Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/99986272498611F0BE1E23EEDAE4EC9C.roa
File: 99986272498611F0BE1E23EEDAE4EC9C.roa (raw, json)
Hash identifier: Z4gQzojiEKX5fZtqwTgoYBRKXPibvfeQJQnSktukfUM=
Subject key identifier: E6:29:50:66:62:1A:D0:19:11:AF:46:2D:5C:26:92:06:CF:C8:F0:D6
Certificate issuer: /CN=F36FE19EAF/serialNumber=C78CDC3B5D4B13675CB48AD3B63BE01EC5A807F8
Certificate serial: 0425
Authority key identifier: C7:8C:DC:3B:5D:4B:13:67:5C:B4:8A:D3:B6:3B:E0:1E:C5:A8:07:F8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/x4zcO11LE2dctIrTtjvgHsWoB_g.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/99986272498611F0BE1E23EEDAE4EC9C.roa
Signing time: Sun 15 Jun 2025 01:18:10 +0000
ROA not before: Sun 15 Jun 2025 01:18:02 +0000
ROA not after: Mon 31 Dec 2035 01:18:02 +0000
asID: 207113
IP address blocks: 2c0f:6300:6f00::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/x4zcO11LE2dctIrTtjvgHsWoB_g.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/x4zcO11LE2dctIrTtjvgHsWoB_g.mft
rsync://rpki.afrinic.net/repository/afrinic/x4zcO11LE2dctIrTtjvgHsWoB_g.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 18 Jun 2025 00:06:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1061 (0x425)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FE19EAF, serialNumber=C78CDC3B5D4B13675CB48AD3B63BE01EC5A807F8
Validity
Not Before: Jun 15 01:18:02 2025 GMT
Not After : Dec 31 01:18:02 2035 GMT
Subject: CN=684e1f52-fe8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5c:45:6f:ea:ee:88:52:48:17:2e:a1:78:85:
8b:ef:dc:c4:b4:07:60:ed:92:d0:c6:d8:dc:e8:3b:
80:ae:5a:8c:45:ec:3d:2c:03:3e:f3:18:bd:87:02:
0b:92:68:a4:09:56:be:ab:eb:5a:c3:1a:21:45:32:
7e:31:8d:c0:bd:07:cc:5c:19:ab:e6:bf:f7:6a:dd:
90:37:81:08:cd:6e:6a:7d:06:f8:dd:3a:64:85:93:
9e:50:5f:ad:ec:51:48:a5:d8:ac:2b:74:b5:7a:9c:
b2:4f:97:8f:db:38:f5:14:33:bc:52:7f:f0:b7:24:
6b:50:9b:50:c4:da:4a:e0:54:c2:7e:11:8a:21:51:
fe:94:a8:5e:48:86:82:73:90:ae:44:fa:46:9f:62:
25:f5:b6:07:68:27:27:ba:fc:f0:bf:82:77:cb:26:
2f:46:28:00:ba:89:0c:ef:b3:e6:47:06:a3:9e:84:
95:08:83:0d:25:be:23:a4:64:75:e4:f2:66:1b:cd:
ba:ed:e8:f8:75:eb:6f:e1:33:52:2c:de:f4:f3:a5:
5a:13:68:07:7d:58:91:57:ce:cb:c5:03:3c:db:4e:
44:8d:1a:8c:9b:fc:60:db:95:8e:f0:9c:32:f7:e6:
41:47:74:a9:4d:74:7f:33:eb:24:6b:79:e3:2d:95:
d4:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:29:50:66:62:1A:D0:19:11:AF:46:2D:5C:26:92:06:CF:C8:F0:D6
X509v3 Authority Key Identifier:
keyid:C7:8C:DC:3B:5D:4B:13:67:5C:B4:8A:D3:B6:3B:E0:1E:C5:A8:07:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/x4zcO11LE2dctIrTtjvgHsWoB_g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/x4zcO11LE2dctIrTtjvgHsWoB_g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/99986272498611F0BE1E23EEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:6300:6f00::/40
Signature Algorithm: sha256WithRSAEncryption
72:b1:8f:d5:76:32:a9:de:36:35:c7:36:c5:96:ef:6e:86:68:
bb:99:c7:a3:1e:b5:70:10:65:76:c4:18:41:6a:b4:46:69:78:
74:5c:ed:88:b3:1c:5d:a6:d6:4d:bc:93:cd:98:1a:65:ad:40:
fc:6e:3e:91:40:5e:68:bb:30:20:31:8c:20:f0:10:3a:90:7c:
aa:17:bf:93:3f:71:1c:29:de:99:90:f2:3a:ec:71:a5:d1:3f:
26:68:a2:3e:44:99:a9:b7:0b:91:9c:93:82:d5:dd:b8:06:cf:
06:d6:6c:ad:e0:a6:c7:fd:92:cc:02:08:e7:21:c5:fb:7b:a6:
b4:ce:21:42:2c:e8:e7:96:50:34:9a:05:bc:7e:68:e9:a1:c6:
b9:5c:bb:3d:37:fb:62:94:ba:e8:5f:86:60:2f:87:51:ed:b6:
b7:76:03:8a:45:0f:29:cf:de:9a:d3:72:df:3e:61:17:24:41:
6d:e0:81:cb:21:1f:65:e7:87:6c:d6:80:83:f7:6d:32:02:58:
16:c0:8a:2d:3c:a9:d9:8d:2f:83:8e:22:a0:02:21:d8:3f:1a:
fc:e1:8d:03:60:9a:4f:65:91:dc:1d:3b:0a:21:2a:f2:49:5b:
40:26:40:a0:4a:73:7f:27:a6:f6:61:34:3a:2f:02:25:f9:a4:
a6:e0:d3:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 13:13:10 2025 by rpki-client