Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/76FF3C2034F711F09F02A6CADAE4EC9C.roa
File: 76FF3C2034F711F09F02A6CADAE4EC9C.roa (raw, json)
Hash identifier: Gk8WolnjJk7TV4ax01HymP3sKCzxlNV/zespCqdSJE0=
Subject key identifier: 12:E0:42:3D:C5:2A:5D:3D:F8:5B:9D:37:E0:F4:74:E3:C0:62:D6:7F
Certificate issuer: /CN=F369BF27AF/serialNumber=6057F489F5ADC4E9269C260D702C81AAB6AA2E6D
Certificate serial: 08C6
Authority key identifier: 60:57:F4:89:F5:AD:C4:E9:26:9C:26:0D:70:2C:81:AA:B6:AA:2E:6D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/YFf0ifWtxOkmnCYNcCyBqraqLm0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/76FF3C2034F711F09F02A6CADAE4EC9C.roa
Signing time: Mon 19 May 2025 21:23:11 +0000
ROA not before: Mon 19 May 2025 21:23:06 +0000
ROA not after: Sat 19 May 2035 21:23:06 +0000
asID: 37049
IP address blocks: 2c0e:7e02::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/YFf0ifWtxOkmnCYNcCyBqraqLm0.crl
rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/YFf0ifWtxOkmnCYNcCyBqraqLm0.mft
rsync://rpki.afrinic.net/repository/afrinic/YFf0ifWtxOkmnCYNcCyBqraqLm0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 10 Jun 2025 00:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2246 (0x8c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369BF27AF, serialNumber=6057F489F5ADC4E9269C260D702C81AAB6AA2E6D
Validity
Not Before: May 19 21:23:06 2025 GMT
Not After : May 19 21:23:06 2035 GMT
Subject: CN=682ba13f-06a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a8:3a:47:f3:2f:8a:4d:1b:6e:f7:7d:db:a7:
5e:40:2a:20:b2:0c:62:8a:fa:a5:14:01:ca:e7:06:
57:4b:0c:00:94:e1:68:e1:1c:2f:5a:c7:00:d8:05:
aa:36:b0:91:15:ae:bd:29:37:ab:20:2b:50:99:65:
34:91:1e:aa:65:31:43:8f:ad:29:fa:e8:f7:2b:d7:
b4:c3:39:6a:bf:f6:36:cf:f3:ea:c6:a0:53:c5:53:
12:e7:bf:8a:a2:3e:a2:88:89:b5:9c:f8:55:9b:2a:
ec:4c:13:3b:89:92:44:7c:44:83:e3:77:43:62:86:
68:05:31:af:74:6e:01:75:6a:f2:05:06:ef:8c:0a:
d0:a5:1a:d4:5a:7f:51:f6:36:da:55:ed:13:21:e9:
d3:2b:ff:78:4e:9e:e5:2c:08:51:4b:8c:40:ab:7f:
b4:e0:78:95:72:24:55:e1:cc:19:ed:c9:28:66:6e:
63:f5:dd:6b:3d:d2:d7:2c:e4:0c:23:56:53:9e:cf:
36:fb:1c:5c:fb:90:e9:0a:c3:6a:55:92:81:cb:74:
6d:8d:20:32:78:de:d4:37:0b:6a:e6:8c:29:bd:81:
d4:60:86:4d:66:6b:1e:33:8b:5c:fd:ad:ea:56:98:
e6:62:eb:3e:38:5a:28:33:74:5f:78:5c:2b:a4:23:
9a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:E0:42:3D:C5:2A:5D:3D:F8:5B:9D:37:E0:F4:74:E3:C0:62:D6:7F
X509v3 Authority Key Identifier:
keyid:60:57:F4:89:F5:AD:C4:E9:26:9C:26:0D:70:2C:81:AA:B6:AA:2E:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/YFf0ifWtxOkmnCYNcCyBqraqLm0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/YFf0ifWtxOkmnCYNcCyBqraqLm0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/76FF3C2034F711F09F02A6CADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0e:7e02::/32
Signature Algorithm: sha256WithRSAEncryption
76:fb:6c:60:94:2c:06:28:7a:61:9a:79:fd:f2:e8:72:58:96:
ed:6a:7d:9c:f1:30:d8:aa:17:5a:e3:87:18:ae:51:af:02:08:
a4:51:73:30:20:c8:3a:18:05:79:39:e3:20:c6:fa:c4:df:40:
31:25:d5:cd:09:9c:af:d7:bf:4b:6d:b6:4d:33:49:bf:22:b0:
60:8e:e5:df:f6:8a:b7:7b:79:cb:fc:d2:33:89:cd:07:8a:ce:
52:1d:a7:b1:80:70:c1:33:7d:87:9a:7f:fc:6d:66:f3:0f:2e:
a8:12:82:42:20:46:30:7d:68:bd:7f:27:47:d3:28:17:42:55:
d2:df:93:96:b9:3c:34:3f:17:28:14:96:08:6c:2f:67:d9:58:
57:85:dd:69:e2:22:e6:ed:b4:82:6b:ba:39:41:e2:77:16:eb:
f9:79:07:6e:04:3f:e0:56:4d:7e:0e:b7:04:9e:de:c7:17:72:
a1:a2:8c:33:05:d8:4c:c7:b2:05:d1:b8:f6:2a:0b:89:af:06:
ec:c5:6f:24:69:54:a6:fe:f1:19:02:ed:43:d3:de:7c:87:01:
78:b4:9b:3b:53:11:83:99:d1:4e:16:80:88:7b:ad:d6:13:59:
f3:d5:c0:d7:86:68:70:08:55:f9:99:76:74:f8:dc:75:98:4c:
44:b5:ed:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 18:26:28 2025 by rpki-client