Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/3080A05A410D11F0904FA4D5DAE4EC9C.roa
File: 3080A05A410D11F0904FA4D5DAE4EC9C.roa (raw, json)
Hash identifier: CAwKsNtYMHbL4AdCEUzfrt8mrNA8ugukd/zNZiPOv6A=
Subject key identifier: 0B:29:E8:E5:FC:A2:5A:77:58:B4:80:ED:A3:D1:41:1C:5F:CD:B1:66
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1B1A
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/3080A05A410D11F0904FA4D5DAE4EC9C.roa
Signing time: Wed 04 Jun 2025 06:28:56 +0000
ROA not before: Wed 04 Jun 2025 06:28:50 +0000
ROA not after: Sun 04 Jun 2028 06:28:50 +0000
asID: 834
IP address blocks: 154.16.38.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 17 Jun 2025 00:06:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6938 (0x1b1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jun 4 06:28:50 2025 GMT
Not After : Jun 4 06:28:50 2028 GMT
Subject: CN=683fe7a7-a154
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:59:33:43:d1:e1:60:59:73:7a:ba:ce:6c:a2:
05:da:65:81:3e:ae:8d:88:7f:06:a1:17:b4:e9:50:
fb:59:a7:90:a3:cf:0f:ef:a2:11:11:81:96:2d:8b:
51:60:e8:2a:a2:86:02:ab:43:8c:43:3e:1e:99:7f:
a9:93:48:3b:46:f7:45:33:00:21:1d:5a:ea:e7:02:
49:00:e4:7f:a3:cb:cd:c9:13:ac:c3:a5:3c:20:21:
8c:6d:dd:fd:c2:d6:e6:69:49:9a:cc:ef:24:40:5f:
f4:49:cf:e0:9c:4a:11:81:c5:fe:bb:b0:44:da:e5:
a3:49:50:0b:47:20:86:fa:0d:c6:12:84:c0:fe:dc:
a5:c8:b0:c2:68:78:46:c6:28:16:47:28:cb:d4:41:
8b:09:c8:b1:b6:c0:e3:a2:b9:5c:33:31:ca:ea:5c:
b2:db:be:3a:3e:e2:8f:0c:c8:73:7e:ea:50:ad:d7:
b6:25:51:7a:dc:ff:a5:98:6b:99:63:2e:80:a7:23:
b3:fa:a0:08:97:bd:49:45:c4:1e:36:29:8f:b4:a3:
16:0f:13:de:c2:ec:40:6d:85:0c:ff:e6:a8:7e:8c:
80:9e:df:0e:8e:0e:cb:fe:49:a4:c7:75:50:a3:bd:
7d:87:92:4e:11:c7:cc:6f:79:6f:95:12:ca:ee:7a:
fe:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:29:E8:E5:FC:A2:5A:77:58:B4:80:ED:A3:D1:41:1C:5F:CD:B1:66
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/3080A05A410D11F0904FA4D5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.38.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:84:30:69:4a:3d:5f:43:33:15:72:22:69:76:d2:87:1b:82:
81:17:98:51:29:12:82:a9:ff:a3:08:ed:a4:1a:27:89:8b:75:
de:02:38:e7:62:5c:e0:06:aa:fb:49:b5:e9:c7:2d:f7:d8:87:
6b:ca:3f:0d:12:c5:6e:e0:94:21:b4:5a:43:22:02:a1:ba:b6:
ce:f6:9d:50:df:f8:06:85:51:c0:96:63:1f:ba:dd:4c:b6:cf:
8f:75:1e:45:f4:4f:38:04:ba:89:4d:74:fb:21:b0:d1:11:3f:
77:93:98:5e:52:8d:67:e5:ad:5d:f9:04:e3:2d:ec:ad:36:03:
ec:2a:a4:5e:0a:7b:d3:f4:60:ca:d7:4f:c5:ef:50:d6:e8:2d:
53:33:3d:87:ca:4c:f6:82:a8:4d:fc:f9:0d:f3:dc:77:38:db:
b9:7b:48:54:5a:01:52:e4:4b:90:f4:31:3f:45:d4:6c:f5:69:
b8:fc:95:56:36:41:1e:11:22:64:56:99:c0:50:48:3e:7e:e0:
2b:f2:b4:1d:b3:bf:a4:8b:6b:85:e8:cb:29:1f:c6:f7:b5:90:
42:c6:be:02:85:2d:70:dd:bf:01:fb:70:12:e3:09:57:71:87:
8f:18:3c:8a:7e:8e:c4:92:98:50:4a:84:a3:92:6f:f1:7d:d5:
bc:29:5c:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:32:36 2025 by rpki-client