Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/158D9BDE0C3511F085286E5A762E951A.roa
File: 158D9BDE0C3511F085286E5A762E951A.roa (raw, json)
Hash identifier: 2jftxIlMYY39aNScKmEo8Ij+CQEtQ0nbIGNIhb14/ek=
Subject key identifier: E0:3B:0F:3A:26:1F:E8:A9:FD:F8:56:E4:F2:7E:55:B3:B1:D7:43:24
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 08A6
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/158D9BDE0C3511F085286E5A762E951A.roa
Signing time: Sat 29 Mar 2025 00:30:58 +0000
ROA not before: Sat 29 Mar 2025 00:00:53 +0000
ROA not after: Thu 01 Jan 2026 00:00:53 +0000
asID: 36352
IP address blocks: 102.135.108.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2214 (0x8a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF
Validity
Not Before: Mar 29 00:00:53 2025 GMT
Not After : Jan 1 00:00:53 2026 GMT
Subject: CN=67e73f42-b8e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3d:f6:d3:77:9d:49:45:96:89:e8:de:a3:34:
68:40:9a:35:e0:04:3d:bc:9f:f8:11:77:48:a1:05:
8d:56:05:5b:b5:27:6d:60:d6:8a:8c:fe:89:4d:9a:
a9:73:9c:a9:5e:4e:e1:06:6b:07:e3:d1:6f:67:3a:
4e:71:31:0f:80:e1:f3:c9:b2:33:8e:3f:1f:b0:4f:
8c:0c:5e:e9:a0:5b:b3:48:4d:c3:29:27:95:c6:42:
d0:75:c8:d4:ab:00:10:76:94:08:ba:83:8a:a2:c5:
90:68:19:03:f2:c3:4c:a9:0b:86:fb:d7:61:11:8d:
a2:92:4d:7a:ed:f0:59:5c:78:ad:a3:dc:dc:ad:ad:
ee:14:e4:0e:1c:99:62:6a:99:82:42:4e:d0:0b:26:
6e:73:71:89:3e:2b:e0:2d:ca:9b:f2:62:b3:ed:bb:
7e:36:04:60:2d:98:11:3a:53:5e:02:5e:9d:65:3e:
73:bb:d0:35:b9:b1:39:a1:9c:c0:3f:27:7a:01:72:
fe:5b:79:a3:64:60:b6:cc:f8:2b:83:7b:54:d7:a1:
7f:01:aa:d4:5c:93:fe:c2:ca:4a:7a:59:d7:50:ad:
70:20:e3:58:1e:2c:71:14:ee:2f:85:30:4c:ae:7a:
9c:44:0c:bf:2c:9b:89:66:f1:a2:a7:ce:74:fb:67:
e9:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:3B:0F:3A:26:1F:E8:A9:FD:F8:56:E4:F2:7E:55:B3:B1:D7:43:24
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/158D9BDE0C3511F085286E5A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.108.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:80:87:28:25:da:8f:36:0d:3a:31:bd:41:1d:fe:7b:aa:b3:
41:ae:7e:62:11:eb:75:75:71:c4:a0:f6:74:7b:b1:9f:5d:f9:
ca:d9:49:f4:00:ec:53:6d:19:bf:db:e2:a0:62:52:bb:dc:54:
72:bf:8a:31:72:49:c9:fd:c3:65:52:83:b7:d6:98:0c:92:c2:
88:48:63:17:ff:c1:70:00:92:8f:ea:6c:52:9c:2a:6f:44:41:
d2:c2:47:cb:10:56:62:cf:ca:43:f8:39:f2:03:22:5d:ad:a7:
03:ca:b8:10:c4:bc:7b:9b:5b:e4:f4:5a:be:63:f9:b7:0b:d5:
7e:a0:97:a3:90:42:77:60:73:e7:1d:14:bf:e3:51:70:69:cc:
18:a4:c0:01:7d:7b:ca:52:4e:a7:a9:3e:ba:a6:cd:cd:c6:95:
ed:82:57:48:c2:8e:1f:d1:a7:4a:4a:1c:6d:cd:b7:58:46:37:
00:37:a9:69:55:39:cb:96:92:1b:7d:72:aa:ac:65:45:9b:46:
31:34:29:c5:4c:74:11:2e:0f:2e:cb:91:ca:4f:42:69:14:71:
10:17:63:cf:34:21:6c:22:7d:36:87:0f:5c:26:6f:35:ca:8b:
eb:95:af:5a:aa:5f:9d:9e:2f:c0:ec:3c:5e:d5:42:27:55:04:
f8:15:79:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:19:05 2025 by rpki-client