Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/04677CBC8E0311F0AB9D2A84DAE4EC9C.roa
File: 04677CBC8E0311F0AB9D2A84DAE4EC9C.roa (raw, json)
Hash identifier: bSLqCAv0jJGYsfXXGyVZSmMSfgwGpVThrzKeUL7NwmY=
Subject key identifier: 79:CC:FF:B2:4D:0E:7B:E6:62:5A:B5:E8:EA:51:A2:09:38:86:1F:4A
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 15CD
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/04677CBC8E0311F0AB9D2A84DAE4EC9C.roa
Signing time: Wed 10 Sep 2025 05:00:06 +0000
ROA not before: Wed 10 Sep 2025 04:59:58 +0000
ROA not after: Fri 10 Sep 2027 04:59:58 +0000
asID: 834
IP address blocks: 102.129.160.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 18 Sep 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5581 (0x15cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Sep 10 04:59:58 2025 GMT
Not After : Sep 10 04:59:58 2027 GMT
Subject: CN=68c105d6-fc6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:43:45:fd:50:37:a0:84:a9:6a:62:ea:08:10:
99:ee:3f:fb:7a:bf:86:20:a6:36:d6:fe:a1:65:55:
ab:a3:75:98:39:a1:18:fe:5c:1d:eb:7f:54:88:2d:
8a:8d:7a:cf:f0:93:71:04:ba:87:30:0a:e3:45:4e:
41:f8:ca:90:d5:b9:01:06:98:eb:61:8a:1d:ea:be:
03:8b:08:80:d0:bb:f7:03:91:36:28:8b:80:d2:f7:
9a:94:ae:3b:fe:69:88:8a:c3:c7:13:59:8a:e2:81:
5a:09:a2:25:78:19:18:94:f0:12:28:82:2c:af:a2:
a0:43:55:76:87:4e:00:5b:2a:e0:c2:dd:3e:24:b8:
28:b2:a6:9d:5f:8b:da:27:41:a2:49:8b:5f:4a:c5:
82:d7:ec:ef:8a:83:3b:0c:ea:b0:df:eb:1c:61:bc:
f2:05:6b:8a:a0:3a:ef:20:a1:09:27:dc:92:80:6d:
7a:cb:04:58:4f:c4:8d:fa:03:38:45:55:d0:bd:ae:
a0:7a:ee:99:30:99:be:75:26:0d:1f:31:bd:66:36:
da:3e:cd:64:57:73:c3:19:28:b6:0c:05:fd:8c:8b:
16:da:3c:e5:bb:44:1d:ac:12:f2:2b:d5:8f:1f:a0:
00:ec:51:64:f8:fd:60:84:2e:05:16:a4:9c:03:40:
8c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:CC:FF:B2:4D:0E:7B:E6:62:5A:B5:E8:EA:51:A2:09:38:86:1F:4A
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/04677CBC8E0311F0AB9D2A84DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.160.0/24
Signature Algorithm: sha256WithRSAEncryption
80:c7:36:b1:c8:f7:48:a4:a1:5d:ce:f6:99:51:89:7f:34:ed:
91:93:b5:e9:ef:15:82:24:6c:9f:bb:0b:95:b6:61:00:e0:19:
a0:3a:26:d1:e4:33:fa:57:c5:0f:63:d3:2d:31:ca:ed:04:57:
c9:ac:23:32:c7:25:4f:58:ae:48:10:46:1e:1d:1c:06:fc:9a:
67:be:d6:df:26:28:4d:2c:5d:11:bb:e9:8c:89:30:01:f4:b5:
98:d4:ae:98:bf:f4:f9:cc:45:f7:3f:5b:91:3a:fe:58:69:9a:
26:1e:bf:9a:cb:97:db:37:45:c9:39:7b:3b:8c:49:5f:8e:a5:
69:b7:da:e2:ec:46:5d:74:80:65:7a:e4:3b:a4:e3:be:e0:e1:
8f:a0:ac:17:c7:bb:b0:c0:44:c9:66:da:f0:7b:ed:7e:44:aa:
e9:18:2e:89:c1:4d:2e:5b:81:ec:14:dd:07:ef:52:05:50:af:
cc:08:55:65:4d:29:7d:f7:da:f1:5a:c8:ef:0a:33:85:0e:6b:
98:06:ae:ec:23:e7:e9:2e:bc:09:fa:ad:bb:ae:d1:c1:b5:61:
18:0a:46:85:16:58:fa:c3:d3:0d:63:23:b5:6f:d1:c4:b5:ec:
f1:ef:3a:23:35:1b:1f:2a:7c:48:13:00:71:86:ed:96:be:90:
8b:9e:84:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 16 10:49:05 2025 by rpki-client