Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F2D21116563E11F0B5A5FECADAE4EC9C.roa
File: F2D21116563E11F0B5A5FECADAE4EC9C.roa (raw, json)
Hash identifier: QXStarwLrHv/VxeKi8vslXYVEN24tegHzxxe5vIgA28=
Subject key identifier: 56:70:ED:55:2A:50:44:D2:5E:0D:0E:DA:C9:51:E7:17:C4:45:3F:FD
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1B5C
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F2D21116563E11F0B5A5FECADAE4EC9C.roa
Signing time: Tue 01 Jul 2025 05:48:01 +0000
ROA not before: Tue 01 Jul 2025 05:47:56 +0000
ROA not after: Thu 01 Jul 2027 05:47:56 +0000
asID: 61112
IP address blocks: 154.16.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 08 Jul 2025 00:06:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7004 (0x1b5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jul 1 05:47:56 2025 GMT
Not After : Jul 1 05:47:56 2027 GMT
Subject: CN=68637691-af44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:11:65:4b:6e:fa:9a:62:71:84:25:aa:6b:94:
94:29:14:d6:7d:75:12:16:00:77:2b:0a:ed:cd:94:
df:d2:5b:59:21:49:24:ff:a9:24:11:a9:67:ee:94:
46:b7:e6:f1:b7:96:d6:4c:0c:7f:85:22:42:38:a8:
b9:6b:c7:aa:b5:a8:f3:21:5b:01:47:42:a0:a2:7f:
1d:00:5f:68:0c:d7:83:20:53:fd:bb:30:0a:ce:37:
9b:86:02:6e:4e:1d:c5:52:eb:ee:97:53:41:e7:3a:
38:df:7d:a5:10:eb:59:b0:8f:35:de:04:c8:9b:0f:
b1:b8:23:a7:8f:99:82:f0:bd:f5:1a:8d:4d:c0:e9:
17:ae:19:b9:e6:a0:c3:41:d8:c6:d4:68:42:ad:72:
7e:0a:59:0c:5b:cd:06:3f:d6:7f:3a:0e:45:d6:b1:
58:05:af:53:1b:03:3c:31:11:82:d6:05:13:bb:cc:
34:55:77:c4:f3:45:00:fd:24:01:b8:f8:9e:d5:bb:
ea:1d:64:3f:b6:8b:4b:1a:ec:8e:2b:7c:b7:21:0c:
08:60:d5:7f:88:4c:7c:4d:d0:92:4c:41:99:75:f0:
df:ea:dc:98:55:6d:b7:db:80:9c:de:93:ef:06:1f:
92:b0:4f:e9:5a:d9:e9:37:92:71:3b:0a:26:a6:a5:
91:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:70:ED:55:2A:50:44:D2:5E:0D:0E:DA:C9:51:E7:17:C4:45:3F:FD
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F2D21116563E11F0B5A5FECADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.27.0/24
Signature Algorithm: sha256WithRSAEncryption
10:31:35:ca:b4:15:56:05:4c:35:17:50:9e:01:58:d7:c1:ee:
49:85:a1:eb:80:62:a0:08:6a:a4:c2:ba:9f:1f:6e:08:af:3d:
01:8d:67:ca:f7:0e:58:d2:21:7b:31:91:8c:e9:53:c5:9d:07:
78:8f:75:fc:b3:df:ba:20:6b:19:d9:ac:e1:e8:8f:92:56:18:
53:1f:24:a5:fc:48:e6:9a:92:60:22:e9:9e:d0:6b:75:cd:45:
2c:1f:5f:a7:c9:c6:c8:28:f7:ee:91:7a:0c:87:89:61:3b:a7:
c4:e1:4b:3b:d4:ba:6a:ef:94:85:db:0e:bd:83:62:96:4d:ce:
c0:dd:bf:6e:de:5a:de:f4:d8:e2:f7:5c:8e:a3:8d:df:2f:5f:
16:b0:e5:28:a4:e8:1d:72:e8:4a:bf:04:3e:5a:16:6a:a3:a7:
e2:e3:91:38:61:73:1f:d7:bc:22:5f:5f:46:8a:89:6a:f8:c5:
ba:e3:13:09:c0:c7:1e:fa:98:4e:19:d7:20:d6:b8:85:e8:08:
68:47:0a:61:c9:8a:20:01:07:67:e4:0f:5d:56:78:09:eb:1f:
11:32:9c:f3:fa:95:91:9f:c3:79:16:fd:92:71:d2:d5:c6:4f:
13:0c:58:78:d7:72:9f:88:12:88:0b:28:bc:d4:9d:23:8f:29:
00:db:da:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 6 04:14:21 2025 by rpki-client