Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D5F5A/2173E83ADAA611ED8227D4C42F6D8C1D/3BE81A3892FF11F088E51979DAE4EC9C.roa
File: 3BE81A3892FF11F088E51979DAE4EC9C.roa (raw, json)
Hash identifier: Yzg3xjGIsu/ulsgWMNyoDewqrKHbp+zn1cyoVl3O9Yg=
Subject key identifier: C2:D0:8E:C6:F9:E0:09:55:09:F9:D6:27:B3:50:84:29:98:69:C4:C0
Certificate issuer: /CN=F36D5F5AAF/serialNumber=28293436D4D6DA3A93A60ECA3FBEC77D8DC38F61
Certificate serial: 03A2
Authority key identifier: 28:29:34:36:D4:D6:DA:3A:93:A6:0E:CA:3F:BE:C7:7D:8D:C3:8F:61
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/KCk0NtTW2jqTpg7KP77HfY3Dj2E.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D5F5A/2173E83ADAA611ED8227D4C42F6D8C1D/3BE81A3892FF11F088E51979DAE4EC9C.roa
Signing time: Tue 16 Sep 2025 13:15:37 +0000
ROA not before: Tue 16 Sep 2025 13:15:32 +0000
ROA not after: Wed 16 Sep 2026 13:15:32 +0000
asID: 37276
IP address blocks: 197.214.112.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D5F5A/2173E83ADAA611ED8227D4C42F6D8C1D/KCk0NtTW2jqTpg7KP77HfY3Dj2E.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D5F5A/2173E83ADAA611ED8227D4C42F6D8C1D/KCk0NtTW2jqTpg7KP77HfY3Dj2E.mft
rsync://rpki.afrinic.net/repository/afrinic/KCk0NtTW2jqTpg7KP77HfY3Dj2E.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 18 Sep 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 930 (0x3a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D5F5AAF, serialNumber=28293436D4D6DA3A93A60ECA3FBEC77D8DC38F61
Validity
Not Before: Sep 16 13:15:32 2025 GMT
Not After : Sep 16 13:15:32 2026 GMT
Subject: CN=68c962f9-c32e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:5f:fe:6d:16:88:eb:b4:f3:f9:86:4f:89:3f:
42:e2:85:bd:1f:7e:73:df:67:07:63:28:04:e5:5b:
b7:b7:a5:54:56:12:08:ae:7b:c3:88:dc:d4:96:01:
b5:a2:c5:b7:ba:dc:5c:90:77:3c:bd:d5:2b:62:88:
76:81:45:28:7e:1c:cd:ff:01:51:95:3c:93:84:b5:
78:23:07:46:b9:2f:50:2d:3a:f7:c5:18:7d:8d:65:
3f:da:69:07:da:ab:3a:72:8a:86:f8:43:fb:1e:da:
86:9e:b4:cc:b2:e1:dd:78:77:a9:42:76:83:e6:71:
95:6f:94:0f:69:07:4f:8f:54:a9:9e:85:76:4a:c8:
ef:d4:b1:78:b0:e1:e3:ba:24:bf:47:40:8f:1f:a5:
19:bb:b5:4a:6b:16:e4:5f:5b:5b:ff:44:8c:c4:6a:
e8:33:af:21:e9:85:8e:d1:7c:7c:fd:67:07:12:a5:
9b:1f:b0:8b:72:27:b9:89:f5:d3:35:1e:a8:d6:a3:
97:a4:77:46:ad:f1:0c:5a:ff:4c:d1:e1:fe:15:64:
d9:2f:bf:06:23:40:38:7d:d5:b9:9a:4a:df:e1:49:
a2:07:3e:0e:48:93:9a:d2:77:4e:9d:03:7b:d9:0f:
7d:35:f6:6e:38:24:5d:79:0a:d1:f4:c1:3c:ec:20:
8c:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:D0:8E:C6:F9:E0:09:55:09:F9:D6:27:B3:50:84:29:98:69:C4:C0
X509v3 Authority Key Identifier:
keyid:28:29:34:36:D4:D6:DA:3A:93:A6:0E:CA:3F:BE:C7:7D:8D:C3:8F:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D5F5A/2173E83ADAA611ED8227D4C42F6D8C1D/KCk0NtTW2jqTpg7KP77HfY3Dj2E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/KCk0NtTW2jqTpg7KP77HfY3Dj2E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D5F5A/2173E83ADAA611ED8227D4C42F6D8C1D/3BE81A3892FF11F088E51979DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.214.112.0/21
Signature Algorithm: sha256WithRSAEncryption
36:00:28:54:a1:72:81:ab:a6:53:21:4d:bd:fb:61:3a:af:88:
f2:e3:1c:51:65:04:8f:31:b8:ba:f2:4e:6b:8a:99:8f:92:cb:
5c:08:2a:65:21:f8:cb:4f:21:81:e3:8d:39:a1:3b:3a:ec:38:
91:1a:fd:d2:40:ba:f4:bb:48:a7:1c:d1:d1:71:c0:26:af:d2:
7f:52:95:c8:3b:5c:ad:23:d2:f6:a8:a9:8a:31:f2:7e:c9:b9:
72:60:75:ac:5c:6e:e3:01:c9:56:66:c9:9a:c7:77:f0:84:64:
2d:31:8b:0d:32:83:14:f5:a9:35:fd:19:f1:87:9d:24:ce:c4:
e0:60:d5:7b:2d:52:17:d5:54:1f:ab:0e:3f:83:83:26:ff:69:
4d:79:62:10:41:75:58:d4:d9:9e:6b:0a:60:d4:b6:98:41:bc:
ff:f0:ef:ea:cc:1e:9d:a6:67:00:de:fd:03:c3:dc:ef:8f:28:
cc:34:74:1e:75:60:11:8c:5b:55:d4:2f:52:d7:35:5a:b9:15:
a8:a0:f2:d7:65:a5:31:74:49:3c:fc:4f:28:10:56:59:50:65:
87:03:61:a9:dd:4f:be:a7:89:71:03:91:7c:26:72:70:da:c6:
97:df:5b:86:ea:d0:06:27:da:96:98:ba:ad:55:ed:18:0a:bc:
58:24:84:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 16 23:10:03 2025 by rpki-client