Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/69056E52661911F0BD1258E4DAE4EC9C.roa
File: 69056E52661911F0BD1258E4DAE4EC9C.roa (raw, json)
Hash identifier: WCh+TjdiNMt559CBIVagOJ8yCIPUyWnrpF4uJ7E9Nko=
Subject key identifier: 6A:04:53:13:63:EF:B0:00:AB:89:3D:6C:D4:7D:0F:C0:C1:1A:82:84
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0C86
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/69056E52661911F0BD1258E4DAE4EC9C.roa
Signing time: Mon 21 Jul 2025 09:59:37 +0000
ROA not before: Mon 21 Jul 2025 09:59:32 +0000
ROA not after: Sat 04 Jul 2026 09:59:32 +0000
asID: 398704
IP address blocks: 196.251.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Jul 2025 08:45:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3206 (0xc86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Jul 21 09:59:32 2025 GMT
Not After : Jul 4 09:59:32 2026 GMT
Subject: CN=687e0f89-0251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:d2:7a:14:85:48:85:4a:27:f1:f6:b3:58:56:
de:22:35:f2:6f:1b:1b:65:c2:84:fb:07:ca:1b:0c:
5f:77:b7:eb:a3:03:86:cc:50:95:7e:94:81:b3:23:
56:7a:88:1a:1f:ba:33:58:d5:8a:a1:2b:ec:2b:18:
1c:9a:d0:cc:06:b2:c5:ef:59:f6:ad:73:dc:7b:bf:
c7:69:cf:af:09:5d:62:d6:48:71:14:3f:a2:8b:20:
08:61:e2:70:fe:31:5d:39:41:aa:b7:ca:3c:5d:36:
ba:a8:30:88:d2:77:fd:81:b1:25:0f:89:d0:47:e9:
02:f1:6c:fe:0c:71:26:83:58:33:4f:02:06:53:24:
6d:52:39:d7:1b:c3:c6:86:16:8f:ef:84:95:37:ab:
1b:b5:0d:43:e2:96:b5:0f:7f:6d:bf:2e:e3:5c:9c:
af:07:73:f4:f8:0c:e7:72:4f:06:b7:26:49:16:db:
ec:ea:de:6c:cf:00:4a:13:85:45:ad:3d:97:49:96:
71:6b:f8:60:67:59:e5:33:25:b6:c5:3f:c1:bd:f1:
b5:d2:29:48:b4:20:51:8a:c0:d3:6f:f9:50:6c:88:
f5:c3:4b:85:07:99:36:d9:d9:5a:95:24:79:e0:b3:
65:d6:6c:64:3b:f6:ef:74:6f:93:0a:63:8b:67:82:
5c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:04:53:13:63:EF:B0:00:AB:89:3D:6C:D4:7D:0F:C0:C1:1A:82:84
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/69056E52661911F0BD1258E4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.76.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:46:3e:8d:6b:a0:a0:78:16:5d:b1:82:25:73:7a:9b:7c:be:
af:f4:bf:28:f5:4a:4e:0a:2f:50:29:9a:18:73:fd:89:d1:b8:
30:73:5d:c5:03:90:60:d3:3b:55:5a:8a:b7:e2:64:50:c0:ee:
d1:66:64:96:a9:23:51:88:6e:4b:7d:5c:c4:0e:2d:c4:ec:41:
f2:a0:94:82:af:79:c5:36:82:b3:46:2b:f1:58:30:88:56:61:
f6:18:56:99:9a:ac:48:10:d8:fb:1c:0f:41:d8:4a:e0:6e:6d:
0b:f1:82:b7:de:35:f5:5d:cc:13:83:bb:10:17:27:73:f3:0e:
94:9c:b2:06:7d:67:7e:ea:7f:3e:d4:c4:05:42:9d:31:80:1b:
ee:1e:79:e9:b9:a9:ab:0f:50:a7:eb:c7:fe:09:ba:b2:ee:5b:
15:bd:0a:a5:0f:6c:2c:e2:db:fb:b6:05:ce:56:26:2a:91:80:
3a:2a:c2:8b:b4:95:36:b2:8f:bb:24:d2:a0:59:0a:4e:a0:ad:
ad:fa:6a:b3:de:8c:74:34:19:d5:b7:f0:21:ba:91:2c:aa:1d:
00:d1:a3:95:16:37:24:f0:16:91:e5:69:2b:5b:06:8a:14:f8:
7d:ef:17:4b:96:05:e2:27:34:2a:8c:52:71:d2:89:e5:1e:13:
18:3e:12:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 00:55:15 2025 by rpki-client