Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B3234/9E121C0C241011ECB2D06956D8A014CE/AF7ED21E92F211F090FA42A8DAE4EC9C.roa
File: AF7ED21E92F211F090FA42A8DAE4EC9C.roa (raw, json)
Hash identifier: ohEI2splPIKFhsgl/fSv9MywEJaN10Fzqfr0dw9EaH8=
Subject key identifier: 77:2E:FC:EF:90:50:9D:FD:AB:2B:94:29:15:E2:37:9A:D5:A0:12:2B
Certificate issuer: /CN=F36B3234AF/serialNumber=03FE5D726F34E93CE1A95D94518E12237AC3E2C6
Certificate serial: 0653
Authority key identifier: 03:FE:5D:72:6F:34:E9:3C:E1:A9:5D:94:51:8E:12:23:7A:C3:E2:C6
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/A_5dcm806TzhqV2UUY4SI3rD4sY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B3234/9E121C0C241011ECB2D06956D8A014CE/AF7ED21E92F211F090FA42A8DAE4EC9C.roa
Signing time: Tue 16 Sep 2025 11:45:59 +0000
ROA not before: Tue 16 Sep 2025 11:45:41 +0000
ROA not after: Sat 15 Sep 2035 11:45:41 +0000
asID: 5536
IP address blocks: 102.218.128.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B3234/9E121C0C241011ECB2D06956D8A014CE/A_5dcm806TzhqV2UUY4SI3rD4sY.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B3234/9E121C0C241011ECB2D06956D8A014CE/A_5dcm806TzhqV2UUY4SI3rD4sY.mft
rsync://rpki.afrinic.net/repository/afrinic/A_5dcm806TzhqV2UUY4SI3rD4sY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 20 Sep 2025 00:06:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1619 (0x653)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B3234AF, serialNumber=03FE5D726F34E93CE1A95D94518E12237AC3E2C6
Validity
Not Before: Sep 16 11:45:41 2025 GMT
Not After : Sep 15 11:45:41 2035 GMT
Subject: CN=68c94df7-fadc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ad:30:4b:a0:85:b0:be:0c:d2:cb:ca:bc:49:
14:62:5d:e2:e2:26:f9:f6:7c:fc:db:44:db:13:ba:
a1:fa:65:38:03:b5:7b:47:3e:00:b7:e8:cf:d8:17:
c4:b2:74:74:34:42:51:2a:c0:bd:2d:96:e3:fa:3a:
d7:b3:aa:f7:78:f0:ee:41:29:e3:f5:d3:1c:c3:90:
a9:e2:19:ef:1f:1c:48:f2:3e:a3:e3:b5:48:a9:bc:
f9:18:b7:ca:45:da:61:ea:7b:d8:76:83:2b:ed:7e:
47:50:22:4d:40:6b:76:c9:cc:dc:99:05:9f:e3:17:
0e:e8:9d:62:92:ef:f4:d8:dc:fc:c3:d1:71:1d:ac:
3d:63:97:a0:cb:48:f0:46:81:a6:8e:dd:ed:4b:24:
d5:97:bc:6a:00:f1:d1:df:52:ad:7f:88:ec:90:2c:
dc:f7:5d:25:27:ae:82:e1:14:ed:c9:a6:17:c3:68:
03:1e:93:36:a4:b5:8d:22:8b:ea:1d:46:4b:13:0b:
fe:65:86:5d:69:d0:c3:9a:cc:e7:d7:8e:1c:75:ea:
cb:1c:b8:3b:64:64:d9:3e:dc:83:88:ce:a9:db:b9:
09:bb:24:d4:1b:19:4d:d4:2f:b4:11:a8:6d:ce:9c:
12:20:8a:25:c5:0f:92:90:fd:c4:19:e0:af:9b:6d:
62:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:2E:FC:EF:90:50:9D:FD:AB:2B:94:29:15:E2:37:9A:D5:A0:12:2B
X509v3 Authority Key Identifier:
keyid:03:FE:5D:72:6F:34:E9:3C:E1:A9:5D:94:51:8E:12:23:7A:C3:E2:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B3234/9E121C0C241011ECB2D06956D8A014CE/A_5dcm806TzhqV2UUY4SI3rD4sY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/A_5dcm806TzhqV2UUY4SI3rD4sY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B3234/9E121C0C241011ECB2D06956D8A014CE/AF7ED21E92F211F090FA42A8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.218.128.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:1e:42:03:6d:d7:3a:eb:66:40:d9:b0:bf:6b:23:c3:9e:09:
29:06:b8:84:aa:37:09:d3:6b:be:82:17:01:35:f8:83:bd:db:
29:96:40:5d:da:c2:8e:12:ba:79:67:f4:e3:16:f3:98:6a:a2:
b9:5e:9a:7d:74:fd:26:c3:f0:9a:39:3c:23:06:1d:40:3d:76:
91:a6:0e:9d:5a:5b:09:95:fb:cf:65:eb:a4:db:5a:aa:f8:72:
de:81:af:99:0e:7b:ef:60:06:74:e8:3a:8e:f5:13:75:b9:1e:
aa:16:91:ce:e9:cf:c7:0a:06:a7:13:f9:95:f6:f5:52:32:18:
13:7f:1b:29:90:25:4d:67:fd:05:ce:45:87:5d:ce:c2:01:81:
d5:58:39:7c:84:51:6a:c0:2c:50:26:9b:f0:45:bd:32:16:61:
b8:56:fd:48:58:cd:91:d9:84:05:a5:c5:38:3e:42:32:ff:28:
e6:48:cf:6e:f5:dc:49:12:59:ab:b8:df:08:f6:07:5d:7c:02:
9e:43:7a:0d:ac:b6:82:b0:78:3f:99:79:15:a1:60:04:1d:ed:
53:31:14:a9:5c:68:e6:bd:7b:4a:12:f4:4f:3d:70:e4:b8:23:
64:68:cf:43:2a:b9:05:5d:2a:33:b6:db:3a:c7:1e:b1:03:17:
10:21:a8:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 03:36:00 2025 by rpki-client