Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/53BFB6B660AA11F099E8D1EFDAE4EC9C.roa
File: 53BFB6B660AA11F099E8D1EFDAE4EC9C.roa (raw, json)
Hash identifier: bHA6XTb/DXP6tDuWtn2xv01rdRZVqYnwvWCSrX5Pt0I=
Subject key identifier: 42:DD:54:23:B4:43:3C:2A:30:A5:C0:31:96:E5:88:0B:07:26:22:EC
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0C37
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/53BFB6B660AA11F099E8D1EFDAE4EC9C.roa
Signing time: Mon 14 Jul 2025 12:01:52 +0000
ROA not before: Mon 14 Jul 2025 12:01:47 +0000
ROA not after: Tue 16 Jun 2026 12:01:47 +0000
asID: 397373
IP address blocks: 102.135.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 23 Jul 2025 00:06:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3127 (0xc37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Jul 14 12:01:47 2025 GMT
Not After : Jun 16 12:01:47 2026 GMT
Subject: CN=6874f1b0-9820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c0:76:f1:ac:fd:97:f2:bb:ca:02:5d:58:16:
7c:61:a2:22:8d:73:30:d0:0e:c4:00:83:fd:ee:b8:
5d:a3:87:0b:7c:1a:29:17:cb:6a:78:e9:86:4c:3f:
b6:5c:34:88:c2:47:fe:66:68:96:6b:01:b2:a4:c6:
97:f3:36:18:83:50:cb:3e:d2:ea:6f:d0:15:bb:66:
03:a8:a8:a5:73:b2:7a:2a:91:0a:f3:44:a4:16:2c:
5c:88:58:52:4a:2c:69:ed:2a:f9:a2:04:c0:08:7e:
47:21:44:92:44:0b:bf:d0:ba:66:d8:64:ec:36:ee:
ca:c6:24:58:70:b6:71:f9:e5:22:7c:b8:08:75:be:
cf:24:e3:5a:09:31:22:78:32:60:f4:af:cc:76:65:
45:d0:b5:26:a9:20:70:4d:39:dc:98:3e:e3:a8:10:
52:ca:33:bf:b3:8d:3f:17:33:ac:7c:b0:99:31:a1:
97:37:18:9c:ca:64:41:91:5c:81:d3:b3:ab:e9:11:
3f:d2:61:53:93:80:b6:58:83:a1:28:65:81:79:63:
68:cd:79:03:ee:87:e6:5d:44:c9:c4:b7:1a:d2:42:
37:d1:b5:c7:84:ce:92:0c:23:ad:ae:9b:82:32:fb:
cd:76:86:c7:1b:ee:6a:4e:cf:07:af:f9:10:e0:0e:
70:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:DD:54:23:B4:43:3C:2A:30:A5:C0:31:96:E5:88:0B:07:26:22:EC
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/53BFB6B660AA11F099E8D1EFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.101.0/24
Signature Algorithm: sha256WithRSAEncryption
88:3f:6d:f1:7b:c1:fe:2f:1d:3d:9b:9e:c4:d2:46:85:55:bf:
d4:0c:b6:7f:29:69:4b:4a:fa:3e:76:59:62:89:f5:d2:86:4a:
8d:7a:2c:b0:06:71:a9:67:82:7b:e8:32:66:cb:87:2c:72:3d:
58:18:b6:07:b7:17:f1:a9:47:64:49:92:75:76:da:65:da:0b:
48:c5:a8:2e:bd:c4:9c:b4:a5:da:24:8f:58:92:fb:49:fd:a7:
b6:f2:d7:16:3a:72:e9:bc:dc:32:bd:8b:f0:40:ec:c3:cb:81:
b3:f7:4f:17:75:ae:96:7b:ab:ab:56:42:1c:8b:ee:f9:f4:83:
2d:cd:4b:36:55:63:96:45:de:cf:7b:f2:a1:fd:13:50:ba:9b:
e3:aa:76:1b:97:2a:69:de:e7:b7:a6:0f:69:a1:36:e8:60:67:
89:34:c1:e5:36:d2:0b:02:39:b1:7a:90:b4:fd:8b:b2:a8:65:
71:14:16:21:1f:49:2e:c4:d5:46:7f:6e:b9:53:52:a4:a2:74:
d1:84:1a:95:78:55:04:84:6e:55:7b:21:70:51:c7:50:b0:01:
1b:6d:3c:2f:4a:45:0f:50:55:97:10:97:96:9a:98:18:9c:b9:
1b:05:da:91:fd:fa:c7:c1:d6:02:06:65:b3:80:92:6e:ab:e0:
5e:3b:14:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 07:25:58 2025 by rpki-client