Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B3234/9E121C0C241011ECB2D06956D8A014CE/53C8535A370D11F0BA19FBC3DAE4EC9C.roa
File: 53C8535A370D11F0BA19FBC3DAE4EC9C.roa (raw, json)
Hash identifier: jcknCsQN90u4Au4Vu4kiy2Agc/yUOTzMEL4jWJfVKBk=
Subject key identifier: 40:D6:FA:68:B3:E4:C6:0B:B1:F7:6A:B4:EC:6C:07:38:28:60:26:1E
Certificate issuer: /CN=F36B3234AF/serialNumber=03FE5D726F34E93CE1A95D94518E12237AC3E2C6
Certificate serial: 05CE
Authority key identifier: 03:FE:5D:72:6F:34:E9:3C:E1:A9:5D:94:51:8E:12:23:7A:C3:E2:C6
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/A_5dcm806TzhqV2UUY4SI3rD4sY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B3234/9E121C0C241011ECB2D06956D8A014CE/53C8535A370D11F0BA19FBC3DAE4EC9C.roa
Signing time: Thu 22 May 2025 13:04:43 +0000
ROA not before: Thu 22 May 2025 13:04:38 +0000
ROA not after: Mon 21 May 2035 13:04:38 +0000
asID: 37725
IP address blocks: 102.218.128.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B3234/9E121C0C241011ECB2D06956D8A014CE/A_5dcm806TzhqV2UUY4SI3rD4sY.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B3234/9E121C0C241011ECB2D06956D8A014CE/A_5dcm806TzhqV2UUY4SI3rD4sY.mft
rsync://rpki.afrinic.net/repository/afrinic/A_5dcm806TzhqV2UUY4SI3rD4sY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Jun 2025 00:06:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1486 (0x5ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B3234AF, serialNumber=03FE5D726F34E93CE1A95D94518E12237AC3E2C6
Validity
Not Before: May 22 13:04:38 2025 GMT
Not After : May 21 13:04:38 2035 GMT
Subject: CN=682f20eb-4a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:11:a6:97:c8:f5:1f:62:43:1b:08:7a:e3:6b:
6c:45:0c:a0:c9:8e:e2:e7:b5:d0:27:d1:ba:af:da:
c7:05:e4:f6:0e:b9:b0:a9:ca:d6:74:8e:d5:95:30:
30:22:76:10:90:55:65:0c:99:ff:06:ea:c9:fd:b4:
42:33:50:67:76:5b:ea:d7:20:cf:25:a2:d5:5e:a0:
f8:53:82:19:8d:a7:61:51:63:3e:1d:09:77:7c:71:
56:04:9f:bb:b8:bc:be:3b:60:20:fb:f2:3a:f3:6d:
02:ed:ca:73:c1:98:02:e9:69:7e:6b:ff:9e:f7:ea:
82:d0:cc:3a:c4:e6:2e:cb:dd:69:10:da:e0:cc:e7:
75:93:9d:5a:7b:b5:fa:aa:70:26:3b:f0:7e:af:da:
e4:88:66:b3:83:91:e6:b5:ab:b9:47:c7:a2:17:11:
d4:87:78:c7:04:1c:18:f0:a2:9b:c6:bb:2e:09:87:
ee:91:45:77:eb:71:01:2b:d4:55:47:dc:7d:88:24:
1f:a3:9b:10:ec:b0:ce:33:95:97:44:ec:df:0a:58:
ed:a0:32:34:e7:23:9d:04:3b:54:f5:6f:77:a3:0a:
98:88:70:dd:a7:d4:bb:fd:a2:16:2d:f8:e9:33:fd:
29:ee:14:75:e0:d5:35:6a:d8:0e:69:5c:e2:5b:4b:
e7:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:D6:FA:68:B3:E4:C6:0B:B1:F7:6A:B4:EC:6C:07:38:28:60:26:1E
X509v3 Authority Key Identifier:
keyid:03:FE:5D:72:6F:34:E9:3C:E1:A9:5D:94:51:8E:12:23:7A:C3:E2:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B3234/9E121C0C241011ECB2D06956D8A014CE/A_5dcm806TzhqV2UUY4SI3rD4sY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/A_5dcm806TzhqV2UUY4SI3rD4sY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B3234/9E121C0C241011ECB2D06956D8A014CE/53C8535A370D11F0BA19FBC3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.218.128.0/24
Signature Algorithm: sha256WithRSAEncryption
09:a1:e7:26:74:81:e9:b7:89:85:81:6f:e7:5a:f1:75:20:79:
09:4e:ed:0b:dd:f3:25:66:33:2d:2c:54:d5:67:f2:07:91:85:
95:f6:cf:2a:2f:15:24:f6:33:95:98:26:4a:82:3b:59:e4:7f:
91:a5:55:f6:91:fa:49:31:32:de:27:09:20:0f:b1:79:2f:57:
cc:7a:42:ae:98:24:cc:4b:27:2b:34:a3:63:47:93:af:61:a3:
66:bd:ab:ef:e0:d1:5b:dc:f3:62:89:7c:42:24:14:2c:8f:df:
e6:9d:2b:fd:71:69:6a:7e:c6:86:de:c9:dc:a5:1b:dd:03:4d:
b9:24:d8:82:da:36:75:3a:0c:31:aa:0c:7b:24:c5:fb:68:34:
48:74:15:c6:c5:ab:88:86:e3:42:21:97:7c:d4:29:97:36:26:
d6:22:c3:b4:08:6f:eb:94:bf:2e:ee:a2:ee:58:89:81:c9:ae:
d1:bd:3f:75:98:e6:cc:8d:49:05:59:81:db:51:4e:85:9c:dd:
99:4e:a6:88:95:d3:35:08:90:a4:9c:06:30:7b:c8:b2:9a:79:
45:fb:2d:03:fd:bf:84:c3:28:b9:86:d5:3e:e7:31:ec:35:f1:
86:65:0c:b9:2e:8e:52:26:9d:2a:d5:62:59:e5:a5:6f:c8:03:
8e:1f:40:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 06:04:41 2025 by rpki-client