Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/D309A74834F811F0BAC585D3DAE4EC9C.roa
File: D309A74834F811F0BAC585D3DAE4EC9C.roa (raw, json)
Hash identifier: AJ5mBGCbRyHsPx3Z/g7LsKTjB0yWmNlgitYk3Dnv4W4=
Subject key identifier: 88:CC:7E:87:6A:C9:CC:DD:50:D9:EF:BE:45:1A:77:C8:AF:44:D0:B0
Certificate issuer: /CN=F369BF27AF/serialNumber=6057F489F5ADC4E9269C260D702C81AAB6AA2E6D
Certificate serial: 08CA
Authority key identifier: 60:57:F4:89:F5:AD:C4:E9:26:9C:26:0D:70:2C:81:AA:B6:AA:2E:6D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/YFf0ifWtxOkmnCYNcCyBqraqLm0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/D309A74834F811F0BAC585D3DAE4EC9C.roa
Signing time: Mon 19 May 2025 21:32:55 +0000
ROA not before: Mon 19 May 2025 21:32:50 +0000
ROA not after: Sat 19 May 2035 21:32:50 +0000
asID: 37049
IP address blocks: 2c0f:fdc8::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/YFf0ifWtxOkmnCYNcCyBqraqLm0.crl
rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/YFf0ifWtxOkmnCYNcCyBqraqLm0.mft
rsync://rpki.afrinic.net/repository/afrinic/YFf0ifWtxOkmnCYNcCyBqraqLm0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 10 Jun 2025 00:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2250 (0x8ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369BF27AF, serialNumber=6057F489F5ADC4E9269C260D702C81AAB6AA2E6D
Validity
Not Before: May 19 21:32:50 2025 GMT
Not After : May 19 21:32:50 2035 GMT
Subject: CN=682ba387-d3c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:20:c0:06:43:70:e5:a3:60:63:e4:1a:4e:1b:
96:0d:b7:80:65:9b:46:c4:2f:2b:32:52:bb:41:45:
dc:ee:6c:12:87:93:20:89:e9:cc:98:98:fb:2b:20:
8a:a0:44:13:67:b1:ff:fe:ba:9f:50:6b:2c:b4:16:
01:86:f6:2c:9c:e8:0c:08:b1:44:f3:2d:bd:5c:4c:
04:f2:16:4e:9b:86:3f:b2:2b:12:39:09:dc:88:8f:
46:6e:2e:a9:7b:54:e2:8f:68:c0:2f:f3:06:2c:7a:
6b:2e:43:75:f1:13:cb:fa:eb:06:df:db:1b:7f:99:
d1:ce:58:22:e6:d5:25:e0:60:27:3c:54:d1:46:c1:
8f:89:f3:44:02:0e:d1:73:d1:3c:d5:94:63:e4:63:
e3:9f:ad:fd:4a:dc:7d:c5:c5:88:d5:eb:8a:50:2e:
2f:5e:b0:e9:6f:0d:d6:58:71:2e:39:cc:c5:f6:ac:
5d:98:cf:19:dc:8f:b1:cf:06:c3:88:3e:e6:ae:f2:
58:27:f7:72:35:df:78:74:42:23:b1:1b:d6:4b:14:
bb:fc:cb:4f:17:26:b1:6b:e2:6b:88:ee:19:69:b3:
dc:7e:c2:dd:71:f8:b1:f4:65:38:75:85:17:cb:07:
7e:e3:52:34:1c:04:ff:d8:11:7c:79:69:35:3a:1d:
2c:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:CC:7E:87:6A:C9:CC:DD:50:D9:EF:BE:45:1A:77:C8:AF:44:D0:B0
X509v3 Authority Key Identifier:
keyid:60:57:F4:89:F5:AD:C4:E9:26:9C:26:0D:70:2C:81:AA:B6:AA:2E:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/YFf0ifWtxOkmnCYNcCyBqraqLm0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/YFf0ifWtxOkmnCYNcCyBqraqLm0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/D309A74834F811F0BAC585D3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:fdc8::/32
