Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA116/8DC44E0EC62B11EF98DEC0B5762E951A/6D53012C5F0711F0BB9112C7DAE4EC9C.roa
File: 6D53012C5F0711F0BB9112C7DAE4EC9C.roa (raw, json)
Hash identifier: npieICudO1KvhMAgWhPSEsvR6HxcaQethLT2k2Cc0H0=
Subject key identifier: 01:8C:22:85:A0:FE:5F:92:D2:F8:28:A6:98:38:E9:9B:21:B2:95:78
Certificate issuer: /CN=F36FA116AF/serialNumber=BC44CE85A5EC97BDBB21D3348800310153A01CCA
Certificate serial: DE
Authority key identifier: BC:44:CE:85:A5:EC:97:BD:BB:21:D3:34:88:00:31:01:53:A0:1C:CA
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/vETOhaXsl727IdM0iAAxAVOgHMo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA116/8DC44E0EC62B11EF98DEC0B5762E951A/6D53012C5F0711F0BB9112C7DAE4EC9C.roa
Signing time: Sat 12 Jul 2025 10:03:16 +0000
ROA not before: Sat 12 Jul 2025 10:03:10 +0000
ROA not after: Tue 31 Jul 2035 10:03:10 +0000
asID: 328140
IP address blocks: 196.223.144.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA116/8DC44E0EC62B11EF98DEC0B5762E951A/vETOhaXsl727IdM0iAAxAVOgHMo.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA116/8DC44E0EC62B11EF98DEC0B5762E951A/vETOhaXsl727IdM0iAAxAVOgHMo.mft
rsync://rpki.afrinic.net/repository/afrinic/vETOhaXsl727IdM0iAAxAVOgHMo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 29 Jul 2025 00:06:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 222 (0xde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA116AF, serialNumber=BC44CE85A5EC97BDBB21D3348800310153A01CCA
Validity
Not Before: Jul 12 10:03:10 2025 GMT
Not After : Jul 31 10:03:10 2035 GMT
Subject: CN=687232e3-f7db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:1e:d5:4e:39:ea:bd:f1:ce:f4:14:df:56:83:
1e:21:80:e9:47:e1:cf:a6:46:4e:6d:d8:37:a9:ad:
ef:d9:ab:0a:6f:01:3c:0b:ce:81:f0:23:4f:d9:dc:
3d:9e:1a:17:86:47:55:5b:42:82:9e:f5:02:c3:4c:
09:58:31:b7:03:c7:a0:50:d6:12:88:ef:ff:c9:7d:
6d:8d:fe:04:2b:f8:ff:5a:dc:21:dc:77:b8:2c:14:
b7:ff:ea:79:f4:c3:43:04:8b:a2:81:10:54:e7:5c:
0f:d2:8a:eb:a7:92:28:ab:5f:7c:1a:e2:05:76:4a:
4a:6d:cd:72:90:40:83:17:76:29:10:64:e4:8e:08:
21:e1:8f:e9:35:0a:a8:dd:50:f9:c9:6b:cf:4a:cd:
97:13:61:0a:07:fd:f3:01:95:b9:4f:74:38:1f:ee:
c5:13:24:76:31:f4:7e:29:f2:1e:40:07:d4:bd:e0:
3e:1f:21:d3:6a:42:43:81:d3:fd:33:9b:b8:32:d2:
bf:90:9c:c2:fa:f8:cc:9c:c1:17:a3:b2:47:1d:b7:
0c:0a:97:64:d2:87:27:0c:9a:a0:22:fe:d9:fa:e8:
cf:d9:cf:0c:92:ff:73:b2:d4:ab:d2:5b:66:d7:db:
3e:5b:80:3c:b1:a4:14:78:c3:b1:cb:4f:95:4c:b0:
db:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:8C:22:85:A0:FE:5F:92:D2:F8:28:A6:98:38:E9:9B:21:B2:95:78
X509v3 Authority Key Identifier:
