Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/AE6DAEF23FE311F08E1CA0BADAE4EC9C.roa
File: AE6DAEF23FE311F08E1CA0BADAE4EC9C.roa (raw, json)
Hash identifier: NcoPOIw5nkiJxRXHYEGD+Qp0wgE7N4ijW+oi6r7fxHs=
Subject key identifier: 16:68:18:C6:8C:EB:45:B4:A3:00:4B:27:37:F7:39:A6:D5:2A:B3:FE
Certificate issuer: /CN=F36EF7D0AF/serialNumber=3A553B6EF80BF922312F96B8DDC1F219A8C4121B
Certificate serial: 0370
Authority key identifier: 3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/AE6DAEF23FE311F08E1CA0BADAE4EC9C.roa
Signing time: Mon 02 Jun 2025 18:59:17 +0000
ROA not before: Mon 02 Jun 2025 18:59:12 +0000
ROA not after: Sun 02 Jun 2030 18:59:12 +0000
asID: 9304
IP address blocks: 102.211.232.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.mft
rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 10 Jun 2025 03:41:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 880 (0x370)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EF7D0AF, serialNumber=3A553B6EF80BF922312F96B8DDC1F219A8C4121B
Validity
Not Before: Jun 2 18:59:12 2025 GMT
Not After : Jun 2 18:59:12 2030 GMT
Subject: CN=683df485-b4da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:53:4d:10:35:bd:45:21:3a:fe:01:08:ad:a1:
72:62:85:3a:97:b9:ae:9a:4e:a7:76:7e:84:f7:06:
9c:9c:30:b1:70:1e:4e:71:97:fb:70:6f:95:44:32:
e3:1c:69:b5:42:77:48:d5:38:43:b3:79:0f:9d:48:
0a:61:6d:bb:3a:93:e8:da:6a:a7:10:53:de:6e:f8:
38:04:8c:1a:be:8d:a8:50:f5:cf:56:9c:7d:52:e1:
04:fe:86:fe:c1:6e:37:6a:6a:15:a2:75:8c:ae:16:
36:32:43:27:2c:31:d0:00:ff:ea:f9:d9:82:dc:7b:
6c:71:fd:cc:29:68:92:3a:3f:82:36:f3:d6:cf:0d:
31:27:e5:ba:3d:84:d0:f9:c8:79:0b:42:44:8d:5e:
a1:23:a7:23:9a:7b:4b:76:f6:27:7d:5b:53:ee:b9:
51:86:61:ab:f8:e8:b6:fe:8d:a0:bf:08:be:03:67:
9a:f4:35:e2:c9:47:80:65:b9:dc:e2:4e:2f:13:7b:
de:cf:2d:67:c3:ae:ee:46:d3:52:31:59:4f:03:55:
dc:82:50:12:ca:a8:1f:b9:3c:f2:44:2c:72:20:29:
27:d5:1b:9c:4c:d3:34:4d:f6:f1:b2:75:ea:bf:51:
0e:39:aa:ce:8f:df:f2:7c:15:a4:24:d8:fe:2d:cd:
61:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:68:18:C6:8C:EB:45:B4:A3:00:4B:27:37:F7:39:A6:D5:2A:B3:FE
X509v3 Authority Key Identifier:
keyid:3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/AE6DAEF23FE311F08E1CA0BADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.211.232.0/24
Signature Algorithm: sha256WithRSAEncryption
59:b3:74:63:f2:03:b9:40:2a:20:85:c0:85:33:ae:e7:dc:b0:
1e:ef:ba:0d:51:3b:d0:41:39:e3:af:8b:1e:e7:57:a5:40:f9:
d3:be:c0:3d:4c:e8:f9:5b:b6:d1:64:4d:2a:59:76:b3:e0:55:
ef:59:93:c5:24:1a:7b:b1:c3:41:37:06:06:f4:22:47:22:a4:
b8:a8:38:78:22:04:75:c9:01:d4:d1:12:61:8a:7a:91:40:67:
a4:29:d9:72:e4:fd:9f:28:e9:f2:d4:95:93:c7:56:21:4a:43:
c1:1f:49:5a:3a:ea:d6:54:db:f4:7f:ab:df:89:99:ba:47:1c:
80:e0:92:a6:88:e5:13:cf:97:4c:73:4c:56:c4:97:6d:83:51:
12:b9:1f:1f:88:8a:bd:9b:f1:de:99:fe:86:ae:a0:89:e1:9a:
21:7d:e1:ff:30:59:bb:13:db:10:1a:33:f5:33:93:79:24:31:
6c:01:d2:70:02:81:b4:6c:92:90:c7:2a:6f:23:16:13:c7:02:
e3:75:ae:f8:0b:bc:60:02:af:20:0d:65:7c:aa:e9:32:aa:c8:
98:7e:6d:7a:98:90:2c:c6:2a:6e:e1:ad:13:75:66:b0:4f:4b:
98:87:f4:6e:70:21:21:e8:d6:18:8b:be:7b:1a:2f:50:c7:48:
20:f4:bc:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 02:25:41 2025 by rpki-client