Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/209E822E0B9311F085ECF668762E951A.roa
File: 209E822E0B9311F085ECF668762E951A.roa (raw, json)
Hash identifier: T2Z87VkuuEl1gqJKcKAh8N6i8nmWrcqml6PzALvROCw=
Subject key identifier: D5:47:F7:3D:2A:93:E4:EF:1C:20:BD:41:4F:8E:B4:F5:31:2A:09:BA
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 089E
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/209E822E0B9311F085ECF668762E951A.roa
Signing time: Fri 28 Mar 2025 05:11:38 +0000
ROA not before: Fri 28 Mar 2025 05:11:34 +0000
ROA not after: Tue 10 Feb 2026 05:11:34 +0000
asID: 137897
IP address blocks: 102.135.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2206 (0x89e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF
Validity
Not Before: Mar 28 05:11:34 2025 GMT
Not After : Feb 10 05:11:34 2026 GMT
Subject: CN=67e62f8a-bf0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:c5:11:bb:7d:8d:c5:d8:54:61:72:70:fc:41:
78:69:e0:66:b4:6f:37:43:21:30:67:b9:0d:b5:1a:
20:88:a3:a1:11:79:0b:ab:9a:59:bc:af:76:a8:fe:
68:b7:7d:c5:6b:ba:da:e7:aa:75:36:0b:f0:82:06:
55:5f:a7:fb:55:9a:d3:19:f2:f0:38:62:51:7f:2e:
ba:a5:4c:ac:c5:de:e1:a7:da:94:6d:6d:de:e4:13:
41:c8:ec:2c:4b:22:4f:b4:a3:db:14:6c:65:5a:f4:
71:70:3b:80:f3:f9:d0:9b:8d:04:12:59:9c:e2:3a:
27:a2:92:39:cf:27:74:77:51:44:0d:33:41:cd:9b:
20:81:5a:69:51:01:5f:d4:45:ed:3d:af:26:b6:62:
92:40:88:9d:fc:55:0a:d2:fa:6e:2e:f6:46:1b:fa:
77:bd:4f:51:84:a0:ca:be:85:81:70:2e:b8:32:c5:
5e:a9:69:95:13:2a:46:a5:9d:42:ee:b5:ac:64:c5:
5a:8f:59:b3:b8:15:b7:d8:bb:cd:98:1e:a2:20:e1:
b6:9c:2f:a5:37:80:51:8f:03:14:5b:34:66:9c:80:
8e:d4:0f:cb:9b:66:e9:07:1e:eb:c3:fa:c2:c0:79:
c1:35:d0:11:eb:01:b2:ed:a3:9f:b0:6c:6c:3d:e5:
76:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:47:F7:3D:2A:93:E4:EF:1C:20:BD:41:4F:8E:B4:F5:31:2A:09:BA
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/209E822E0B9311F085ECF668762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.24.0/24
Signature Algorithm: sha256WithRSAEncryption
59:62:a4:fe:96:76:d8:04:6c:f5:ae:a7:fd:d7:02:52:62:e2:
6d:0f:3e:2d:d4:cc:06:77:be:d6:ab:9a:ce:6e:48:fb:df:c5:
91:c8:ed:ca:87:fc:45:9c:9f:6d:2f:7b:7c:56:89:27:85:9d:
12:ef:4c:85:2e:7d:d9:d4:22:7c:55:56:2d:02:12:3f:b9:82:
00:5e:12:38:46:54:ff:99:64:51:74:50:6f:5a:c1:d0:7b:e5:
83:bc:fb:ea:21:26:a6:7a:f0:e4:bc:4c:ca:78:6b:f1:48:eb:
8d:0f:56:31:24:03:e3:87:11:61:6f:6d:a0:4d:2d:f7:0d:7c:
1e:f9:ef:39:83:b5:a5:03:12:ac:c1:76:26:e4:14:e3:e1:3c:
e2:64:86:8f:0e:60:21:41:03:cf:8d:bb:20:93:a2:9b:8b:f3:
94:10:ae:4f:39:59:39:44:85:aa:67:c7:5c:a8:22:a6:6f:11:
0a:a2:32:50:4c:92:06:f1:c1:d2:42:e3:03:5d:dd:fa:f8:3d:
71:b5:30:0b:dd:03:d7:06:83:41:b0:41:07:89:ea:f8:52:49:
fe:0a:96:62:b4:ed:a9:1c:4e:2c:2b:09:04:7f:e5:6d:93:b6:
ad:19:d9:4d:8f:7a:e7:f4:71:9b:ed:fc:92:1c:64:6c:ab:7c:
87:91:8b:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:06:12 2025 by rpki-client