keyid:BC:44:CE:85:A5:EC:97:BD:BB:21:D3:34:88:00:31:01:53:A0:1C:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA116/8DC44E0EC62B11EF98DEC0B5762E951A/vETOhaXsl727IdM0iAAxAVOgHMo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/vETOhaXsl727IdM0iAAxAVOgHMo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA116/8DC44E0EC62B11EF98DEC0B5762E951A/6D53012C5F0711F0BB9112C7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.223.144.0/21
Signature Algorithm: sha256WithRSAEncryption
64:22:ba:c8:03:36:c4:ea:69:a3:d1:2c:16:74:32:27:22:7e:
af:b3:f0:28:2b:86:01:1e:47:8f:a6:23:c5:83:67:77:2b:8e:
1e:87:4e:42:6d:e5:1c:ee:80:0c:c3:65:fc:66:a7:6c:19:35:
64:8a:dc:5b:b6:af:c7:9d:c5:82:dd:3f:7f:e8:30:68:68:eb:
4f:1d:0b:bb:4c:6c:72:db:30:a2:fc:77:6b:76:89:2f:e5:e3:
99:ae:22:82:e3:0c:20:84:8b:c5:18:3e:1d:0e:04:23:6b:ec:
e0:4b:82:d4:c0:39:72:77:5f:94:06:f3:0c:b2:70:32:d2:5e:
a3:52:51:0d:2c:94:af:c6:c9:c3:9b:8e:bd:56:b0:e7:24:45:
db:55:84:80:e1:87:71:de:08:9a:4d:9b:8a:9c:82:f8:60:a9:
18:12:96:bb:da:86:f1:b2:e1:d8:af:b1:ff:02:d1:be:17:56:
82:a6:9d:12:b4:56:ad:15:e1:f7:66:16:80:c8:b7:ce:8a:05:
49:90:e8:95:33:48:ec:42:fe:be:8d:a0:70:10:91:51:48:c1:
5d:7c:f9:5d:bd:9a:9b:e0:32:49:3e:92:19:21:b8:1e:24:f1:
47:6e:ce:30:5a:77:c1:95:8f:3f:4c:b9:c7:3d:fd:27:b2:a3:
24:93:c4:ae
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
RkExMTZBRjExMC8GA1UEBRMoQkM0NENFODVBNUVDOTdCREJCMjFEMzM0ODgwMDMx
MDE1M0EwMUNDQTAeFw0yNTA3MTIxMDAzMTBaFw0zNTA3MzExMDAzMTBaMBgxFjAU
BgNVBAMTDTY4NzIzMmUzLWY3ZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCxHtVOOeq98c70FN9Wgx4hgOlH4c+mRk5t2Depre/ZqwpvATwLzoHwI0/Z
3D2eGheGR1VbQoKe9QLDTAlYMbcDx6BQ1hKI7//JfW2N/gQr+P9a3CHcd7gsFLf/
6nn0w0MEi6KBEFTnXA/SiuunkiirX3wa4gV2SkptzXKQQIMXdikQZOSOCCHhj+k1
CqjdUPnJa89KzZcTYQoH/fMBlblPdDgf7sUTJHYx9H4p8h5AB9S94D4fIdNqQkOB
0/0zm7gy0r+QnML6+MycwRejskcdtwwKl2TShycMmqAi/tn66M/ZzwyS/3Oy1KvS
W2bX2z5bgDyxpBR4w7HLT5VMsNv3AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUAYwi
haD+X5LS+CimmDjpmyGylXgwHwYDVR0jBBgwFoAUvETOhaXsl727IdM0iAAxAVOg
HMowDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkZBMTE2LzhEQzQ0RTBFQzYyQjExRUY5OERFQzBCNTc2MkU5NTFBL3ZFVE9o
YVhzbDcyN0lkTTBpQUF4QVZPZ0hNby5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL3ZFVE9oYVhzbDcyN0lkTTBpQUF4QVZPZ0hNby5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkZBMTE2LzhEQzQ0RTBFQzYyQjExRUY5OERFQzBCNTc2
MkU5NTFBLzZENTMwMTJDNUYwNzExRjBCQjkxMTJDN0RBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPE35AwDQYJKoZIhvcNAQEL
BQADggEBAGQiusgDNsTqaaPRLBZ0Micifq+z8CgrhgEeR4+mI8WDZ3crjh6HTkJt
5RzugAzDZfxmp2wZNWSK3Fu2r8edxYLdP3/oMGho608dC7tMbHLbMKL8d2t2iS/l
45muIoLjDCCEi8UYPh0OBCNr7OBLgtTAOXJ3X5QG8wyycDLSXqNSUQ0slK/GycOb
jr1WsOckRdtVhIDhh3HeCJpNm4qcgvhgqRgSlrvahvGy4divsf8C0b4XVoKmnRK0
Vq0V4fdmFoDIt86KBUmQ6JUzSOxC/r6NoHAQkVFIwV18+V29mpvgMkk+khkhuB4k
8UduzjBad8GVjz9Mucc9/SeyoySTxK4=
-----END CERTIFICATE-----
Generated at Sun Jul 27 07:58:10 2025 by rpki-client