Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369F058/8B32E79A553911E9A572702FF8AEA228/32FAEFC2361B11F0B2EA437CDAE4EC9C.roa
File: 32FAEFC2361B11F0B2EA437CDAE4EC9C.roa (raw, json)
Hash identifier: 22FqTrSwm7BxiKIiscjIzYYBmw1MfLawSBgcnxT4pB4=
Subject key identifier: 4D:7C:66:23:A3:AB:85:E2:7D:BA:68:62:F2:C4:01:DE:7E:DC:47:81
Certificate issuer: /CN=F369F058AF/serialNumber=C92E885827C67619E13175703017C4442DDFEACF
Certificate serial: 090D
Authority key identifier: C9:2E:88:58:27:C6:76:19:E1:31:75:70:30:17:C4:44:2D:DF:EA:CF
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/yS6IWCfGdhnhMXVwMBfERC3f6s8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369F058/8B32E79A553911E9A572702FF8AEA228/32FAEFC2361B11F0B2EA437CDAE4EC9C.roa
Signing time: Wed 21 May 2025 08:11:30 +0000
ROA not before: Wed 21 May 2025 08:11:25 +0000
ROA not after: Mon 21 May 2035 08:11:25 +0000
asID: 328114
IP address blocks: 102.211.252.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369F058/8B32E79A553911E9A572702FF8AEA228/yS6IWCfGdhnhMXVwMBfERC3f6s8.crl
rsync://rpki.afrinic.net/repository/member_repository/F369F058/8B32E79A553911E9A572702FF8AEA228/yS6IWCfGdhnhMXVwMBfERC3f6s8.mft
rsync://rpki.afrinic.net/repository/afrinic/yS6IWCfGdhnhMXVwMBfERC3f6s8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2317 (0x90d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369F058AF, serialNumber=C92E885827C67619E13175703017C4442DDFEACF
Validity
Not Before: May 21 08:11:25 2025 GMT
Not After : May 21 08:11:25 2035 GMT
Subject: CN=682d8ab2-0835
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a1:1a:50:84:2e:c1:57:b2:ba:7e:a7:be:85:
b9:5a:bb:5f:90:79:ed:41:26:68:b6:28:50:25:e2:
eb:13:cd:eb:fa:fc:89:51:23:1f:d5:49:4a:bb:99:
a7:d9:5a:ab:91:8d:ce:9a:3a:b5:ee:3b:c9:6c:db:
a3:3e:7d:d2:a3:dd:59:e9:13:f3:3f:18:36:9b:62:
b4:b6:f1:5f:81:1b:5d:54:a7:c7:37:15:90:ee:0f:
62:41:a7:94:4f:16:f8:75:2d:fd:b0:45:86:a2:52:
01:fd:e9:e0:b8:bb:e8:37:f9:10:e5:7e:24:77:66:
04:b0:9d:79:8a:d1:a6:98:06:c8:88:a7:0b:b1:5c:
8b:d4:6f:e6:ba:4a:45:f8:ec:d3:ca:8c:54:30:33:
c2:ec:04:c6:0e:79:f7:57:a0:3c:ca:b5:ac:d2:55:
e3:7b:4d:55:8a:0f:ef:01:4c:b4:96:90:a0:92:f5:
2a:09:3c:b4:a5:1a:c2:57:54:84:e4:a6:b7:c4:c7:
9e:6e:8c:cb:27:a2:88:c3:3c:00:bd:a3:2a:50:4a:
e7:9a:ed:b0:fe:29:ed:25:87:d5:54:03:98:90:d7:
13:ff:4e:ab:5f:a9:c3:49:cf:a3:76:d7:a9:43:0a:
68:7f:a5:cb:f8:4c:5b:45:1f:dc:43:41:41:23:10:
6f:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:7C:66:23:A3:AB:85:E2:7D:BA:68:62:F2:C4:01:DE:7E:DC:47:81
X509v3 Authority Key Identifier:
