Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA116/8DC44E0EC62B11EF98DEC0B5762E951A/AADAB84C5E7011F0835DADEDDAE4EC9C.roa
File: AADAB84C5E7011F0835DADEDDAE4EC9C.roa (raw, json)
Hash identifier: CcyeZZtzJrOmPwE8trZiA1tfvtoAqYBgEusy3z8uahk=
Subject key identifier: F9:29:43:B4:F9:FD:01:45:96:48:E9:75:D9:26:2B:D1:57:F8:54:E1
Certificate issuer: /CN=F36FA116AF/serialNumber=BC44CE85A5EC97BDBB21D3348800310153A01CCA
Certificate serial: CF
Authority key identifier: BC:44:CE:85:A5:EC:97:BD:BB:21:D3:34:88:00:31:01:53:A0:1C:CA
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/vETOhaXsl727IdM0iAAxAVOgHMo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA116/8DC44E0EC62B11EF98DEC0B5762E951A/AADAB84C5E7011F0835DADEDDAE4EC9C.roa
Signing time: Fri 11 Jul 2025 16:04:05 +0000
ROA not before: Wed 30 Jul 2025 16:04:00 +0000
ROA not after: Tue 31 Jul 2035 16:04:00 +0000
asID: 328140
IP address blocks: 196.223.145.0/24 maxlen: 24
Validation: Failed, certificate is not yet valid
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 207 (0xcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA116AF, serialNumber=BC44CE85A5EC97BDBB21D3348800310153A01CCA
Validity
Not Before: Jul 30 16:04:00 2025 GMT
Not After : Jul 31 16:04:00 2035 GMT
Subject: CN=687135f5-ca24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a2:8c:bb:2d:ed:04:e6:2a:32:cf:0f:84:a0:
e2:74:e5:d3:33:ef:b0:76:23:40:bb:85:d3:62:c7:
da:77:51:b5:ee:12:9b:0e:35:83:42:e1:97:d2:13:
e4:11:72:75:9d:4b:4a:b4:e3:7d:1a:ce:ad:97:8a:
46:64:aa:e2:ab:bc:60:55:6f:a0:86:c0:63:5d:3d:
82:9e:9c:12:c0:f0:31:1e:4f:9d:f4:b4:a4:d9:40:
04:44:83:d7:9e:f0:78:dc:a6:1e:fc:9e:d8:fa:c1:
0f:b6:33:61:f7:23:6d:22:49:96:a5:a6:0d:83:05:
8c:49:2e:93:1b:bc:cc:62:ec:fb:9c:db:e6:ae:68:
e4:24:3e:5a:50:0c:55:c5:48:8e:8a:0e:27:97:10:
98:45:f4:86:3d:31:6b:a8:4a:e4:bd:c3:5d:b3:04:
e6:60:1d:0d:45:40:d0:4c:25:ad:41:02:00:e9:0e:
49:c4:47:a8:95:5d:c5:a4:5e:d3:79:0b:fb:d8:a2:
39:a1:a1:80:6a:23:91:d7:f6:fa:24:a7:03:d9:4d:
b1:ed:89:7c:d7:a3:d8:7c:de:c0:be:7a:ff:99:73:
55:d9:72:dc:c2:e6:5f:e6:81:cd:60:05:5c:3d:79:
5a:44:dc:17:d7:dd:0c:4f:be:02:72:f9:e4:a6:72:
fc:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:29:43:B4:F9:FD:01:45:96:48:E9:75:D9:26:2B:D1:57:F8:54:E1
X509v3 Authority Key Identifier:
keyid:BC:44:CE:85:A5:EC:97:BD:BB:21:D3:34:88:00:31:01:53:A0:1C:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA116/8DC44E0EC62B11EF98DEC0B5762E951A/vETOhaXsl727IdM0iAAxAVOgHMo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/vETOhaXsl727IdM0iAAxAVOgHMo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA116/8DC44E0EC62B11EF98DEC0B5762E951A/AADAB84C5E7011F0835DADEDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.223.145.0/24
Signature Algorithm: sha256WithRSAEncryption
af:d7:b0:0b:00:44:39:ff:51:49:1d:7c:ce:e8:35:66:d3:dd:
9d:c1:ef:2f:4f:78:ee:ad:dd:a3:02:09:fd:c5:d3:23:14:b0:
8d:f9:1e:68:ea:7d:ce:e0:08:2d:e7:fa:86:1f:2b:d9:6b:63:
cc:6f:05:fd:23:b7:74:39:6e:0b:e6:a8:17:a4:36:ce:3b:17:
f0:7a:88:b0:13:50:4a:79:fb:95:a8:2a:76:9c:81:27:47:a0:
74:b9:26:3a:35:9e:8b:cd:4b:08:4a:ee:2f:54:00:0e:c4:c1:
4c:db:95:00:fe:e4:e2:6f:5c:fc:fe:18:4f:27:67:64:6e:f7:
17:b3:98:02:4d:31:58:25:18:4c:fa:ab:4b:e1:bf:13:5c:7b:
a8:f7:b5:d0:68:e7:4f:05:f1:a6:b6:7d:3e:eb:df:76:12:db:
d1:46:53:3e:60:11:8d:96:d6:35:6b:88:cd:0d:16:89:be:bb:
5d:0c:56:c9:7d:96:cc:c1:7d:89:cb:b3:ab:4b:da:6a:bd:88:
53:81:b6:79:70:be:f5:67:42:0c:a1:c9:f8:f0:19:f8:90:ee:
b1:6c:07:76:4b:fa:14:74:7e:d0:2d:32:a4:be:a3:1a:a1:9c:
94:48:8d:93:ea:a8:86:83:f6:db:70:b4:f5:0a:82:2e:40:f8:
8a:5c:0a:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 08:03:35 2025 by rpki-client