Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/19DCC5CAE87C11EF832321AF762E951A.roa
File: 19DCC5CAE87C11EF832321AF762E951A.roa (raw, json)
Hash identifier: ywWU9ZDaa/e9ZpQExlybwFbPwXU/sPX5q88u/p+uKjY=
Subject key identifier: 20:68:B1:C2:3A:78:3F:81:C7:D9:AB:09:BB:51:AB:88:59:E1:35:54
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 060E
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/19DCC5CAE87C11EF832321AF762E951A.roa
Signing time: Tue 11 Feb 2025 13:28:38 +0000
ROA not before: Tue 11 Feb 2025 13:28:34 +0000
ROA not after: Wed 11 Feb 2026 13:28:34 +0000
asID: 401109
IP address blocks: 196.251.96.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 08 Apr 2025 00:06:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1550 (0x60e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF
Validity
Not Before: Feb 11 13:28:34 2025 GMT
Not After : Feb 11 13:28:34 2026 GMT
Subject: CN=67ab5086-ec4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:25:e8:46:02:a2:f1:06:91:c3:3d:3b:20:f1:
ca:dd:77:7b:a3:5c:ef:54:0f:52:dd:2c:c4:6b:fb:
65:3c:bd:42:1e:d9:f0:b3:00:a8:07:5d:d8:68:bd:
da:f1:db:04:d8:cb:ce:81:bf:2d:a4:43:c5:05:33:
89:8f:69:ff:80:ef:3e:71:58:d7:5c:df:88:6e:8c:
4e:c3:8e:4b:ea:cd:d9:2e:ad:a7:8c:3f:6d:59:1e:
e6:c3:d7:7b:e4:85:45:5a:a9:04:29:1f:fb:1c:be:
fe:55:f7:c8:ee:08:da:3c:a1:7a:53:e2:0c:08:ac:
38:da:06:b7:86:48:e0:ac:15:c0:55:ac:cd:ce:c4:
9e:bf:72:22:6f:41:f5:96:f4:15:b0:2a:af:81:25:
f9:0d:9e:3a:96:93:f7:9f:32:fe:07:5d:fe:96:df:
c0:3f:9f:a2:2f:0c:c0:f8:b8:79:07:17:a4:9c:2b:
f1:20:45:d1:d5:e5:a5:d4:9e:32:a9:0e:49:b0:8f:
a5:90:b0:e5:0a:c8:b5:62:b9:a4:e9:11:84:f3:c6:
c1:70:d1:62:b3:30:50:42:17:97:52:49:65:32:00:
04:24:ed:59:6b:e1:60:70:4d:8d:39:cf:fb:66:57:
9b:8e:84:b5:6c:fd:78:ea:2f:8e:98:88:5a:7c:f9:
47:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:68:B1:C2:3A:78:3F:81:C7:D9:AB:09:BB:51:AB:88:59:E1:35:54
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/19DCC5CAE87C11EF832321AF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.96.0/24
Signature Algorithm: sha256WithRSAEncryption
11:0e:48:a4:29:6e:07:05:40:96:cd:c0:2b:8b:97:e0:6b:7a:
44:7c:c9:55:dc:d5:4a:b9:bc:8a:4c:ba:4a:ba:e6:95:76:ce:
ce:6a:1f:c5:1b:d7:03:21:c5:6a:18:be:19:b1:55:2f:22:fc:
b2:d0:a5:d5:f3:01:5c:24:ef:c9:ef:24:de:76:d0:51:d6:5b:
8f:00:74:a2:6e:71:ed:cb:29:fd:4b:91:23:03:9c:c8:e8:fc:
34:d5:93:37:b8:60:13:aa:6b:24:7d:d1:95:47:2d:0f:b3:14:
33:48:0a:ba:b4:c3:cb:d3:cd:2d:89:8f:42:3b:18:6c:c8:2c:
ce:c7:48:e3:7b:2f:91:b6:b1:55:b6:f9:a2:44:27:de:5b:6b:
6c:5e:17:4b:ac:81:b5:9a:25:1d:05:b8:1a:10:d6:40:d9:99:
a6:90:89:48:da:6b:b4:8a:40:67:31:f9:7b:7b:35:61:47:68:
df:b8:6b:6b:b4:d6:a5:5e:1a:3d:e0:63:bf:a4:50:95:72:05:
90:09:4b:0c:54:cd:b5:c3:0b:89:b9:af:ee:65:28:df:d4:82:
dd:aa:33:43:b9:24:57:be:22:c5:9d:0c:b0:a1:a9:1c:22:2b:
0a:81:ee:b9:59:91:52:aa:c8:7d:50:2a:dc:67:3c:39:0a:79:
dd:3a:89:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:59:59 2025 by rpki-client