keyid:C9:2E:88:58:27:C6:76:19:E1:31:75:70:30:17:C4:44:2D:DF:EA:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369F058/8B32E79A553911E9A572702FF8AEA228/yS6IWCfGdhnhMXVwMBfERC3f6s8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/yS6IWCfGdhnhMXVwMBfERC3f6s8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369F058/8B32E79A553911E9A572702FF8AEA228/32FAEFC2361B11F0B2EA437CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.211.252.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:c7:81:af:60:4a:d6:b8:40:f2:b6:42:cc:5c:8e:d7:26:38:
0e:c8:40:0b:48:51:65:30:69:fe:bc:8f:f8:79:53:a8:82:f4:
96:5b:3f:c2:a3:0d:37:9d:2c:bc:0d:78:16:6a:ec:80:cf:77:
0e:0f:77:2b:4e:80:b8:6f:34:73:ef:7e:a0:b7:90:3d:a8:12:
29:4a:c8:b5:08:03:a8:63:f6:cb:b8:d4:0d:87:f4:86:2b:d5:
db:d4:93:26:b5:b9:3f:62:91:56:2a:6f:8c:27:99:b1:80:f8:
09:53:41:85:1e:2c:0c:2a:79:f8:52:64:16:94:ca:ae:da:8e:
e6:68:05:e2:d8:25:ba:91:3f:85:7e:f8:8d:36:05:98:91:42:
74:9f:4b:51:2a:7e:0d:2f:05:83:9d:b3:04:61:8b:b5:37:0b:
64:49:46:cd:c8:1a:d6:87:6e:ed:65:b2:3e:a5:d5:d2:50:00:
73:49:17:99:5b:da:9f:d3:8f:45:30:ff:cb:93:5c:dc:db:27:
02:9b:6e:ab:99:8c:b8:ac:77:ec:eb:74:ca:ea:27:e1:34:42:
60:15:15:03:29:f3:48:82:b9:85:c7:61:f3:15:96:57:7b:7a:
ce:f3:6f:95:9b:bf:b3:85:c2:9e:6d:39:64:4b:53:a5:48:57:
fb:12:e4:cd
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICCQ0wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OUYwNThBRjExMC8GA1UEBRMoQzkyRTg4NTgyN0M2NzYxOUUxMzE3NTcwMzAxN0M0
NDQyRERGRUFDRjAeFw0yNTA1MjEwODExMjVaFw0zNTA1MjEwODExMjVaMBgxFjAU
BgNVBAMTDTY4MmQ4YWIyLTA4MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDHoRpQhC7BV7K6fqe+hblau1+Qee1BJmi2KFAl4usTzev6/IlRIx/VSUq7
mafZWquRjc6aOrXuO8ls26M+fdKj3VnpE/M/GDabYrS28V+BG11Up8c3FZDuD2JB
p5RPFvh1Lf2wRYaiUgH96eC4u+g3+RDlfiR3ZgSwnXmK0aaYBsiIpwuxXIvUb+a6
SkX47NPKjFQwM8LsBMYOefdXoDzKtazSVeN7TVWKD+8BTLSWkKCS9SoJPLSlGsJX
VITkprfEx55ujMsnoojDPAC9oypQSuea7bD+Ke0lh9VUA5iQ1xP/TqtfqcNJz6N2
16lDCmh/pcv4TFtFH9xDQUEjEG/lAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUTXxm
I6OrheJ9umhi8sQB3n7cR4EwHwYDVR0jBBgwFoAUyS6IWCfGdhnhMXVwMBfERC3f
6s8wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjlGMDU4LzhCMzJFNzlBNTUzOTExRTlBNTcyNzAyRkY4QUVBMjI4L3lTNklX
Q2ZHZGhuaE1YVndNQmZFUkMzZjZzOC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL3lTNklXQ2ZHZGhuaE1YVndNQmZFUkMzZjZzOC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjlGMDU4LzhCMzJFNzlBNTUzOTExRTlBNTcyNzAyRkY4
QUVBMjI4LzMyRkFFRkMyMzYxQjExRjBCMkVBNDM3Q0RBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJm0/wwDQYJKoZIhvcNAQEL
BQADggEBABrHga9gSta4QPK2QsxcjtcmOA7IQAtIUWUwaf68j/h5U6iC9JZbP8Kj
DTedLLwNeBZq7IDPdw4PdytOgLhvNHPvfqC3kD2oEilKyLUIA6hj9su41A2H9IYr
1dvUkya1uT9ikVYqb4wnmbGA+AlTQYUeLAwqefhSZBaUyq7ajuZoBeLYJbqRP4V+
+I02BZiRQnSfS1Eqfg0vBYOdswRhi7U3C2RJRs3IGtaHbu1lsj6l1dJQAHNJF5lb
2p/Tj0Uw/8uTXNzbJwKbbquZjLisd+zrdMrqJ+E0QmAVFQMp80iCuYXHYfMVlld7
es7zb5Wbv7OFwp5tOWRLU6VIV/sS5M0=
-----END CERTIFICATE-----
Generated at Fri Jun 6 06:45:11 2025 by rpki-client