Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/957664088D8511F09BE520D0DAE4EC9C.roa
File: 957664088D8511F09BE520D0DAE4EC9C.roa (raw, json)
Hash identifier: JFzSlS/XFFDsmbIEphSp8kJ6C1IrypBBpTfGIXc6LKE=
Subject key identifier: 0D:79:2E:2A:BD:6C:A0:62:5C:2D:4B:AB:37:EC:0D:BF:A8:7E:B0:03
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1C00
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/957664088D8511F09BE520D0DAE4EC9C.roa
Signing time: Tue 09 Sep 2025 14:02:13 +0000
ROA not before: Tue 09 Sep 2025 14:02:05 +0000
ROA not after: Thu 09 Sep 2027 14:02:05 +0000
asID: 29802
IP address blocks: 154.127.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 19 Sep 2025 01:15:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7168 (0x1c00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Sep 9 14:02:05 2025 GMT
Not After : Sep 9 14:02:05 2027 GMT
Subject: CN=68c03365-71ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d3:b6:4d:ac:05:44:0f:e9:cb:7e:aa:5a:15:
a7:dd:e9:17:14:38:80:c4:7a:2e:f3:7e:15:f8:11:
c9:89:f7:b1:cf:22:b2:4f:f4:12:82:e2:2a:94:7b:
b8:f3:9b:29:3f:fc:f7:90:35:7c:0b:ae:68:b7:4d:
38:47:d2:8a:f8:44:85:cc:95:2d:28:b8:a5:74:da:
05:29:35:2f:f3:d5:ba:1c:c3:e7:f9:cd:a5:33:89:
a0:7f:e8:cf:b7:1c:90:39:64:6f:6f:f0:98:c2:9c:
d9:e2:ca:28:49:c5:5b:79:4f:f4:0d:17:42:87:1f:
cb:48:fd:1f:3c:4b:ec:ba:f9:0a:38:93:78:86:23:
41:f6:be:cb:03:dc:9e:18:6e:82:9a:ff:79:cc:29:
0b:18:4c:1c:8e:b8:ab:72:bf:2c:c2:71:54:90:fe:
0f:94:84:e5:f9:df:28:a7:bf:50:40:13:69:39:33:
01:e1:93:ef:c7:2f:94:c8:6f:7f:50:7f:1d:a8:8b:
f9:a8:da:a1:88:1a:39:de:e7:23:18:35:fc:3c:66:
df:c4:f6:b1:9f:02:24:83:be:00:48:1b:c6:6f:f4:
f2:d7:78:dd:11:52:82:30:8d:1f:d9:b4:ef:8c:75:
9b:f1:e2:e4:66:92:39:6c:36:64:85:5d:73:ae:35:
95:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:79:2E:2A:BD:6C:A0:62:5C:2D:4B:AB:37:EC:0D:BF:A8:7E:B0:03
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/957664088D8511F09BE520D0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.127.61.0/24
Signature Algorithm: sha256WithRSAEncryption
56:5d:42:1d:44:0a:fb:2c:b4:87:1b:18:ce:ad:7c:0d:3e:66:
93:a3:f2:55:60:c5:6a:df:44:64:f1:f1:1e:02:8e:85:f6:be:
5d:d9:57:bf:61:fa:b3:92:e9:a5:6a:f4:6a:c3:e1:53:57:38:
17:92:1a:16:ea:d2:34:cc:e0:fe:ec:e8:e8:21:a0:3f:31:b3:
51:b3:e2:91:93:ea:26:70:a9:1d:f9:92:db:53:57:59:26:96:
64:c8:a3:dd:56:4e:91:3f:e2:71:4e:0a:97:d5:c4:54:82:37:
9d:7f:06:17:6b:d8:b7:98:11:10:b1:6e:20:5e:89:74:8e:3a:
b2:09:45:3f:78:f9:9c:b8:84:8a:00:e9:96:8e:d8:e9:88:4d:
4b:c7:e3:90:2d:42:1c:6d:e4:72:1e:b8:18:75:48:d0:f0:5f:
a2:3d:48:2a:67:b2:e7:d6:0b:22:c4:82:e4:fe:d6:0b:cd:a2:
30:65:5b:61:77:ef:83:cb:11:1c:36:ed:46:c3:e5:25:74:15:
6f:5f:58:6c:c7:22:45:24:09:5f:5c:63:0f:14:41:ad:2c:88:
90:f3:8b:8e:3d:5b:c9:2c:e6:d9:6a:20:1a:b9:e9:0d:7d:74:
c2:f1:f5:bf:4f:c0:02:60:af:57:46:e4:72:01:14:95:97:d7:
21:f7:73:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 17 13:11:57 2025 by rpki-client