Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/68E2FFBA615611F0A2488AD5DAE4EC9C.roa
File: 68E2FFBA615611F0A2488AD5DAE4EC9C.roa (raw, json)
Hash identifier: w3HgJ6iasE0Baeop5RBkwj/+ubVBgHbMYQzGZBLJCBU=
Subject key identifier: CE:C7:C8:2B:95:88:67:AC:05:5A:62:FE:9B:48:2F:07:87:53:8E:A7
Certificate issuer: /CN=F36E4B69AF/serialNumber=CA6642EA9AFCC73AA24AA4047544B17C2603CBD2
Certificate serial: 0294
Authority key identifier: CA:66:42:EA:9A:FC:C7:3A:A2:4A:A4:04:75:44:B1:7C:26:03:CB:D2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/68E2FFBA615611F0A2488AD5DAE4EC9C.roa
Signing time: Tue 15 Jul 2025 08:33:41 +0000
ROA not before: Tue 15 Jul 2025 08:33:36 +0000
ROA not after: Sun 31 Dec 2028 08:33:36 +0000
asID: 36912
IP address blocks: 2c0f:f070:9020:12::/64 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.mft
rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 03 Aug 2025 00:07:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 660 (0x294)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E4B69AF, serialNumber=CA6642EA9AFCC73AA24AA4047544B17C2603CBD2
Validity
Not Before: Jul 15 08:33:36 2025 GMT
Not After : Dec 31 08:33:36 2028 GMT
Subject: CN=68761265-c9cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:93:1d:4e:62:2f:52:b2:6d:26:34:c2:13:09:
66:a9:bf:a4:5e:ad:4d:dd:c0:f6:91:de:9a:d4:ab:
40:e2:08:ac:ae:2c:10:e5:34:7a:83:be:67:6f:c4:
9b:c8:39:42:a0:4a:b9:e3:27:6e:3e:be:d9:dc:a0:
de:66:e3:ce:51:a7:81:11:d1:5c:35:5a:39:19:0e:
c8:df:a7:50:6c:a6:55:e9:af:38:ef:81:ec:94:3d:
97:ac:01:56:b0:0b:5d:f3:3a:03:4e:c2:04:c7:11:
00:14:e9:6e:b9:af:44:8e:23:a8:c5:38:65:9b:68:
06:2b:8a:f5:97:17:7b:cd:43:ed:e4:69:37:7b:7b:
9f:14:dc:7d:5c:fd:a7:35:65:0a:da:20:25:52:ab:
b0:a5:1d:5e:ac:06:0f:01:4b:18:ee:dd:2f:06:de:
30:9e:14:68:29:b8:cc:65:93:68:28:36:cb:1f:1b:
f6:74:b7:f2:de:31:67:f7:a4:43:15:11:ec:f0:81:
a4:f0:ff:db:5a:e9:12:2b:5d:2a:4c:32:1c:5b:fe:
6e:56:84:52:69:a6:66:21:62:a3:d1:63:42:bb:40:
51:89:55:69:ea:9a:e8:60:85:fd:b0:89:07:b9:47:
a3:d3:8f:2e:78:17:11:49:ab:61:7e:59:6b:c4:27:
c0:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:C7:C8:2B:95:88:67:AC:05:5A:62:FE:9B:48:2F:07:87:53:8E:A7
X509v3 Authority Key Identifier:
keyid:CA:66:42:EA:9A:FC:C7:3A:A2:4A:A4:04:75:44:B1:7C:26:03:CB:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/68E2FFBA615611F0A2488AD5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f070:9020:12::/64
Signature Algorithm: sha256WithRSAEncryption
a3:f2:75:d6:8c:56:15:31:3b:3c:5e:dc:56:3d:9f:92:07:3d:
3e:4f:79:5b:7d:a0:60:f5:86:60:56:4a:5f:a5:00:72:2f:b2:
6e:4e:80:92:03:1c:c4:dd:33:77:af:c3:b7:09:a2:44:79:20:
17:1b:d7:13:6e:dc:9c:68:34:b5:aa:54:28:83:33:f9:8a:be:
e0:2c:da:09:cb:38:93:ea:70:9d:05:1c:1a:0a:a3:28:05:61:
21:96:2e:75:83:1e:16:b5:ed:6e:43:df:da:b0:f6:86:d6:ed:
eb:f7:ff:9b:28:6e:5a:99:8a:9c:aa:43:5f:6a:b5:49:2e:65:
f6:09:68:35:c6:3b:30:21:47:2f:83:fc:ba:26:09:a9:08:c3:
a5:c2:0c:5a:53:63:5c:1d:f5:34:30:15:e2:83:30:5f:4c:e6:
af:00:ad:f1:ff:99:98:4c:06:33:31:7e:66:c7:be:b8:a1:a3:
ca:37:b3:bb:92:e6:c3:72:db:86:ec:27:08:ae:07:b6:c3:00:
00:83:da:cb:25:e5:92:07:28:ac:44:78:a8:82:ab:75:7f:5b:
2f:1f:9c:e2:b5:c2:40:6d:5a:8b:cd:fc:f2:75:68:0b:a5:36:
54:14:49:c7:5e:74:f8:5d:af:b6:e1:36:76:88:42:17:4a:8c:
6d:73:b1:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 1 18:12:40 2025 by rpki-client