Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/9A5FD4443F8911F0AA49157EDAE4EC9C.roa
File: 9A5FD4443F8911F0AA49157EDAE4EC9C.roa (raw, json)
Hash identifier: qLmVhnLX4tIjj8b3hArFHAjy/7IR4T4V3Cq6FO7FMiA=
Subject key identifier: 86:91:96:C6:09:7A:B6:F4:82:5B:FC:8E:1C:95:9F:24:71:96:E4:E5
Certificate issuer: /CN=F36C7A8FAF/serialNumber=E99E81FC8FE487C2F84DC9AFADC1FCDBB4029AF9
Certificate serial: 02F4
Authority key identifier: E9:9E:81:FC:8F:E4:87:C2:F8:4D:C9:AF:AD:C1:FC:DB:B4:02:9A:F9
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/6Z6B_I_kh8L4TcmvrcH827QCmvk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/9A5FD4443F8911F0AA49157EDAE4EC9C.roa
Signing time: Mon 02 Jun 2025 08:14:29 +0000
ROA not before: Mon 02 Jun 2025 08:14:23 +0000
ROA not after: Mon 31 May 2027 08:14:23 +0000
asID: 36959
IP address blocks: 197.220.0.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/6Z6B_I_kh8L4TcmvrcH827QCmvk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/6Z6B_I_kh8L4TcmvrcH827QCmvk.mft
rsync://rpki.afrinic.net/repository/afrinic/6Z6B_I_kh8L4TcmvrcH827QCmvk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Jun 2025 03:47:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 756 (0x2f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C7A8FAF, serialNumber=E99E81FC8FE487C2F84DC9AFADC1FCDBB4029AF9
Validity
Not Before: Jun 2 08:14:23 2025 GMT
Not After : May 31 08:14:23 2027 GMT
Subject: CN=683d5d64-9adb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ee:a0:ea:6a:eb:75:b1:fd:1b:fd:d7:b9:21:
b7:32:b9:f7:40:89:47:59:cf:91:99:45:45:16:47:
b5:ed:21:36:a3:e9:3d:2c:ee:e2:6b:62:4e:8b:04:
8d:ab:ec:3b:43:ae:c5:66:f7:7c:a2:e5:cd:e5:ac:
18:41:88:c9:d3:b5:1d:c3:83:92:9e:f7:04:9f:0c:
89:31:8d:c1:b1:fd:84:05:49:77:a0:c0:e1:22:89:
1c:da:76:a9:29:6d:f1:56:b7:ba:7f:f8:37:5d:37:
f8:ed:b7:26:ab:b0:d9:9b:08:3c:4e:3a:81:2a:7d:
5a:10:c1:37:79:24:19:70:5d:89:b2:1d:68:ac:ec:
a7:d5:f1:c4:d9:ee:df:59:a1:34:41:83:3f:ed:07:
5d:32:51:8b:4b:d7:c4:07:d3:ed:0b:58:5c:a6:1b:
76:c2:9e:0a:85:ab:b4:d6:1c:f6:71:83:67:3c:ec:
91:0a:18:4c:44:49:14:9d:05:8e:94:e4:8e:b3:3a:
0f:9d:d9:e4:87:36:53:96:5f:85:6e:ec:8d:7b:e5:
5a:46:94:17:e7:a8:22:74:e8:65:e7:19:f5:85:33:
cf:95:3d:6a:fe:32:c3:10:3c:04:09:3c:ca:1e:5b:
61:66:3e:a5:ee:2d:f0:15:b5:5c:b6:7c:70:7e:27:
4b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:91:96:C6:09:7A:B6:F4:82:5B:FC:8E:1C:95:9F:24:71:96:E4:E5
X509v3 Authority Key Identifier:
keyid:E9:9E:81:FC:8F:E4:87:C2:F8:4D:C9:AF:AD:C1:FC:DB:B4:02:9A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/6Z6B_I_kh8L4TcmvrcH827QCmvk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/6Z6B_I_kh8L4TcmvrcH827QCmvk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/9A5FD4443F8911F0AA49157EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.220.0.0/19
