Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/33F9747E60AB11F0A4D979F4DAE4EC9C.roa
File: 33F9747E60AB11F0A4D979F4DAE4EC9C.roa (raw, json)
Hash identifier: jALzAdzPYWVSuwGtC/V77ALkAUTCRy7qqBeVq0jV0/o=
Subject key identifier: 3A:79:D0:FF:30:9A:7E:E1:F2:36:50:AA:76:34:86:7D:58:9E:A0:35
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0C47
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/33F9747E60AB11F0A4D979F4DAE4EC9C.roa
Signing time: Mon 14 Jul 2025 12:08:08 +0000
ROA not before: Mon 14 Jul 2025 12:08:02 +0000
ROA not after: Tue 16 Jun 2026 12:08:02 +0000
asID: 397373
IP address blocks: 102.135.110.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 23 Jul 2025 00:06:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3143 (0xc47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Jul 14 12:08:02 2025 GMT
Not After : Jun 16 12:08:02 2026 GMT
Subject: CN=6874f328-1e5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b7:2f:c7:76:63:8f:9e:75:bb:e4:b3:9b:0e:
58:62:38:f0:1d:f0:b6:55:26:6c:77:cb:1e:d8:77:
7f:77:ba:9c:a5:3c:26:39:eb:22:5d:cb:89:6b:47:
a2:2c:89:b8:04:f6:3f:85:2e:81:b0:12:4d:8b:d7:
c2:0d:ff:32:7c:5c:c4:ec:ac:e2:e7:51:b4:30:27:
43:6f:74:01:cb:9a:28:59:eb:60:4e:a4:b1:eb:1f:
50:1d:9b:83:95:31:47:a6:b3:7d:a3:75:13:cb:4b:
66:23:24:a4:08:69:d3:24:4c:0a:9d:c1:6a:c8:fc:
85:29:c9:4d:83:32:ab:2e:21:e5:b9:5d:bf:ea:aa:
11:37:55:53:7c:2f:39:47:dc:e4:e6:6c:bd:e1:01:
3a:b5:68:ee:93:4f:b6:ee:a1:1f:d9:84:b2:c3:b8:
94:d7:71:77:37:0d:6b:99:9f:9c:11:9c:63:67:68:
ca:c9:1d:15:0d:35:22:03:62:95:06:6f:53:68:74:
16:23:e7:ca:de:8c:1e:60:a2:5a:21:e0:3b:97:3e:
47:e0:83:92:52:65:62:56:92:49:aa:58:3b:e9:94:
3b:23:1a:e9:24:d2:f7:9c:60:c8:fa:3d:43:dd:8b:
54:bd:7f:41:97:8e:c1:b7:20:84:c8:8c:1d:67:6f:
15:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:79:D0:FF:30:9A:7E:E1:F2:36:50:AA:76:34:86:7D:58:9E:A0:35
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/33F9747E60AB11F0A4D979F4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.110.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:e1:4a:74:5f:e6:48:5a:15:1f:66:07:f3:3f:78:1d:7c:5c:
a6:54:c7:8c:1a:24:8e:61:cd:15:56:a9:a7:23:ce:bf:9d:df:
af:01:d5:d1:de:52:7a:33:19:11:47:24:a3:af:2f:41:8b:32:
4b:47:c4:0e:b0:e1:e7:0e:d9:43:c2:73:c9:39:ed:21:26:f3:
8c:b6:7b:f6:d2:ca:c2:0d:8b:63:e7:7e:9d:ea:d2:91:a1:a5:
8b:73:63:ad:e1:0e:ec:55:6e:14:25:f3:94:1f:af:a2:2b:1f:
55:54:59:ab:26:e5:78:10:93:ba:76:80:51:1d:f3:1e:57:c3:
21:70:30:f2:fa:f3:9c:24:89:10:c5:b6:55:e2:20:59:c7:b8:
3c:8c:37:c2:72:16:1f:48:e9:13:55:ad:13:27:0b:0c:72:90:
de:ac:24:b3:ac:6a:e9:89:d0:93:0c:bb:ac:2c:76:37:1a:a1:
d0:1d:da:5c:fa:16:1c:32:78:c9:7a:21:3a:4e:e9:17:21:01:
a9:1b:23:f0:d7:1d:07:a3:29:c4:fc:3c:73:d9:04:65:ec:e6:
45:80:b4:18:99:5d:66:cc:cc:02:40:06:41:ff:e9:8e:32:bb:
bb:c6:d6:9f:00:49:94:af:95:88:64:56:60:81:0b:43:f8:06:
c0:6c:a9:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 07:27:43 2025 by rpki-client