Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/6711624E323511F09582A0E2DAE4EC9C.roa
File: 6711624E323511F09582A0E2DAE4EC9C.roa (raw, json)
Hash identifier: 29/LEtNaLpMKsV/dN7Xne1ZaleiMNTnN3Lp07S2AzOc=
Subject key identifier: 7E:1E:22:1D:6C:56:26:C2:F5:38:03:9A:23:40:1C:E7:9C:DB:6F:3E
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1AD5
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/6711624E323511F09582A0E2DAE4EC9C.roa
Signing time: Fri 16 May 2025 09:08:59 +0000
ROA not before: Fri 16 May 2025 09:08:55 +0000
ROA not after: Sun 16 May 2027 09:08:55 +0000
asID: 834
IP address blocks: 154.16.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Jun 2025 00:06:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6869 (0x1ad5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: May 16 09:08:55 2025 GMT
Not After : May 16 09:08:55 2027 GMT
Subject: CN=682700ab-0be3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:58:4d:7f:14:b0:7f:b7:39:83:07:e7:a3:e7:
3e:02:be:1a:dc:3e:fb:4c:4d:c7:70:ec:53:e9:23:
60:c0:b5:c6:e5:e6:14:5a:66:6a:d9:05:c4:f7:ea:
8b:69:70:03:ca:1d:90:7d:37:bc:60:80:14:aa:97:
30:cb:ba:66:0a:80:7b:2f:9b:13:f8:cb:47:8d:ad:
0b:5d:e3:0f:18:14:08:5a:e5:13:1a:dc:e9:a1:20:
9d:06:2c:a2:ad:5f:7c:8d:8d:82:0e:ee:a7:64:18:
51:88:95:e4:70:37:59:f9:f9:a4:d7:3d:43:eb:71:
21:31:7c:3b:72:a9:43:db:19:f1:07:72:bc:55:66:
ae:80:8d:64:71:1f:9d:6c:68:7e:20:84:e2:ab:64:
21:10:5b:47:92:d4:a0:8a:dc:a9:e6:84:44:82:51:
64:09:ba:b4:7e:f3:0d:06:30:bf:37:b3:63:44:73:
f5:90:9a:33:b2:74:d3:ab:66:ff:d5:cb:ef:88:f9:
91:22:77:66:e2:5b:88:02:f6:e0:08:6e:01:7c:03:
af:e0:ff:42:98:8d:1a:db:b7:4a:63:ad:57:7c:9b:
46:3f:08:4c:b3:94:a1:76:c8:16:51:68:2f:c4:70:
e6:91:2e:6f:37:e3:77:72:d7:ff:7a:53:a5:9d:44:
0f:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:1E:22:1D:6C:56:26:C2:F5:38:03:9A:23:40:1C:E7:9C:DB:6F:3E
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/6711624E323511F09582A0E2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.166.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:63:c9:0e:aa:39:e0:33:21:e4:26:33:54:18:17:83:ed:9f:
76:95:8e:2b:ed:8e:be:8c:6b:02:9f:2a:b2:bd:c7:b3:a9:13:
a6:fb:2b:b3:2b:5f:e1:80:40:03:40:3a:f6:4f:6f:aa:29:d7:
da:8d:1e:cc:03:d8:9f:1a:ac:72:a5:d9:83:62:70:24:1b:bc:
4a:e0:fa:f3:97:9e:c8:7c:bb:e6:08:cd:a8:c1:26:f0:26:9e:
b6:7e:37:93:e7:40:0c:c5:a6:de:3f:18:92:ae:2c:b1:1f:96:
01:22:d4:4d:3f:c4:dd:16:38:cc:14:54:a5:21:99:3f:11:42:
bd:8f:37:60:e9:fe:43:f1:7c:65:c8:af:72:0c:0c:a2:a7:59:
14:ba:46:7d:91:47:e3:07:1d:19:00:10:12:8f:c7:b3:72:70:
47:2e:86:c1:d9:34:d2:96:c4:0b:f4:d5:eb:c8:c7:2b:d7:22:
94:03:6a:da:03:05:b7:af:99:39:37:7e:e6:63:83:07:36:c8:
c5:5c:69:f0:fb:6f:b0:cc:87:32:89:e1:a7:05:de:01:b6:81:
1b:4b:c2:71:eb:c8:c5:d8:c9:a4:ad:b7:70:8d:c7:9c:1f:8b:
2f:96:1f:5b:81:58:4b:0c:3c:14:10:ef:16:0b:a8:cc:7a:a5:
90:54:0d:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 2 17:02:24 2025 by rpki-client