Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E570F/A29FCCC0AF2B11EF88A7C19A762E951A/B495EB0288C511F0BEB197F5DAE4EC9C.roa
File: B495EB0288C511F0BEB197F5DAE4EC9C.roa (raw, json)
Hash identifier: wSVVEBStjQ3GUauzPyLazE/qtg9YTkxFq1zMDGWjloA=
Subject key identifier: EB:D3:95:45:E9:F8:AE:70:C0:11:4B:45:F7:D5:28:29:33:A7:82:E9
Certificate issuer: /CN=F36E570FAF/serialNumber=4F2E5D06850FA94B9222CF7FFE76F8B2F3012125
Certificate serial: 0125
Authority key identifier: 4F:2E:5D:06:85:0F:A9:4B:92:22:CF:7F:FE:76:F8:B2:F3:01:21:25
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Ty5dBoUPqUuSIs9__nb4svMBISU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E570F/A29FCCC0AF2B11EF88A7C19A762E951A/B495EB0288C511F0BEB197F5DAE4EC9C.roa
Signing time: Wed 03 Sep 2025 12:58:37 +0000
ROA not before: Wed 03 Sep 2025 12:58:32 +0000
ROA not after: Thu 10 Sep 2026 12:58:32 +0000
asID: 5511
IP address blocks: 102.212.57.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E570F/A29FCCC0AF2B11EF88A7C19A762E951A/Ty5dBoUPqUuSIs9__nb4svMBISU.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E570F/A29FCCC0AF2B11EF88A7C19A762E951A/Ty5dBoUPqUuSIs9__nb4svMBISU.mft
rsync://rpki.afrinic.net/repository/afrinic/Ty5dBoUPqUuSIs9__nb4svMBISU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 09 Sep 2025 00:06:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 293 (0x125)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E570FAF, serialNumber=4F2E5D06850FA94B9222CF7FFE76F8B2F3012125
Validity
Not Before: Sep 3 12:58:32 2025 GMT
Not After : Sep 10 12:58:32 2026 GMT
Subject: CN=68b83b7d-c3e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:7e:0b:72:82:3e:2a:07:53:b6:51:79:ff:a8:
dd:87:91:12:05:f1:31:d1:5e:96:f5:4b:72:4a:21:
e9:bc:81:13:49:47:66:a5:e7:3c:eb:a2:93:27:23:
d8:74:e1:32:d6:e6:96:da:70:9b:e7:81:5c:c5:12:
b8:ce:5d:61:fd:35:29:4c:9b:b6:da:96:17:53:d1:
e8:79:ba:11:a9:c1:50:ea:6d:37:de:8b:8c:29:7b:
56:18:a7:c1:b9:15:79:a1:61:c2:60:e6:89:a9:bd:
d1:20:fe:a8:1d:29:6e:66:0c:f4:a3:71:a3:a2:28:
e2:01:5e:13:29:76:96:d5:1a:d2:b3:ca:35:5b:75:
1a:ad:87:b1:ba:63:a2:83:e0:0a:e3:18:8e:6f:13:
44:57:8a:9b:9f:5a:89:ee:3f:12:77:cd:cf:18:0b:
12:7e:a8:41:96:aa:73:50:92:f9:a9:82:66:3a:c4:
2b:ca:c3:da:73:c6:1e:57:c5:13:cb:78:14:48:f2:
4f:10:3f:52:4b:7b:e5:97:b6:50:92:29:41:4c:aa:
6b:d3:77:47:07:0d:4c:1b:eb:1f:bc:41:a9:55:51:
ba:ec:cb:38:7f:5c:89:11:21:4e:07:bc:07:4c:bc:
26:45:29:35:75:08:fa:3b:65:95:1d:a9:8e:2b:d4:
da:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:D3:95:45:E9:F8:AE:70:C0:11:4B:45:F7:D5:28:29:33:A7:82:E9
X509v3 Authority Key Identifier:
keyid:4F:2E:5D:06:85:0F:A9:4B:92:22:CF:7F:FE:76:F8:B2:F3:01:21:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E570F/A29FCCC0AF2B11EF88A7C19A762E951A/Ty5dBoUPqUuSIs9__nb4svMBISU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Ty5dBoUPqUuSIs9__nb4svMBISU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E570F/A29FCCC0AF2B11EF88A7C19A762E951A/B495EB0288C511F0BEB197F5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.212.57.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:5f:93:a4:8d:bc:2b:59:1b:14:af:31:f9:9f:a9:8c:64:8a:
07:c3:43:77:d0:94:87:fb:a8:e0:6a:6c:c1:77:ac:e3:40:8e:
1c:dc:51:99:ca:82:f4:2a:67:be:61:e9:fd:ad:ed:ac:79:97:
9a:b6:b1:80:c7:c7:c2:88:bc:fa:52:2a:e9:1f:36:be:ee:52:
b5:e6:78:f6:8d:d2:b9:2c:0b:0f:a6:f2:99:04:62:a4:32:ac:
2b:c2:ee:7b:9c:f8:e4:14:97:ee:11:b6:85:86:10:ed:5a:c2:
a3:fe:e8:46:9f:51:d7:02:33:1e:32:c1:f2:7a:48:f5:69:b1:
37:34:1b:ab:99:9f:a6:40:e6:6c:a7:ef:8a:ff:20:88:51:2f:
01:40:57:fa:5d:53:4e:4f:28:86:d2:52:2e:1d:8e:ab:d6:2b:
07:80:eb:fc:ab:0c:a9:50:1e:98:85:7d:72:75:5c:22:72:f5:
87:2b:b1:30:8c:b2:47:eb:6f:26:1d:37:5d:37:95:2e:44:74:
ff:91:dc:fa:62:65:0b:84:32:08:46:b9:53:7a:ae:c6:8f:ea:
ef:99:77:76:df:f8:94:3c:02:f5:5a:0c:c9:62:3c:b6:b0:21:
8b:96:e2:a2:f5:12:90:08:f6:52:46:91:3f:f8:40:1f:26:ba:
2f:5a:97:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 06:32:25 2025 by rpki-client