Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/11FD9C16093911F0944FBC96762E951A.roa
File: 11FD9C16093911F0944FBC96762E951A.roa (raw, json)
Hash identifier: on9LUJD57Xr2JUm1u6DpuCGFJIkSswqFqe0ctFqW9Xc=
Subject key identifier: 40:58:8F:15:91:F1:DD:C0:A6:5E:D8:F6:09:74:57:FE:F8:7F:32:BA
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0803
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/11FD9C16093911F0944FBC96762E951A.roa
Signing time: Tue 25 Mar 2025 05:21:57 +0000
ROA not before: Tue 25 Mar 2025 05:21:53 +0000
ROA not after: Tue 13 Jan 2026 05:21:53 +0000
asID: 5065
IP address blocks: 102.135.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2051 (0x803)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF
Validity
Not Before: Mar 25 05:21:53 2025 GMT
Not After : Jan 13 05:21:53 2026 GMT
Subject: CN=67e23d75-0d47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ac:9f:24:82:4e:5d:e0:d0:65:b1:38:c9:95:
90:c6:db:d9:d8:32:ce:95:dd:a8:0d:1e:45:62:0b:
56:9e:c7:e6:77:59:69:d7:3d:ba:25:06:e4:ec:4c:
e1:d7:71:d5:90:cf:59:0d:bb:33:19:44:93:70:e6:
91:ff:ae:bb:47:0e:9f:48:e3:bf:7a:09:7c:18:80:
a0:90:e4:c7:ec:cc:7e:cd:3d:4f:6a:b1:21:ac:e3:
11:f0:33:ec:5f:25:0e:3f:6d:b7:d9:04:fb:43:d0:
d4:b2:47:59:f9:79:14:42:79:44:fa:42:b1:7b:69:
ba:aa:cf:27:48:c0:da:77:68:7c:f9:1e:ea:a4:4d:
50:1b:4d:d3:de:c9:2b:bb:c9:80:5c:ba:d9:f2:8d:
5f:3b:0b:40:d5:82:02:81:8d:cf:5b:37:60:9a:7c:
8d:8e:a7:4a:7c:b7:5c:b2:5c:6f:0b:9c:0d:a2:88:
1c:52:ec:6e:58:24:2f:4b:c3:c1:95:30:be:57:32:
d9:95:01:8a:24:90:2e:a4:fa:77:59:5b:c1:da:a2:
64:f4:5a:39:ca:4d:3e:d1:29:7e:9c:ab:7a:a5:d6:
32:07:36:26:1e:87:ff:24:7d:91:cd:09:4c:cb:02:
3a:75:51:96:95:b0:79:a7:22:62:e3:ad:f9:94:37:
05:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:58:8F:15:91:F1:DD:C0:A6:5E:D8:F6:09:74:57:FE:F8:7F:32:BA
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/11FD9C16093911F0944FBC96762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.22.0/24
Signature Algorithm: sha256WithRSAEncryption
be:84:58:94:f8:f7:da:f8:1b:de:02:84:79:01:9d:42:2d:57:
c5:d5:dd:83:11:b3:7a:8d:33:5b:37:03:4b:cd:fa:8e:f3:c4:
15:96:cd:51:fc:b1:02:b9:aa:ba:da:6c:2b:2a:37:5a:15:0e:
81:9d:2c:56:6f:42:12:f3:f4:87:11:40:e9:6b:4c:63:f3:bd:
28:1a:85:ee:3b:41:5b:ea:a3:6f:bf:1a:ad:4c:82:b9:f0:e8:
c9:68:69:5e:13:db:e5:34:95:0e:fe:6a:86:27:9f:77:9a:63:
87:97:bd:83:f2:e7:2e:fc:d2:a0:e7:69:f5:ca:ae:48:a1:b5:
cb:13:ca:50:ee:fb:52:06:15:b2:95:a7:83:2c:d0:09:d0:eb:
44:77:a9:ea:c2:75:43:64:f7:03:7e:02:b3:7b:b7:f4:6f:e3:
72:f4:73:ca:d8:c1:81:c6:60:e2:66:4b:d4:c1:df:ee:9a:23:
02:6e:16:10:9a:4d:86:d1:05:72:ba:ae:fe:5a:22:0b:bf:01:
3a:c0:ab:2d:dd:51:45:39:85:4e:4f:c9:b8:bb:9d:e1:39:50:
0e:78:9f:5f:00:d9:cf:6d:54:21:5a:4e:85:5d:55:96:6f:df:
f3:a2:85:1a:1a:ce:ad:05:11:f9:6b:fa:ba:b5:90:7a:33:32:
a4:7a:e4:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:39:24 2025 by rpki-client