Signature Algorithm: sha256WithRSAEncryption
a3:52:11:03:71:c8:ff:75:b3:04:4e:ac:26:d3:48:3c:36:49:
f5:9b:b8:55:1b:5a:ca:6b:06:3f:e8:9c:e1:df:f7:54:4a:d9:
ba:98:2b:24:ef:81:24:83:a4:7e:25:c1:dd:f5:8f:82:27:ca:
c7:b9:5e:9a:66:20:6a:21:77:ae:e1:23:f2:3d:da:7e:70:a7:
94:7c:fd:7a:d6:8c:64:c2:e7:6f:32:a0:9b:11:23:8f:1f:eb:
81:3d:6c:50:75:b5:e7:e7:c2:e9:f8:68:15:c3:2f:12:cd:87:
e6:39:45:fd:86:2c:03:05:81:a0:87:e0:75:59:95:41:e7:bb:
84:9a:15:e5:c8:3a:c2:82:59:1a:e1:d7:f8:7e:36:c4:37:bc:
8e:98:f0:2d:29:a3:da:66:e0:45:57:05:a6:e5:41:3f:a4:a8:
4a:b1:74:e4:3d:30:cd:21:c4:f9:e7:73:a8:93:11:1d:ed:37:
99:4b:6a:53:62:61:25:42:e0:9c:b2:93:d0:0f:0b:bc:52:b7:
e5:f2:e2:88:6e:2d:52:36:45:56:dc:75:d3:2d:8f:86:ab:ad:
f3:af:27:8d:ef:79:c2:12:05:80:75:d6:66:03:70:17:7b:87:
78:1f:ec:ac:7d:a6:50:40:87:39:35:91:74:8b:87:c5:50:31:
74:c1:f2:93
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAvQwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QzdBOEZBRjExMC8GA1UEBRMoRTk5RTgxRkM4RkU0ODdDMkY4NERDOUFGQURDMUZD
REJCNDAyOUFGOTAeFw0yNTA2MDIwODE0MjNaFw0yNzA1MzEwODE0MjNaMBgxFjAU
BgNVBAMTDTY4M2Q1ZDY0LTlhZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC47qDqaut1sf0b/de5IbcyufdAiUdZz5GZRUUWR7XtITaj6T0s7uJrYk6L
BI2r7DtDrsVm93yi5c3lrBhBiMnTtR3Dg5Ke9wSfDIkxjcGx/YQFSXegwOEiiRza
dqkpbfFWt7p/+DddN/jttyarsNmbCDxOOoEqfVoQwTd5JBlwXYmyHWis7KfV8cTZ
7t9ZoTRBgz/tB10yUYtL18QH0+0LWFymG3bCngqFq7TWHPZxg2c87JEKGExESRSd
BY6U5I6zOg+d2eSHNlOWX4Vu7I175VpGlBfnqCJ06GXnGfWFM8+VPWr+MsMQPAQJ
PMoeW2FmPqXuLfAVtVy2fHB+J0sBAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUhpGW
xgl6tvSCW/yOHJWfJHGW5OUwHwYDVR0jBBgwFoAU6Z6B/I/kh8L4TcmvrcH827QC
mvkwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkM3QThGLzBENDg1RkNBMEE5QTExRUU5NTVGNDQyOTRBRDlFNkZDLzZaNkJf
SV9raDhMNFRjbXZyY0g4MjdRQ212ay5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljLzZaNkJfSV9raDhMNFRjbXZyY0g4MjdRQ212ay5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkM3QThGLzBENDg1RkNBMEE5QTExRUU5NTVGNDQyOTRB
RDlFNkZDLzlBNUZENDQ0M0Y4OTExRjBBQTQ5MTU3RURBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXF3AAwDQYJKoZIhvcNAQEL
BQADggEBAKNSEQNxyP91swROrCbTSDw2SfWbuFUbWsprBj/onOHf91RK2bqYKyTv
gSSDpH4lwd31j4Inyse5XppmIGohd67hI/I92n5wp5R8/XrWjGTC528yoJsRI48f
64E9bFB1tefnwun4aBXDLxLNh+Y5Rf2GLAMFgaCH4HVZlUHnu4SaFeXIOsKCWRrh
1/h+NsQ3vI6Y8C0po9pm4EVXBablQT+kqEqxdOQ9MM0hxPnnc6iTER3tN5lLalNi
YSVC4Jyyk9APC7xSt+Xy4ohuLVI2RVbcddMtj4arrfOvJ43vecISBYB11mYDcBd7
h3gf7Kx9plBAhzk1kXSLh8VQMXTB8pM=
-----END CERTIFICATE-----
Generated at Sat Jun 7 14:08:55 2025 by rpki-client