Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA116/8DC44E0EC62B11EF98DEC0B5762E951A/71DE958C5E7411F0AEC6D985DAE4EC9C.roa
File: 71DE958C5E7411F0AEC6D985DAE4EC9C.roa (raw, json)
Hash identifier: 51NFjZ3CYPIIY3uEeSiGUbDuSJMp6A8YWxkoha9Jit4=
Subject key identifier: 35:97:6A:13:E1:F0:15:DD:98:F0:94:F5:25:EA:CC:70:17:B5:F9:0A
Certificate issuer: /CN=F36FA116AF/serialNumber=BC44CE85A5EC97BDBB21D3348800310153A01CCA
Certificate serial: D7
Authority key identifier: BC:44:CE:85:A5:EC:97:BD:BB:21:D3:34:88:00:31:01:53:A0:1C:CA
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/vETOhaXsl727IdM0iAAxAVOgHMo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA116/8DC44E0EC62B11EF98DEC0B5762E951A/71DE958C5E7411F0AEC6D985DAE4EC9C.roa
Signing time: Fri 11 Jul 2025 16:31:07 +0000
ROA not before: Fri 11 Jul 2025 16:31:03 +0000
ROA not after: Tue 31 Jul 2035 16:31:03 +0000
asID: 328140
IP address blocks: 196.223.150.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA116/8DC44E0EC62B11EF98DEC0B5762E951A/vETOhaXsl727IdM0iAAxAVOgHMo.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA116/8DC44E0EC62B11EF98DEC0B5762E951A/vETOhaXsl727IdM0iAAxAVOgHMo.mft
rsync://rpki.afrinic.net/repository/afrinic/vETOhaXsl727IdM0iAAxAVOgHMo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 29 Jul 2025 00:06:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 215 (0xd7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA116AF, serialNumber=BC44CE85A5EC97BDBB21D3348800310153A01CCA
Validity
Not Before: Jul 11 16:31:03 2025 GMT
Not After : Jul 31 16:31:03 2035 GMT
Subject: CN=68713c4b-f750
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:39:44:4f:4c:05:b4:50:5c:d0:8e:1a:18:5d:
d8:08:40:4b:33:7e:23:58:0b:5e:43:39:c3:a3:62:
6d:1e:29:af:82:6e:0c:f9:85:2f:02:f1:6a:37:8e:
96:65:87:8e:7c:19:93:d7:00:c4:f4:1c:e4:6e:bf:
93:d0:e6:37:99:c1:7a:b5:61:21:f2:35:1f:8a:a0:
de:85:0d:f6:1b:55:ae:5a:7e:e7:3f:8f:7d:21:7a:
c8:5b:b7:4b:59:13:d1:12:f6:16:0c:6d:09:ba:1e:
7c:47:30:17:a1:dc:61:4c:37:be:f3:a9:fe:d5:26:
53:76:5d:97:23:98:2f:ba:25:9b:99:4c:b1:3b:09:
2f:59:99:7d:9a:3c:92:54:63:04:5e:9b:18:1c:30:
19:0f:78:58:05:3f:eb:c7:78:e2:c8:7c:65:ae:36:
bd:7c:df:97:c8:0a:0c:44:64:a9:6e:25:61:ce:11:
b8:ae:da:fa:45:7b:95:60:44:7f:f0:c0:86:72:29:
1d:be:0a:d2:13:77:42:b1:5d:90:ee:13:08:34:31:
6e:0d:1d:60:ae:77:32:33:de:52:0c:aa:8c:61:17:
6c:00:7b:a5:c2:f8:9b:3b:30:66:6b:ec:7e:81:c3:
0b:1f:a6:0b:2e:ec:4c:d0:60:55:06:f0:91:ab:a6:
f2:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:97:6A:13:E1:F0:15:DD:98:F0:94:F5:25:EA:CC:70:17:B5:F9:0A
X509v3 Authority Key Identifier:
keyid:BC:44:CE:85:A5:EC:97:BD:BB:21:D3:34:88:00:31:01:53:A0:1C:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA116/8DC44E0EC62B11EF98DEC0B5762E951A/vETOhaXsl727IdM0iAAxAVOgHMo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/vETOhaXsl727IdM0iAAxAVOgHMo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA116/8DC44E0EC62B11EF98DEC0B5762E951A/71DE958C5E7411F0AEC6D985DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.223.150.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:ac:1c:42:4c:6c:30:af:b8:be:60:82:6a:f5:68:48:c3:58:
76:13:a7:96:74:5e:90:a8:9a:89:7c:88:1a:86:29:34:3b:e9:
bc:4a:e6:99:f9:a7:3d:ab:d6:04:ba:99:d7:24:c7:11:85:bb:
be:13:72:47:da:d4:07:60:b4:04:be:00:79:6e:82:68:79:43:
38:fe:cb:8e:96:6b:99:9e:91:75:25:27:b1:e6:f2:d6:d2:6f:
56:e9:97:1d:75:9a:e2:ca:31:ca:38:a3:6b:90:12:98:18:e1:
c1:00:bd:1f:8d:b3:60:5c:34:dc:7b:33:c5:48:05:2f:b6:dd:
e3:2f:0e:13:30:35:5a:97:4c:3a:0f:0c:d1:bd:23:2d:25:b4:
ae:b2:3f:c7:c4:ce:fb:5f:ab:af:57:33:7c:db:7a:2a:7c:f5:
be:81:ef:a9:e9:e6:ea:22:b5:86:d5:48:8a:e4:6a:c3:ea:2b:
2a:02:f1:8b:c4:a1:46:39:ba:0f:ae:e1:29:cc:61:60:98:42:
cd:51:b5:dc:83:55:74:cd:b8:79:83:6e:70:e3:a8:74:41:33:
05:a0:e7:b7:87:dc:14:f9:f7:a1:9d:c8:68:99:8e:f4:54:32:
03:89:26:68:ff:bd:e7:d5:d6:a8:5b:81:9a:65:f2:c2:5a:78:
fa:f6:9e:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 07:51:52 2025 by rpki-client