:7a:49:5e:d4:36:72:da:a4:
a7:d5:db:46:aa:f1:12:89:46:0d:43:ea:7e:c1:4b:d4:56:b9:
50:16:d8:ca:e5:97:86:85:24:c3:4e:a3:4e:29:de:fa:d0:91:
f7:c0:4f:71:ab:dc:ce:46:6f:20:71:60:18:33:d0:cc:29:e0:
d5:79:7f:af:d6:7f:11:d0:0d:39:97:74:14:d3:3d:d0:26:15:
ed:e5:6f:69
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICGvcwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yNTA1MjcxMTAzMjVaFw0yNzA1MjcxMTAzMjVaMBgxFjAU
BgNVBAMTDTY4MzU5YzAyLWRlMGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDWwlrjsUgWKz7ERe9T4R6/1O+EOxEI892JtnC2jGw7X8hQeNACrzWYrHa0
cX4SdAHX0f7M2a8ZR/+m2a4QkbXf/MnjjftgR1MLbxRXgYuron/1uvXqHBaWSJNg
E60iYbCwlbEILCS1+Xfzpl/0WCfXPZ6ox7NzLCPBldGXMEIH4C6BeH5NTgL7YGIZ
SV81wHqWJVaQzbBKY2A/0//ID9/gmu7rlleYkTsLEPMnHrUDxTLGo6dv1XQO2rSH
chjWBMxMEJ+IdEVorg4rr5pzJ1zHdLzZrNcCeZWn6LVtPYzR3CKkEyr+iAk/nnp9
WTcyO1IRH9ZTfFYOQZYuB7AsizvJAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUVUKB
cfgEGe70vhtdL+nFJejXexowHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzM4QjlFMEZDM0FFQTExRjA5MDMxRDdFQURBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEHUwDQYJKoZIhvcNAQEL
BQADggEBALroVp+YcekDTchemhTiZZhyAmjFC+QJI/VxEkS6d4btMzG4NhKYE1r8
zakrVU8XXq5gUi0HkqIlxJ6N5Ovpniz6cyzF0G94gp7696zYqybDrT+fbi2mYzY+
GjAeJADXrYBrl+e4MLruWgpgE1scmzLpX55t09xgZh/1/UVH5PNpvTM+2jVy3FH9
Uq4vySiUjXOp5CTjQMMmWvg8//70822sstnvcrza2w2OYJJ6SV7UNnLapKfV20aq
8RKJRg1D6n7BS9RWuVAW2Mrll4aFJMNOo04p3vrQkffAT3Gr3M5GbyBxYBgz0Mwp
4NV5f6/WfxHQDTmXdBTTPdAmFe3lb2k=
-----END CERTIFICATE-----
Generated at Wed Jun 4 11:30:20 2025 by rpki-client