Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/C07CE2EE6DDC11F0AAA97E79DAE4EC9C.roa
File: C07CE2EE6DDC11F0AAA97E79DAE4EC9C.roa (raw, json)
Hash identifier: wYhdT4XlBmxW34l1xlwRcvCLt/rB+MrV9IHeZpSafU8=
Subject key identifier: CB:36:20:B8:C7:4C:AB:CD:BB:51:9C:51:05:D6:32:9C:D4:5C:E9:35
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1567
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/C07CE2EE6DDC11F0AAA97E79DAE4EC9C.roa
Signing time: Thu 31 Jul 2025 07:05:34 +0000
ROA not before: Thu 31 Jul 2025 07:05:25 +0000
ROA not after: Sat 31 Jul 2027 07:05:25 +0000
asID: 215224
IP address blocks: 102.129.246.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 06 Aug 2025 00:07:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5479 (0x1567)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Jul 31 07:05:25 2025 GMT
Not After : Jul 31 07:05:25 2027 GMT
Subject: CN=688b15be-a17d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:04:6b:67:b2:67:a8:7e:d6:03:c2:ea:29:aa:
2e:29:d2:be:65:ce:a7:fb:04:70:51:7f:79:3a:85:
cd:7d:14:fa:14:cd:92:b0:66:25:94:04:97:1a:a9:
a9:7f:7e:7b:ce:3d:3c:17:10:11:e8:a7:7d:b6:bf:
4a:21:d2:f5:2e:d7:ff:a7:4d:fc:dd:ca:28:8e:d3:
eb:b5:78:35:e6:24:93:3f:de:59:61:0c:79:2c:f4:
36:69:8a:3a:69:f4:56:2e:f1:0a:20:a1:b4:20:fd:
36:7d:a1:e0:a1:d1:8f:8a:83:91:ef:e9:c1:ff:9b:
f1:65:8d:8e:17:2f:7e:98:c1:99:e0:be:8d:88:fc:
cf:09:23:59:e1:6a:2a:b1:86:a7:b2:d4:ae:d9:4d:
99:32:0e:eb:60:a3:b5:9c:7d:76:c9:d7:63:b1:fb:
7d:59:d1:63:05:6a:40:c8:0f:86:5b:40:0b:c2:23:
3c:5b:f2:f1:0c:d1:8c:43:c5:60:7f:7f:af:5e:cc:
11:12:3a:04:43:4a:31:c4:0a:db:0c:ce:ca:f9:a9:
c7:71:ae:70:99:d3:27:90:80:e1:4b:37:12:ad:74:
78:b5:ab:42:21:22:79:2c:69:1a:73:c3:be:c3:13:
d5:79:ed:7e:ea:9f:6e:00:e1:84:32:69:5e:0c:08:
3a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:36:20:B8:C7:4C:AB:CD:BB:51:9C:51:05:D6:32:9C:D4:5C:E9:35
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/C07CE2EE6DDC11F0AAA97E79DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.246.0/24
Signature Algorithm: sha256WithRSAEncryption
86:3b:5f:01:9e:95:ba:e3:eb:6d:ab:b6:cb:78:76:42:8b:76:
7d:97:e8:0d:af:a4:a2:74:5b:f4:88:59:d8:51:6d:61:b2:ff:
a3:81:97:e4:8e:9b:ac:a7:bd:5d:0b:ea:62:fc:b7:9c:06:ce:
0d:85:52:91:15:f0:95:c6:bd:e1:da:53:4c:c3:e0:31:4c:24:
4c:eb:1f:1a:bb:af:56:52:4e:62:ca:22:aa:27:37:2c:41:f0:
b4:29:b7:34:95:43:df:97:73:e0:0e:16:64:e7:80:b4:6d:9a:
0b:39:09:11:91:b8:7d:1d:89:a0:88:23:84:ba:25:1e:f6:2c:
da:89:d1:7c:77:9c:6d:f4:c5:45:71:6f:b2:05:49:c0:bb:4a:
49:f8:4a:e9:25:bc:d8:da:2a:8d:f0:aa:5e:b5:2d:ff:ff:1b:
77:5d:28:57:7c:1c:d8:05:06:ad:7f:16:a1:6e:6d:56:f3:3d:
f6:09:1d:66:58:bf:af:10:76:14:c9:cf:9e:df:79:26:20:1a:
ae:b1:1c:52:ad:5d:ab:52:ca:88:4d:af:4e:27:c9:bb:6b:ec:
ae:99:26:32:96:23:1b:09:a1:bf:d2:65:c4:66:db:f1:06:d2:
08:12:e4:90:2d:c8:26:e4:d3:a4:e9:2e:92:b4:80:ff:75:b2:
07:7a:15:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 14:11:33 2025 by rpki-client