Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F8F4F/70CC1DFE2A7511ECAEB63359D8A014CE/7D4DF23EBD5E11F0AC3505AFDAE4EC9C.roa
File: 7D4DF23EBD5E11F0AC3505AFDAE4EC9C.roa (raw, json)
Hash identifier: 66WTE1t1auuEEXYPV89TT/2BRb9tAd4Yku3NmYbxCrY=
Subject key identifier: 39:3E:9C:1E:3E:34:2C:6F:04:9B:2F:90:EA:32:EB:86:4A:2E:15:26
Certificate issuer: /CN=F36F8F4FRI/serialNumber=5BC54F284822A717B1AD4C37CF69D096CE7F6773
Certificate serial: 060A
Authority key identifier: 5B:C5:4F:28:48:22:A7:17:B1:AD:4C:37:CF:69:D0:96:CE:7F:67:73
Authority info access: rsync://rpki.afrinic.net/repository/ripe/W8VPKEgipxexrUw3z2nQls5_Z3M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/70CC1DFE2A7511ECAEB63359D8A014CE/7D4DF23EBD5E11F0AC3505AFDAE4EC9C.roa
Signing time: Sun 09 Nov 2025 11:23:18 +0000
ROA not before: Sun 09 Nov 2025 11:23:13 +0000
ROA not after: Sat 09 Nov 2030 11:23:13 +0000
asID: 21003
IP address blocks: 62.240.32.0/19 maxlen: 19
62.240.32.0/24 maxlen: 24
62.240.36.0/24 maxlen: 24
62.240.40.0/24 maxlen: 24
62.240.41.0/24 maxlen: 24
62.240.42.0/24 maxlen: 24
62.240.43.0/24 maxlen: 24
62.240.53.0/24 maxlen: 24
62.240.54.0/24 maxlen: 24
62.240.55.0/24 maxlen: 24
62.240.57.0/24 maxlen: 24
62.240.58.0/24 maxlen: 24
62.240.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/70CC1DFE2A7511ECAEB63359D8A014CE/W8VPKEgipxexrUw3z2nQls5_Z3M.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/70CC1DFE2A7511ECAEB63359D8A014CE/W8VPKEgipxexrUw3z2nQls5_Z3M.mft
rsync://rpki.afrinic.net/repository/ripe/W8VPKEgipxexrUw3z2nQls5_Z3M.cer
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 13 Nov 2025 04:57:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1546 (0x60a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F8F4FRI, serialNumber=5BC54F284822A717B1AD4C37CF69D096CE7F6773
Validity
Not Before: Nov 9 11:23:13 2025 GMT
Not After : Nov 9 11:23:13 2030 GMT
Subject: CN=691079a6-7bdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:70:34:8d:02:ea:e3:f9:84:f6:4e:2f:db:59:
ed:5d:4c:fb:ea:bb:7b:16:14:12:cb:ad:ce:b2:4d:
90:97:49:f9:99:22:e0:ae:6a:8a:b6:91:81:47:d7:
16:a2:76:19:35:69:7c:e8:5e:7e:eb:fb:41:d9:39:
14:02:2e:a6:7a:50:6a:4f:d9:ec:3f:71:bc:b9:04:
b4:60:16:ff:f4:19:11:37:1a:4c:d6:21:e2:38:fa:
f8:3f:97:9a:3e:89:ad:16:6e:7f:13:e5:d8:71:d7:
81:c0:a6:20:c4:65:4b:7a:e6:b4:d7:bf:97:0c:0a:
7d:bc:cb:49:c1:d1:e9:58:a9:34:3a:1a:4f:1e:e6:
01:00:2a:e7:35:6f:82:07:8f:4e:00:f5:a1:1d:3a:
4b:bd:c6:2b:2c:84:92:42:5c:3c:4e:4b:23:13:9d:
3a:cf:6e:f1:d5:92:27:f5:1c:4c:c9:86:88:b0:5c:
5f:06:0a:ad:aa:4a:c7:b5:05:38:ee:b8:e7:88:ce:
8c:42:11:3f:b7:7f:a2:8c:5a:e7:5a:3b:a1:9d:03:
e3:7e:3c:26:7a:84:5c:d7:6f:54:c6:b7:f2:e3:28:
6b:cc:b3:14:f3:a5:bc:f8:71:4e:6c:34:7b:e2:f4:
16:a7:83:5d:4f:b8:95:dd:5c:ae:a5:19:40:ad:6e:
79:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:3E:9C:1E:3E:34:2C:6F:04:9B:2F:90:EA:32:EB:86:4A:2E:15:26
X509v3 Authority Key Identifier:
keyid:5B:C5:4F:28:48:22:A7:17:B1:AD:4C:37:CF:69:D0:96:CE:7F:67:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/70CC1DFE2A7511ECAEB63359D8A014CE/W8VPKEgipxexrUw3z2nQls5_Z3M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/ripe/W8VPKEgipxexrUw3z2nQls5_Z3M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/70CC1DFE2A7511ECAEB63359D8A014CE/7D4DF23EBD5E11F0AC3505AFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
62.240.32.0/19
Signature Algorithm: sha256WithRSAEncryption
6c:4e:f0:71:93:78:ad:ee:50:67:fd:4d:c8:77:5c:80:ce:98:
68:59:29:cd:57:86:5d:84:48:30:9e:ce:41:a8:27:e0:f4:eb:
df:c8:2f:6a:f7:00:17:11:8e:e6:71:5e:0a:f8:c3:86:8b:51:
55:44:5d:f1:4c:70:36:aa:43:c9:c4:ed:61:48:7e:90:c7:c4:
b1:4c:33:b1:77:51:27:ad:60:73:f8:4d:f0:2a:80:e9:12:27:
e0:4b:17:4a:97:46:62:c4:e0:cc:c2:64:0a:b4:7b:14:26:c0:
7d:42:59:3c:71:26:5c:bf:bf:d5:8f:0f:18:70:ed:6e:a8:e4:
1a:e7:39:10:f4:90:20:a6:15:14:bc:b8:d8:1e:8b:ea:4d:c1:
68:03:75:57:6b:7f:7a:67:4e:5a:c1:19:bd:3b:01:b1:29:66:
e5:74:90:43:af:f5:b9:6b:30:ab:56:24:ff:0f:45:b1:ab:02:
ec:25:bb:c4:64:0b:5a:a1:84:e4:e8:2c:c5:0a:d5:39:8d:be:
78:22:a4:e4:a8:73:d6:99:82:77:0d:e1:6b:54:36:6f:ff:8f:
2e:e8:59:0e:fc:5d:84:2d:f6:47:e5:04:ba:fb:bf:1f:d5:0d:
d5:0c:a2:6e:48:ad:07:96:82:98:a3:ba:28:35:6c:55:17:48:
00:df:7e:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 12 00:54:29 2025 by rpki-client