Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36AC9F1/91D240A6697311EFAFAC2778762E951A/8B064D50359511F0A0B68AF3DAE4EC9C.roa
File: 8B064D50359511F0A0B68AF3DAE4EC9C.roa (raw, json)
Hash identifier: 0BrbZmoSHmVKn+7CmY5eSQXfoU6SOglgGRIMP2LuSQQ=
Subject key identifier: 19:5E:49:72:A1:EE:99:DE:A2:44:70:C5:B9:8D:5D:D7:81:F9:22:37
Certificate issuer: /CN=F36AC9F1AF/serialNumber=1B2E71DA04AE09103945117F9076C7F8E199243C
Certificate serial: 0114
Authority key identifier: 1B:2E:71:DA:04:AE:09:10:39:45:11:7F:90:76:C7:F8:E1:99:24:3C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Gy5x2gSuCRA5RRF_kHbH-OGZJDw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36AC9F1/91D240A6697311EFAFAC2778762E951A/8B064D50359511F0A0B68AF3DAE4EC9C.roa
Signing time: Tue 20 May 2025 16:14:45 +0000
ROA not before: Tue 20 May 2025 16:14:40 +0000
ROA not after: Sun 01 Sep 2030 16:14:40 +0000
asID: 328583
IP address blocks: 102.206.220.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36AC9F1/91D240A6697311EFAFAC2778762E951A/Gy5x2gSuCRA5RRF_kHbH-OGZJDw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36AC9F1/91D240A6697311EFAFAC2778762E951A/Gy5x2gSuCRA5RRF_kHbH-OGZJDw.mft
rsync://rpki.afrinic.net/repository/afrinic/Gy5x2gSuCRA5RRF_kHbH-OGZJDw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 10 Jun 2025 00:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 276 (0x114)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36AC9F1AF, serialNumber=1B2E71DA04AE09103945117F9076C7F8E199243C
Validity
Not Before: May 20 16:14:40 2025 GMT
Not After : Sep 1 16:14:40 2030 GMT
Subject: CN=682caa75-4672
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:32:67:ed:05:34:eb:24:1b:c9:24:63:22:b5:
4d:a1:12:51:d4:59:c9:9e:9d:6c:b4:2e:df:f3:2d:
96:86:de:16:e3:c0:48:45:c9:cc:46:d4:76:a3:b9:
eb:a8:80:87:82:ef:33:59:11:06:65:42:2a:c6:06:
2d:03:c6:f6:2b:f5:18:a8:4e:df:6c:cf:22:af:dc:
f9:39:17:85:fa:49:73:22:b2:00:c6:82:14:7b:d2:
10:4c:88:e3:64:a0:fb:d4:9d:96:64:b4:77:86:2e:
b4:ec:4b:73:21:1e:21:3c:d7:9e:1d:0b:2f:b6:4d:
f3:85:c5:81:56:6c:46:a6:48:de:79:86:98:23:a0:
4c:8e:2d:15:f4:36:5e:2f:94:c1:45:f8:a3:70:fb:
3e:af:f0:50:aa:e6:47:ab:90:f8:ac:ee:da:3d:c3:
70:2f:df:e5:12:45:87:83:af:da:c7:82:76:56:fa:
ae:b6:f5:29:53:3b:2c:e8:d3:10:5c:05:61:cd:d7:
a9:09:f9:2e:b7:4f:28:71:5a:8a:5c:0c:f4:14:90:
f8:d9:45:38:0d:00:75:8d:fd:fe:ed:75:dd:6f:42:
09:a8:32:24:a5:cc:7c:f0:4b:48:04:dc:c7:b5:04:
4f:db:97:40:6e:f0:80:b0:ae:ab:32:bb:85:20:a6:
76:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:5E:49:72:A1:EE:99:DE:A2:44:70:C5:B9:8D:5D:D7:81:F9:22:37
X509v3 Authority Key Identifier:
keyid:1B:2E:71:DA:04:AE:09:10:39:45:11:7F:90:76:C7:F8:E1:99:24:3C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36AC9F1/91D240A6697311EFAFAC2778762E951A/Gy5x2gSuCRA5RRF_kHbH-OGZJDw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Gy5x2gSuCRA5RRF_kHbH-OGZJDw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AC9F1/91D240A6697311EFAFAC2778762E951A/8B064D50359511F0A0B68AF3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.206.220.0/22
Signature Algorithm: sha256WithRSAEncryption
04:a8:bc:f3:fd:d4:f1:27:4f:b9:2c:26:10:57:6a:ca:d9:d3:
17:70:eb:2f:ea:aa:6a:4c:fc:7d:e7:27:08:89:b3:bb:b7:17:
02:5e:46:12:f9:46:8c:b1:1d:7d:d1:42:3e:23:fb:55:7d:69:
4c:ee:19:0e:0d:8e:18:62:80:fc:e3:4a:f3:33:b7:09:f6:fe:
e4:6c:f6:63:3f:8f:8e:92:aa:90:fc:ec:3e:17:4a:ff:5b:7f:
d6:47:7d:64:f1:59:6b:5e:86:59:dd:bf:d9:bd:f7:53:e3:ec:
e1:cf:61:11:09:ac:33:8c:3c:da:8d:8d:cf:ce:16:8c:85:69:
b0:f1:51:68:ce:2f:48:43:65:d9:c6:48:93:06:a4:08:98:68:
f9:b7:e5:da:c7:3f:84:51:40:76:e7:73:32:b6:bc:3b:8f:77:
1f:8c:a7:39:67:0b:21:7e:79:e0:6c:fc:9d:ed:b1:b0:f6:d9:
76:2b:c2:15:85:85:1e:23:72:e0:d5:76:06:c7:66:c5:9b:4e:
83:aa:6a:d3:f8:ca:70:c5:7d:ae:4e:36:20:7d:12:3e:dc:8c:
24:1c:cd:0d:74:30:99:9b:30:fc:ca:a3:4a:c9:c9:4c:9f:70:
49:a4:6e:63:1f:53:c7:c2:95:4e:36:6c:04:55:dc:c6:b9:cc:
19:51:95:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 15:25:45 2025 by rpki-client