Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/401DB4F42F1E11F09B881AB3DAE4EC9C.roa
File: 401DB4F42F1E11F09B881AB3DAE4EC9C.roa (raw, json)
Hash identifier: xj4UFgtRmUF6hPhDY8QCTAupvw1psvGB0HcdO8EfGgk=
Subject key identifier: FA:A4:EE:9D:7D:B7:5C:B2:AB:37:7A:2E:F8:3F:BD:2D:29:85:1C:6C
Certificate issuer: /CN=F36EF7D0AF/serialNumber=3A553B6EF80BF922312F96B8DDC1F219A8C4121B
Certificate serial: 034F
Authority key identifier: 3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/401DB4F42F1E11F09B881AB3DAE4EC9C.roa
Signing time: Mon 12 May 2025 10:45:42 +0000
ROA not before: Mon 12 May 2025 10:45:38 +0000
ROA not after: Sun 12 May 2030 10:45:38 +0000
asID: 211826
IP address blocks: 102.212.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.mft
rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 847 (0x34f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EF7D0AF, serialNumber=3A553B6EF80BF922312F96B8DDC1F219A8C4121B
Validity
Not Before: May 12 10:45:38 2025 GMT
Not After : May 12 10:45:38 2030 GMT
Subject: CN=6821d156-9175
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6c:c4:81:9c:ef:b7:82:88:76:5e:8c:aa:aa:
22:86:c8:18:70:9f:e2:72:fa:87:fd:8d:c3:68:77:
26:17:19:36:ca:aa:de:a7:15:2e:64:37:72:7f:a7:
d0:93:4e:45:30:b5:9d:cb:3d:fd:ec:36:7c:22:fa:
70:b6:3a:ad:36:9c:92:bb:a2:b2:2f:2b:78:86:5b:
f1:a4:90:3d:d3:25:7f:0f:78:0c:20:1f:19:50:bc:
5f:f3:a9:a0:17:66:e0:f6:04:af:d6:b2:fb:2a:67:
f9:50:55:10:c9:3c:01:67:af:fb:2b:ec:67:6d:f1:
72:86:13:04:75:d9:6f:08:eb:cc:f3:9b:38:71:20:
55:29:31:5c:03:89:31:e8:d3:fe:d3:a1:5a:c3:f8:
2b:5c:6e:d6:5b:77:09:d6:d2:e1:c3:a1:94:50:09:
de:f0:a4:6f:d6:be:aa:07:52:97:1c:eb:88:c7:2f:
75:33:e8:8a:8b:bc:45:e2:10:79:2b:a3:c4:d8:06:
5e:8a:4f:24:95:aa:19:19:f9:f6:2f:c8:a7:53:db:
0b:8c:5d:d5:b4:97:1a:23:a5:fa:22:94:06:a9:f1:
51:5e:b9:f6:8c:e6:43:20:55:8f:7f:44:ae:1f:1e:
c2:ac:cd:0f:8a:2c:99:b2:70:7a:41:a8:d8:a9:e5:
e1:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:A4:EE:9D:7D:B7:5C:B2:AB:37:7A:2E:F8:3F:BD:2D:29:85:1C:6C
X509v3 Authority Key Identifier:
keyid:3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/401DB4F42F1E11F09B881AB3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.212.5.0/24
Signature Algorithm: sha256WithRSAEncryption
29:3a:69:45:5d:6a:0c:f1:c1:66:41:a6:6f:eb:20:9c:51:4a:
7f:01:57:99:11:52:e2:32:ab:8c:86:25:88:64:34:cd:9d:21:
66:1a:61:af:fe:43:ab:1b:63:d9:2f:28:b1:9a:c7:6b:ba:8a:
44:b0:e7:b3:cd:28:90:c7:6f:0a:45:c5:2b:56:7c:d1:e5:f9:
a1:d8:a6:0c:47:e8:cf:80:46:8f:b0:a0:20:52:ee:0e:a2:fb:
06:d9:32:e9:48:2f:e2:25:d3:4a:39:0e:b6:e6:32:c8:36:5e:
b9:9e:55:05:f4:2b:8d:a4:e6:f5:bd:26:1c:2c:8d:7a:22:ff:
56:52:fb:23:58:ab:39:cb:62:76:bf:17:77:1c:3b:7c:b3:d2:
8a:07:a7:f0:29:0d:80:18:43:f4:c5:9d:85:ad:e4:4b:09:f7:
d2:23:bb:ca:c7:16:2b:63:bd:27:31:3b:d6:33:36:39:c2:af:
94:25:d6:e9:37:e7:4e:db:27:2d:f9:7a:a8:8c:6c:02:b9:b1:
09:24:67:ec:fd:25:39:18:d3:78:e5:79:60:1f:aa:f0:43:bd:
d0:60:1a:f3:5a:5f:9f:da:7c:8f:80:d5:04:29:be:ff:86:ae:
4c:e9:1d:93:2b:90:7b:ef:cf:6f:60:2b:39:91:8f:de:e3:3a:
9f:46:b5:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 13:54:19 2025 by rpki-client