Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/DDBF6C9E60AA11F0A7A5E2F3DAE4EC9C.roa
File: DDBF6C9E60AA11F0A7A5E2F3DAE4EC9C.roa (raw, json)
Hash identifier: QTpIyYb8ulMxyPFiMtKqlV23KGGh4YTD4XQufYpIvnk=
Subject key identifier: 4E:85:7A:E9:86:C0:E1:61:AF:90:FE:23:17:E7:4B:6F:5B:EB:7D:DE
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0C41
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/DDBF6C9E60AA11F0A7A5E2F3DAE4EC9C.roa
Signing time: Mon 14 Jul 2025 12:05:43 +0000
ROA not before: Mon 14 Jul 2025 12:05:39 +0000
ROA not after: Tue 16 Jun 2026 12:05:39 +0000
asID: 397373
IP address blocks: 102.135.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 23 Jul 2025 00:06:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3137 (0xc41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Jul 14 12:05:39 2025 GMT
Not After : Jun 16 12:05:39 2026 GMT
Subject: CN=6874f297-c2b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c1:1c:2e:16:3f:bf:58:b3:ae:76:f8:b5:dd:
be:4c:ee:e6:9a:7f:57:57:76:76:eb:f5:dc:9e:39:
40:0e:70:3a:fa:13:c4:f8:51:9b:3d:80:75:89:7a:
33:e9:78:a0:bf:3a:f4:97:16:0a:38:78:53:8b:c4:
f1:eb:bf:c2:6a:4b:d6:e7:96:0f:53:f9:f3:4f:9b:
89:f9:53:fd:c6:b3:83:56:6e:87:e7:9c:7a:fa:e4:
8c:03:03:12:fb:a7:8b:e7:15:69:3d:10:81:09:dd:
df:5a:7b:60:c3:c5:cc:48:7e:1c:5a:fc:45:67:c3:
10:ee:98:02:27:b2:eb:01:93:a5:df:c1:91:9f:5f:
5c:d9:c8:42:3a:ab:42:b3:9e:73:f4:c5:75:a8:58:
2c:a8:51:b4:a8:27:b4:31:cd:12:95:ee:9f:d2:4c:
6f:0e:ca:d3:4f:f6:12:60:97:61:52:3b:a8:29:b2:
fa:a2:50:e4:a8:ee:0d:7c:fd:6b:62:4e:59:2e:cd:
71:6b:79:22:8c:7b:3f:27:8c:31:4d:41:52:4a:3a:
fe:c5:f5:16:a0:e2:3f:a1:83:01:93:ae:46:77:be:
7f:29:d6:4b:cf:2d:9c:ac:6f:eb:4b:f3:5a:8b:5f:
09:f7:50:50:8a:17:1e:e2:15:21:65:32:a4:f2:40:
54:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:85:7A:E9:86:C0:E1:61:AF:90:FE:23:17:E7:4B:6F:5B:EB:7D:DE
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/DDBF6C9E60AA11F0A7A5E2F3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.107.0/24
Signature Algorithm: sha256WithRSAEncryption
01:14:fd:03:ac:f8:3e:05:fc:4b:fb:5e:7e:bf:e4:ba:7c:68:
96:3c:ab:8a:bc:85:85:79:d4:fa:44:b2:1a:72:e5:5a:dd:5b:
22:3c:86:d5:97:cc:ef:eb:d4:2e:1b:27:5e:06:08:3e:b8:32:
af:d8:33:64:55:d3:a4:52:b0:44:ec:bb:5f:04:43:d4:71:1b:
82:c4:cf:0d:ba:41:8e:6f:76:59:c8:2f:04:17:77:cd:61:cb:
1e:83:a1:d0:6f:fb:77:3b:63:26:89:25:0d:e6:09:6b:a5:8a:
62:69:a1:20:e6:dd:4c:38:db:13:cb:5f:1b:04:c8:ff:1b:7e:
57:4b:81:5f:b4:f1:d5:e3:22:7c:f9:df:8f:fc:23:e2:18:e5:
3d:15:02:bb:86:c0:5e:ab:30:9d:0a:93:ee:95:ca:ae:62:17:
c8:7a:e4:51:ae:c0:d2:b9:5c:87:da:b6:a5:6b:25:99:96:eb:
b8:68:f9:4f:85:13:de:5c:6a:50:99:96:1b:ed:81:96:7b:16:
6b:bf:13:70:03:bf:e8:55:e9:c1:ea:4a:88:73:8a:43:29:1a:
ae:da:a1:24:7d:1a:69:bb:e5:9c:c4:0c:56:14:5e:37:6d:8e:
57:92:3b:60:2c:61:94:f9:0b:9c:1d:de:a7:d1:61:44:58:ff:
de:66:a5:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 07:27:40 2025 by rpki-client