Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36337E5/979BA6407FE311EF83475586762E951A/5C73A576412711F08AAAB37EDAE4EC9C.roa
File: 5C73A576412711F08AAAB37EDAE4EC9C.roa (raw, json)
Hash identifier: jjxXl0x/+co3gFlsdpdDQTKqw1d56AFQuCJMO0O5h0U=
Subject key identifier: 05:00:C1:52:D1:03:50:EF:AC:96:CC:A1:34:8E:4E:2B:A2:4A:DB:3F
Certificate issuer: /CN=F36337E5AF/serialNumber=C9C129FBC3C8273A462955A9528E0AAC2F2E982C
Certificate serial: 0116
Authority key identifier: C9:C1:29:FB:C3:C8:27:3A:46:29:55:A9:52:8E:0A:AC:2F:2E:98:2C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ycEp-8PIJzpGKVWpUo4KrC8umCw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36337E5/979BA6407FE311EF83475586762E951A/5C73A576412711F08AAAB37EDAE4EC9C.roa
Signing time: Wed 04 Jun 2025 09:36:16 +0000
ROA not before: Wed 04 Jun 2025 09:36:11 +0000
ROA not after: Fri 04 Jun 2027 09:36:11 +0000
asID: 329403
IP address blocks: 102.206.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36337E5/979BA6407FE311EF83475586762E951A/ycEp-8PIJzpGKVWpUo4KrC8umCw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36337E5/979BA6407FE311EF83475586762E951A/ycEp-8PIJzpGKVWpUo4KrC8umCw.mft
rsync://rpki.afrinic.net/repository/afrinic/ycEp-8PIJzpGKVWpUo4KrC8umCw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 24 Jun 2025 03:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 278 (0x116)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36337E5AF, serialNumber=C9C129FBC3C8273A462955A9528E0AAC2F2E982C
Validity
Not Before: Jun 4 09:36:11 2025 GMT
Not After : Jun 4 09:36:11 2027 GMT
Subject: CN=68401390-2206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:51:f0:51:95:42:42:c7:c0:88:e4:6b:78:60:
de:79:1e:eb:7b:8e:7d:9c:82:63:6e:c8:bb:52:6b:
83:a5:dc:ac:db:2b:62:46:90:d3:82:5d:2b:db:80:
4e:3a:0c:f5:be:87:be:74:83:39:37:01:8f:56:fe:
44:39:c1:78:5a:ba:a9:61:23:92:3c:d0:b8:a3:3f:
bf:74:23:17:08:ab:53:7f:f6:fd:ee:29:c0:7f:56:
70:33:20:b8:8c:4c:49:b2:cc:8d:1f:5e:04:64:e4:
df:c4:32:4c:0d:cf:1c:e7:cb:17:26:95:1f:33:4c:
f1:b5:02:6a:28:48:c5:93:8e:9f:14:18:1f:30:70:
6c:be:cf:92:f9:7d:9d:69:b5:ff:04:36:ae:11:81:
0e:f5:da:d5:24:17:69:0a:52:d9:6d:2e:11:0a:9c:
c8:e0:eb:ae:0b:ae:00:bd:3e:2c:82:44:df:1c:21:
c2:38:f2:54:fd:b4:4e:a0:57:83:67:de:b3:83:5c:
e7:2e:d8:65:60:1a:a0:5e:fd:6c:91:d5:23:43:58:
30:03:3a:9b:1e:3d:9c:99:a2:aa:49:31:ef:3e:18:
8b:b8:a6:23:bc:48:38:18:18:6b:91:ba:a5:60:72:
94:fc:f4:0c:38:4d:ea:49:55:0b:e9:9c:28:92:e5:
57:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:00:C1:52:D1:03:50:EF:AC:96:CC:A1:34:8E:4E:2B:A2:4A:DB:3F
X509v3 Authority Key Identifier:
keyid:C9:C1:29:FB:C3:C8:27:3A:46:29:55:A9:52:8E:0A:AC:2F:2E:98:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36337E5/979BA6407FE311EF83475586762E951A/ycEp-8PIJzpGKVWpUo4KrC8umCw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ycEp-8PIJzpGKVWpUo4KrC8umCw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36337E5/979BA6407FE311EF83475586762E951A/5C73A576412711F08AAAB37EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.206.69.0/24
Signature Algorithm: sha256WithRSAEncryption
83:a9:28:36:97:fe:ed:59:0d:5d:ac:d1:f1:74:27:00:98:0c:
5a:e2:7f:77:8b:90:62:2d:ba:e7:c3:eb:5a:a2:3c:f1:6c:41:
a9:83:0d:28:b6:42:d2:33:f2:74:26:8c:f6:7c:55:a2:4a:38:
33:88:46:ef:dc:2c:9b:de:d2:e0:df:c8:ce:14:4e:1a:72:f8:
25:13:40:3b:ec:70:95:02:b6:f2:25:4b:1c:3f:0b:e2:02:d9:
d7:ca:c1:29:9e:d4:b0:c3:67:88:b0:18:36:97:d9:2d:7a:d5:
8b:f9:f3:2a:5c:50:fa:e9:64:72:98:12:a7:19:fc:99:44:e5:
ab:53:a8:62:33:8e:27:a8:d5:4b:82:ae:dd:e0:82:48:bb:ca:
58:c7:0c:2f:e1:f4:be:a3:ed:c4:3b:ae:f9:12:a8:3a:bf:17:
5e:22:a0:6f:1b:40:9d:2b:52:0c:19:a6:b9:0c:6b:5e:3e:ff:
52:e2:75:57:ca:eb:97:7e:8c:81:28:a8:47:01:0b:69:11:07:
e6:9a:b9:37:65:c1:c4:8a:75:29:e8:a7:b4:d2:db:41:2c:ff:
db:dc:ae:bb:cc:3e:75:eb:56:bd:6f:06:67:3e:d4:22:15:68:
29:3e:2d:e4:1f:1b:d9:6d:2c:8e:1c:8e:89:a6:91:4d:a6:55:
37:4d:03:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 23 00:31:32 2025 by rpki-client