Signature Algorithm: sha256WithRSAEncryption
26:96:92:79:b2:be:20:ef:bf:3f:bd:e4:f8:6f:4c:b4:a0:61:
04:a6:c1:1e:74:b8:c0:0b:8d:5b:dd:0a:96:2e:fd:2c:bd:fa:
c4:38:b9:44:c4:f7:ad:e5:5c:c4:52:0e:92:a0:23:e9:cb:7e:
63:c4:9c:16:22:99:10:72:be:f0:39:3f:80:56:c2:16:10:fb:
aa:d7:b4:5a:9d:d0:25:f3:5d:40:ba:e7:12:c4:20:41:a6:33:
e5:05:25:e5:46:f3:ec:17:bb:07:44:b6:f6:fd:09:e7:8b:20:
41:9b:a5:ba:55:fd:05:d8:8f:0d:51:67:42:e8:87:0c:f6:1a:
e5:e4:d1:1a:92:c7:78:17:f9:d5:86:c5:ea:b7:f7:68:6f:d5:
a9:f1:e8:b4:fe:ef:af:78:b5:97:c5:7b:13:66:d8:3b:69:d5:
a7:93:1c:bb:26:c3:94:cc:99:80:84:5b:49:b9:ca:e6:8c:ad:
15:e0:7f:28:78:c6:37:c9:ca:4d:d5:b8:91:b7:9d:b9:b3:ae:
8c:9c:d5:c7:53:62:43:32:af:ea:6f:c6:ed:65:84:89:7e:ff:
8a:e9:9a:b2:34:06:6c:33:88:fd:e6:22:4e:34:42:31:d1:29:
99:54:01:a3:16:c1:f0:79:16:44:a7:fc:d9:a6:77:85:55:91:
dd:bd:f3:18
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCMowDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OUJGMjdBRjExMC8GA1UEBRMoNjA1N0Y0ODlGNUFEQzRFOTI2OUMyNjBENzAyQzgx
QUFCNkFBMkU2RDAeFw0yNTA1MTkyMTMyNTBaFw0zNTA1MTkyMTMyNTBaMBgxFjAU
BgNVBAMTDTY4MmJhMzg3LWQzYzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQD0IMAGQ3Dlo2Bj5BpOG5YNt4Blm0bELysyUrtBRdzubBKHkyCJ6cyYmPsr
IIqgRBNnsf/+up9Qayy0FgGG9iyc6AwIsUTzLb1cTATyFk6bhj+yKxI5CdyIj0Zu
Lql7VOKPaMAv8wYsemsuQ3XxE8v66wbf2xt/mdHOWCLm1SXgYCc8VNFGwY+J80QC
DtFz0TzVlGPkY+Ofrf1K3H3FxYjV64pQLi9esOlvDdZYcS45zMX2rF2Yzxncj7HP
BsOIPuau8lgn93I133h0QiOxG9ZLFLv8y08XJrFr4muI7hlps9x+wt1x+LH0ZTh1
hRfLB37jUjQcBP/YEXx5aTU6HSxjAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUiMx+
h2rJzN1Q2e++RRp3yK9E0LAwHwYDVR0jBBgwFoAUYFf0ifWtxOkmnCYNcCyBqraq
Lm0wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjlCRjI3LzQ1MTI0OERBOTFFQTExRTlCQTkyODQ3QUY4QUVBMjI4L1lGZjBp
Zld0eE9rbW5DWU5jQ3lCcXJhcUxtMC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1lGZjBpZld0eE9rbW5DWU5jQ3lCcXJhcUxtMC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjlCRjI3LzQ1MTI0OERBOTFFQTExRTlCQTkyODQ3QUY4
QUVBMjI4L0QzMDlBNzQ4MzRGODExRjBCQUM1ODVEM0RBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAsD/3IMA0GCSqGSIb3DQEB
CwUAA4IBAQAmlpJ5sr4g778/veT4b0y0oGEEpsEedLjAC41b3QqWLv0svfrEOLlE
xPet5VzEUg6SoCPpy35jxJwWIpkQcr7wOT+AVsIWEPuq17RandAl811AuucSxCBB
pjPlBSXlRvPsF7sHRLb2/QnniyBBm6W6Vf0F2I8NUWdC6IcM9hrl5NEaksd4F/nV
hsXqt/dob9Wp8ei0/u+veLWXxXsTZtg7adWnkxy7JsOUzJmAhFtJucrmjK0V4H8o
eMY3ycpN1biRt525s66MnNXHU2JDMq/qb8btZYSJfv+K6ZqyNAZsM4j95iJONEIx
0SmZVAGjFsHweRZEp/zZpneFVZHdvfMY
-----END CERTIFICATE-----
Generated at Sun Jun 8 23:21:33 2025 by rpki-client