Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3676134/3362C1AA567E11F0B014F9DEDAE4EC9C/EE670342B42211F0993F858CDAE4EC9C.roa
File: EE670342B42211F0993F858CDAE4EC9C.roa (raw, json)
Hash identifier: iVTP+qjlG2fos49aJPA63qSgM1CByci4d+Gh4O+20Ng=
Subject key identifier: 97:C4:D3:85:2F:AF:3E:D5:CC:56:C3:D9:F3:82:64:75:11:A6:23:F6
Certificate issuer: /CN=F3676134AF/serialNumber=74B03B8FD8F53BEF4887B78698F9ECAB1B1F69B0
Certificate serial: 88
Authority key identifier: 74:B0:3B:8F:D8:F5:3B:EF:48:87:B7:86:98:F9:EC:AB:1B:1F:69:B0
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/dLA7j9j1O-9Ih7eGmPnsqxsfabA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3676134/3362C1AA567E11F0B014F9DEDAE4EC9C/EE670342B42211F0993F858CDAE4EC9C.roa
Signing time: Tue 28 Oct 2025 17:24:17 +0000
ROA not before: Tue 28 Oct 2025 17:24:09 +0000
ROA not after: Tue 05 Oct 2027 17:24:09 +0000
asID: 329532
IP address blocks: 2c0f:fc78:faf0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3676134/3362C1AA567E11F0B014F9DEDAE4EC9C/dLA7j9j1O-9Ih7eGmPnsqxsfabA.crl
rsync://rpki.afrinic.net/repository/member_repository/F3676134/3362C1AA567E11F0B014F9DEDAE4EC9C/dLA7j9j1O-9Ih7eGmPnsqxsfabA.mft
rsync://rpki.afrinic.net/repository/afrinic/dLA7j9j1O-9Ih7eGmPnsqxsfabA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:06:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136 (0x88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3676134AF, serialNumber=74B03B8FD8F53BEF4887B78698F9ECAB1B1F69B0
Validity
Not Before: Oct 28 17:24:09 2025 GMT
Not After : Oct 5 17:24:09 2027 GMT
Subject: CN=6900fc41-9a52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:08:4c:3f:f9:33:79:68:4d:7c:81:e5:b3:36:
0e:c2:02:04:21:cc:af:be:3b:ee:e2:1d:1e:a4:74:
b9:e5:d9:3f:fc:95:e1:b6:4b:0a:65:9e:25:05:24:
83:78:49:2a:a4:2b:ed:4d:e1:01:b2:57:44:e9:45:
ee:af:98:50:d3:12:9e:35:e5:a3:f0:65:04:45:68:
2f:2e:ef:dc:95:1f:bf:dc:5f:3a:75:75:e5:a5:d0:
03:69:e5:e3:3f:56:d3:b1:01:c7:cc:b8:95:31:4d:
d5:28:23:39:d9:de:16:e5:d6:3d:c8:a0:6d:08:82:
28:15:14:b6:7e:d1:fb:f8:0f:a5:60:05:32:2c:51:
56:ff:35:31:5d:2d:cf:78:6f:68:b4:8c:93:bf:bc:
92:df:78:1b:51:7e:d1:99:94:df:1f:76:47:23:d3:
19:11:52:b7:3b:2d:4f:34:78:d4:74:48:77:39:c2:
45:c9:22:15:4d:48:5b:ce:97:47:32:65:ca:c9:7e:
15:1b:b9:31:ed:44:6c:64:89:c9:2c:2e:56:b8:80:
0f:c1:f0:b0:00:88:3a:12:11:6b:aa:2f:f1:bb:cb:
96:96:3c:5c:57:4c:0a:49:cf:f3:b7:cb:50:4d:fc:
7c:d1:bc:5e:4e:07:8f:57:e9:74:b1:28:96:d8:ac:
a8:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:C4:D3:85:2F:AF:3E:D5:CC:56:C3:D9:F3:82:64:75:11:A6:23:F6
X509v3 Authority Key Identifier:
keyid:74:B0:3B:8F:D8:F5:3B:EF:48:87:B7:86:98:F9:EC:AB:1B:1F:69:B0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3676134/3362C1AA567E11F0B014F9DEDAE4EC9C/dLA7j9j1O-9Ih7eGmPnsqxsfabA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/dLA7j9j1O-9Ih7eGmPnsqxsfabA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3676134/3362C1AA567E11F0B014F9DEDAE4EC9C/EE670342B42211F0993F858CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:fc78:faf0::/44
Signature Algorithm: sha256WithRSAEncryption
01:af:0d:38:81:41:1b:28:df:b0:cc:13:66:33:39:1a:80:7b:
5d:0b:ff:f3:82:4a:f0:51:7e:89:f3:03:12:cd:1b:55:d2:0f:
7f:ae:df:fb:9b:24:74:12:4a:a0:f4:36:43:a3:bb:86:fc:37:
e7:7a:7d:4d:29:d6:b2:52:30:cf:40:1f:98:e0:f6:da:56:cc:
9d:c8:21:50:94:3e:fb:08:28:e7:f8:d7:eb:aa:3b:25:0e:c2:
d1:0f:a8:6f:9e:e6:09:6d:a6:b5:44:e1:51:27:5d:12:1f:71:
2c:30:3f:5d:aa:c2:7a:60:86:9e:1d:7c:fe:0e:de:53:4a:1c:
e4:37:d5:d8:2f:04:c1:5e:1f:1b:c1:10:b9:54:1d:cc:b1:bb:
79:ce:ee:f8:45:88:ec:0e:0d:e3:c4:ae:cf:8b:f0:48:03:ab:
b3:1a:f4:56:e2:41:7e:7e:f2:72:d8:a4:5e:82:7d:3c:11:6e:
28:1e:5d:2c:42:a2:fd:5b:e8:15:d7:30:0a:fb:ea:53:8f:04:
a3:ae:02:b6:27:36:f6:88:61:65:ac:05:81:4e:45:91:58:18:
eb:e6:ac:99:43:50:e2:d4:a1:58:19:fb:e6:88:7f:6f:c2:af:
3e:e7:77:8a:44:b1:dd:4f:47:0a:39:54:4d:3b:7e:55:54:56:
da:1d:6a:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 20:42:28 2025 by rpki-client