Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F7787D3C6ED911F0AC275FE0DAE4EC9C.roa
File: F7787D3C6ED911F0AC275FE0DAE4EC9C.roa (raw, json)
Hash identifier: cPAaH0wl040Nxv0drdn4SVHsHuYf4YRLYDRmPCNkLRg=
Subject key identifier: A5:95:D9:34:15:45:6E:73:4D:D4:A4:D5:37:AA:C6:0C:D8:15:32:CC
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1B94
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F7787D3C6ED911F0AC275FE0DAE4EC9C.roa
Signing time: Fri 01 Aug 2025 13:18:09 +0000
ROA not before: Fri 01 Aug 2025 13:18:04 +0000
ROA not after: Sun 01 Aug 2027 13:18:04 +0000
asID: 61317
IP address blocks: 154.16.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 10 Aug 2025 01:18:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7060 (0x1b94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Aug 1 13:18:04 2025 GMT
Not After : Aug 1 13:18:04 2027 GMT
Subject: CN=688cbe91-9fa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c7:ae:5e:30:95:79:04:42:16:72:83:f8:6f:
bd:d5:31:38:74:dc:8b:3b:bb:1b:f0:85:3a:bc:18:
84:70:91:9d:ec:b5:72:88:24:03:55:8f:ae:6c:c3:
38:16:2c:32:12:d6:0e:47:44:98:70:bf:29:e2:ab:
f0:83:ad:23:7f:df:76:8e:4f:eb:e7:d8:a9:f8:00:
36:e4:7b:54:6d:f9:52:9b:14:19:38:3e:ae:1a:2b:
3e:ad:ac:b8:44:85:c0:30:9b:b9:8d:bf:95:5f:04:
f6:c5:6b:ce:5c:69:a3:98:aa:ab:01:84:5c:bb:78:
6f:b0:51:4a:e6:c1:78:c8:63:19:39:d2:3b:d0:1f:
d8:14:f4:a3:90:cc:16:95:d4:b6:35:01:66:53:23:
16:ae:4e:7e:ab:af:bb:9e:8b:61:c2:83:38:b8:6a:
aa:32:f0:66:3a:a8:6a:d7:33:3b:65:a1:1a:3c:18:
10:61:f0:41:29:0c:f1:f1:7a:bf:ed:a7:34:9d:e7:
e5:0b:92:fb:f2:e6:16:be:13:d8:63:f5:ff:02:d7:
2b:84:e6:c4:5f:77:d9:8c:8c:35:f3:59:3f:08:e8:
dc:75:c2:5d:6b:7d:d5:49:28:b0:b2:32:14:84:f4:
a6:da:bb:7d:5e:18:d0:85:37:8b:62:38:4d:f8:22:
bc:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:95:D9:34:15:45:6E:73:4D:D4:A4:D5:37:AA:C6:0C:D8:15:32:CC
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F7787D3C6ED911F0AC275FE0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.22.0/24
Signature Algorithm: sha256WithRSAEncryption
24:4f:af:f5:ea:38:05:ec:68:63:d7:41:22:f0:a4:2c:46:42:
a1:8a:b9:8c:77:19:cf:b8:b4:62:ec:0e:9f:74:82:49:9e:4f:
4a:ae:cc:de:c1:ab:95:1e:06:36:d2:b0:b7:6a:a1:c8:1f:f3:
a8:2d:de:ed:7d:ca:53:4e:2c:29:05:f3:7d:e3:12:40:19:ba:
8b:58:79:bd:72:e9:56:6e:81:48:f2:0e:a6:12:10:f4:75:2a:
e0:c0:bd:0e:ab:75:41:f2:0f:1f:74:7b:db:f5:b5:b5:05:f4:
b6:8d:14:84:40:c6:fd:c9:42:4b:ac:15:2b:b3:91:bf:bf:ba:
a3:52:9c:77:38:90:a6:59:c4:2b:9f:ac:ce:35:ff:dc:d0:7b:
f9:e0:70:8b:3a:06:ea:7e:6e:d7:07:99:8d:97:d4:3b:b1:04:
f9:ac:c1:13:80:78:5c:67:ac:03:86:61:7c:3f:50:fb:37:f6:
26:ca:3e:49:2c:b5:d4:f9:41:23:5f:05:57:5c:6c:db:da:38:
1c:2d:95:25:16:8a:82:8a:2e:22:7e:59:14:91:f6:09:96:1c:
9e:9d:9f:0f:ec:03:ff:9c:4c:be:66:02:b9:78:1d:8d:7e:3e:
2c:4e:64:e4:8c:b9:55:ae:5a:a9:44:51:7c:13:f5:d3:30:31:
c9:f6:b3:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:12:36 2025 by rpki-client