Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/226E4C7E6F7011F0B3F1A4B8DAE4EC9C.roa
File: 226E4C7E6F7011F0B3F1A4B8DAE4EC9C.roa (raw, json)
Hash identifier: 9codvwYd9Br52IJrts3hHS83FnqqAlQAiRm1pH0EcUQ=
Subject key identifier: 7E:64:78:28:B8:C4:6B:D8:DD:B0:C0:17:CE:64:1A:BF:92:0F:CD:E4
Certificate issuer: /CN=F36F0628AF/serialNumber=8605D7599A0402F70EC2F258D6C16BD2E4E8D1FE
Certificate serial: 0662
Authority key identifier: 86:05:D7:59:9A:04:02:F7:0E:C2:F2:58:D6:C1:6B:D2:E4:E8:D1:FE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hgXXWZoEAvcOwvJY1sFr0uTo0f4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/226E4C7E6F7011F0B3F1A4B8DAE4EC9C.roa
Signing time: Sat 02 Aug 2025 07:13:06 +0000
ROA not before: Sat 02 Aug 2025 07:12:58 +0000
ROA not after: Mon 02 Feb 2026 07:12:58 +0000
asID: 4637
IP address blocks: 196.44.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/hgXXWZoEAvcOwvJY1sFr0uTo0f4.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/hgXXWZoEAvcOwvJY1sFr0uTo0f4.mft
rsync://rpki.afrinic.net/repository/afrinic/hgXXWZoEAvcOwvJY1sFr0uTo0f4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 06 Aug 2025 00:07:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1634 (0x662)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F0628AF, serialNumber=8605D7599A0402F70EC2F258D6C16BD2E4E8D1FE
Validity
Not Before: Aug 2 07:12:58 2025 GMT
Not After : Feb 2 07:12:58 2026 GMT
Subject: CN=688dba82-32f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c2:fc:20:76:5c:9c:3f:19:6d:98:bd:b7:0a:
84:3e:8e:5e:9e:39:94:94:ce:a1:e4:1f:11:5f:5e:
d3:2c:06:85:b6:71:cc:63:cf:2b:36:97:56:89:48:
b0:e9:85:b9:56:8f:7c:07:b3:90:57:7b:88:44:7d:
ec:32:02:a3:05:c8:f6:fb:59:10:2a:b3:6e:04:92:
04:2e:08:1a:cb:79:4f:a9:02:7b:51:c6:c0:a4:f1:
37:84:0f:e2:22:64:37:37:b1:d6:c0:29:04:0c:a7:
33:1d:83:d4:9d:7d:21:aa:33:01:b4:d0:b1:ef:99:
a1:fe:6b:10:22:81:2b:87:bd:a0:72:b6:94:57:d1:
7c:31:71:e8:9c:b6:d0:60:1e:a0:58:32:cd:b5:3b:
a6:9d:d2:70:cc:8a:87:3a:37:e6:61:5a:1f:23:02:
2a:46:a8:e8:9a:3a:0f:6d:be:63:64:b3:39:9f:93:
e3:3e:cb:06:cd:e1:1e:f6:8c:74:00:9b:89:cf:ec:
08:5a:9f:49:38:c2:93:a9:23:ec:9d:93:b3:0b:43:
f1:e0:f4:a3:c9:bb:03:c8:a1:e1:cd:ef:1a:7b:77:
47:fa:d2:1d:6a:5f:8f:52:b1:7e:10:5d:ec:fd:ba:
c5:77:43:ea:6f:3c:db:ff:2a:8a:5e:a3:13:0a:45:
85:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:64:78:28:B8:C4:6B:D8:DD:B0:C0:17:CE:64:1A:BF:92:0F:CD:E4
X509v3 Authority Key Identifier:
keyid:86:05:D7:59:9A:04:02:F7:0E:C2:F2:58:D6:C1:6B:D2:E4:E8:D1:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/hgXXWZoEAvcOwvJY1sFr0uTo0f4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hgXXWZoEAvcOwvJY1sFr0uTo0f4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/226E4C7E6F7011F0B3F1A4B8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.44.117.0/24
Signature Algorithm: sha256WithRSAEncryption
90:70:8d:65:c5:3d:bd:3f:ab:9f:84:1a:90:cd:d9:04:ef:a2:
3d:51:9f:6c:85:2b:ef:6c:de:83:59:e4:d6:cb:b0:cd:27:39:
90:2d:cf:51:80:22:91:63:53:67:70:2c:c4:a5:7e:53:23:e2:
25:0a:ad:06:ac:d5:60:1c:50:4c:09:80:45:7c:ab:fb:1d:c6:
65:7f:4c:c8:c0:1b:51:64:da:0d:12:b4:19:84:42:dd:1d:6e:
54:f1:23:d4:98:e2:cf:66:48:51:cb:80:ab:39:bc:5b:f0:b9:
3f:59:fa:3c:8e:9b:b8:01:4c:df:0b:50:46:d9:b6:02:c6:1c:
3c:c0:e4:c8:52:23:c1:80:6c:96:2a:81:e8:7e:e2:31:fc:67:
84:00:99:f5:1a:fc:e6:85:eb:4d:85:e6:bf:ee:db:01:be:12:
7a:65:f1:a3:13:31:13:f0:74:c4:bd:a7:f4:f7:68:94:9f:79:
1a:a6:90:1e:90:03:43:57:4f:ea:7a:5a:63:c2:60:c7:f9:e7:
5e:15:26:ad:67:4a:7e:29:83:20:5c:e3:e9:d0:70:25:67:47:
d7:2f:00:78:74:b7:13:56:f7:79:8b:ad:33:74:10:09:02:3c:
0d:c0:5c:35:d1:87:16:65:14:f1:12:f5:a4:ae:e4:9c:a4:cc:
98:66:29:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 16:03:08 2025 by rpki-client