Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/83E31CEC4B7F11F0BC5C8FCBDAE4EC9C.roa
File: 83E31CEC4B7F11F0BC5C8FCBDAE4EC9C.roa (raw, json)
Hash identifier: 2gJ7EMkl3TkOhvRbTEOyghbZEQtBXliHwqeWS+5f+vA=
Subject key identifier: 9B:4C:77:82:3B:DF:41:0D:05:DC:B4:76:11:C6:1E:75:4B:2B:FC:AB
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1B31
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/83E31CEC4B7F11F0BC5C8FCBDAE4EC9C.roa
Signing time: Tue 17 Jun 2025 13:32:30 +0000
ROA not before: Tue 17 Jun 2025 13:32:24 +0000
ROA not after: Thu 17 Jun 2027 13:32:24 +0000
asID: 9304
IP address blocks: 154.16.150.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 03 Jul 2025 05:48:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6961 (0x1b31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jun 17 13:32:24 2025 GMT
Not After : Jun 17 13:32:24 2027 GMT
Subject: CN=68516e6e-ae2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:39:3d:1d:52:92:0a:b8:d1:ef:aa:26:9c:a1:
28:c3:43:9d:2b:f5:ae:35:bd:56:f4:9e:0c:96:45:
bb:29:c6:e0:75:a6:07:89:e4:27:b9:1b:c4:cb:a8:
a6:d7:8d:7d:12:6c:e2:e3:f7:6c:59:f3:ea:46:df:
da:65:90:6c:b3:d6:2f:fe:0d:41:76:c4:f9:d4:4e:
ae:7e:ab:e5:07:d6:3c:67:36:51:4f:0f:ac:8a:c1:
df:cc:dc:97:3d:33:75:d0:fe:fe:6b:d2:44:c1:28:
51:d4:04:1a:7a:01:f1:81:d6:8c:f2:65:6e:ff:ab:
99:0c:20:c0:f2:01:a1:8d:19:1a:7b:6d:36:21:3c:
97:22:d4:91:1d:27:eb:fd:c0:c0:ca:5a:23:52:4b:
98:10:67:ba:9a:62:ef:c2:77:31:62:2d:92:cd:85:
d7:22:f2:0c:2a:da:24:a9:89:a9:7e:e6:e8:35:f9:
08:0e:06:8d:b5:12:2b:fa:62:e3:b3:4d:0b:2e:39:
9a:a1:22:b6:d8:d7:80:3b:37:ff:34:84:23:bc:0b:
07:6e:23:cd:b1:a0:06:a1:c7:98:55:cc:d9:9d:b4:
de:88:f6:9c:90:d4:f8:79:60:eb:9f:f8:62:f0:02:
8f:6d:3f:e6:43:0a:b0:79:85:f0:05:d6:b0:4d:17:
6a:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:4C:77:82:3B:DF:41:0D:05:DC:B4:76:11:C6:1E:75:4B:2B:FC:AB
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/83E31CEC4B7F11F0BC5C8FCBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.150.0/24
Signature Algorithm: sha256WithRSAEncryption
26:95:4b:9b:d4:9e:c9:28:ae:0d:b3:24:83:cb:74:a7:18:26:
fe:4b:c0:e1:bb:ef:d9:3d:df:ca:62:36:b4:54:a2:05:ec:4c:
5b:20:a8:dc:93:24:2e:ab:be:4b:24:a3:34:1a:91:6a:1b:ad:
3c:2d:77:08:eb:78:8e:d9:49:bf:ac:3d:58:13:fe:d5:53:a3:
10:db:f7:6f:cb:24:88:43:a5:24:06:2e:0e:bd:42:3f:aa:1f:
c3:56:8b:02:f1:02:e1:dc:20:bf:79:d5:78:d0:bf:64:34:1d:
29:df:d8:35:e6:dd:fc:59:dd:25:48:b8:2b:ce:22:74:b3:9b:
27:a1:f6:42:3c:b1:85:4b:26:3b:64:8e:b4:e4:8d:71:9b:15:
ef:3e:6d:cc:33:d1:de:f7:a8:cd:01:92:ac:53:7f:b1:81:55:
f6:56:83:95:79:4d:f8:7c:1a:94:fa:7e:86:85:7a:3d:f8:75:
85:1e:a2:23:ac:01:fa:ed:8b:e8:83:fb:7d:c3:ad:2a:0c:40:
7a:05:2f:60:f7:dd:7b:cf:bc:68:89:07:c7:17:1d:e7:c0:90:
4e:71:92:1d:58:76:2e:53:de:65:ad:b0:d0:a4:90:9c:d7:35:
99:31:5b:f5:3c:da:9a:1f:60:0f:c0:7a:f1:82:ae:2e:e6:85:
56:c0:33:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 12:56:59 2025 by rpki-client