Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/3098838E3F8A11F0BC189482DAE4EC9C.roa
File: 3098838E3F8A11F0BC189482DAE4EC9C.roa (raw, json)
Hash identifier: LUsGNRiI9jBYOMZpideG7XX0pRrmTbmUTXJNgXuuIFs=
Subject key identifier: F5:82:51:50:D2:43:9B:8E:98:2A:DC:12:43:8F:EE:87:87:B5:F7:6A
Certificate issuer: /CN=F36C7A8FAF/serialNumber=E99E81FC8FE487C2F84DC9AFADC1FCDBB4029AF9
Certificate serial: 02F6
Authority key identifier: E9:9E:81:FC:8F:E4:87:C2:F8:4D:C9:AF:AD:C1:FC:DB:B4:02:9A:F9
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/6Z6B_I_kh8L4TcmvrcH827QCmvk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/3098838E3F8A11F0BC189482DAE4EC9C.roa
Signing time: Mon 02 Jun 2025 08:18:41 +0000
ROA not before: Sat 14 Jun 2025 08:18:36 +0000
ROA not after: Fri 31 May 2030 08:18:36 +0000
asID: 36959
IP address blocks: 196.12.12.0/22 maxlen: 22
Validation: Failed, certificate is not yet valid
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 758 (0x2f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C7A8FAF, serialNumber=E99E81FC8FE487C2F84DC9AFADC1FCDBB4029AF9
Validity
Not Before: Jun 14 08:18:36 2025 GMT
Not After : May 31 08:18:36 2030 GMT
Subject: CN=683d5e60-2077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2a:fb:ff:b8:84:62:fe:68:1a:9b:62:42:f3:
e4:50:7a:22:c7:36:71:26:c6:64:d7:fd:21:fe:7e:
23:f6:8d:f4:04:2b:2a:87:7a:f4:02:c9:a3:33:85:
2f:0e:74:5d:89:be:5e:19:46:c7:c1:0a:0f:c4:b1:
f8:74:c6:24:77:1d:a2:73:c4:1b:40:56:66:10:45:
83:aa:e4:79:51:5e:74:e5:c7:e9:07:c8:0f:57:d7:
2f:28:ae:4c:71:35:6c:12:31:74:bf:93:fd:2e:40:
24:e9:d6:e8:4e:a6:31:de:b0:d2:ff:ac:46:80:9a:
74:61:12:67:91:63:4b:c9:a0:b0:70:af:ab:f5:4e:
f5:9e:83:60:7d:70:4c:68:18:82:b4:28:5d:43:75:
ab:0c:9a:f8:fd:aa:2f:88:44:12:d5:7f:cd:d1:1d:
ec:a9:3c:b8:14:1e:56:6a:68:b2:47:98:0d:35:72:
c6:69:cc:07:80:1f:f8:db:80:73:e6:4d:5d:43:b4:
15:8f:b6:e3:e1:6c:a8:a9:66:8f:31:9b:8b:b4:02:
ed:26:06:86:03:37:61:2f:2b:41:1e:55:3f:13:3d:
90:49:65:e4:81:54:ca:8a:9e:33:9a:b9:c1:9f:b0:
61:ca:86:d4:ea:1b:ea:33:e1:1b:57:c4:a2:4e:40:
50:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:82:51:50:D2:43:9B:8E:98:2A:DC:12:43:8F:EE:87:87:B5:F7:6A
X509v3 Authority Key Identifier:
keyid:E9:9E:81:FC:8F:E4:87:C2:F8:4D:C9:AF:AD:C1:FC:DB:B4:02:9A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/6Z6B_I_kh8L4TcmvrcH827QCmvk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/6Z6B_I_kh8L4TcmvrcH827QCmvk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/3098838E3F8A11F0BC189482DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.12.12.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:1a:61:a6:7d:ff:4f:95:f1:a6:d6:06:48:a9:14:b5:c1:d8:
c6:35:a4:df:ca:45:fa:cb:04:8f:3d:e9:2e:3e:12:2c:54:e7:
b8:67:27:5d:8e:22:e8:2d:96:f5:39:d3:ae:7a:d2:eb:f6:86:
8c:c2:7b:30:cd:12:fe:a7:a5:60:e8:b4:74:f4:c1:f2:76:c2:
ca:1f:19:85:6a:cd:36:0f:55:f8:d2:10:4d:5d:b4:bd:ac:00:
9c:b4:c1:2a:9b:46:0d:bf:33:88:20:0b:fb:77:56:15:a8:42:
be:32:cc:59:8e:43:77:0f:77:68:2c:e0:3c:4a:ee:17:8e:8c:
68:87:95:16:9a:87:55:4a:d5:bd:8c:31:08:53:28:8c:84:11:
d6:09:65:09:ae:9e:3a:b1:05:eb:26:27:1b:2d:44:e8:db:4f:
3a:f1:db:13:5a:4a:9c:2a:bc:e4:70:4d:a1:0b:21:4f:c0:07:
d0:3d:2b:c9:d2:c2:10:89:a6:58:51:d9:d6:bb:7c:51:34:09:
d3:11:49:d2:c9:4f:12:4e:c4:e2:63:7b:c3:ca:f1:92:6e:cd:
5d:86:b6:51:ea:f0:0a:a4:f4:d6:47:4b:7f:f6:f0:e8:26:d1:
9f:1f:e3:63:82:01:bb:ed:62:a6:24:0b:a2:ae:65:5c:1f:53:
a0:4d:95:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:27:09 2025 by rpki-client