Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/2242E59A08A311F0809D5F7D762E951A.roa
File: 2242E59A08A311F0809D5F7D762E951A.roa (raw, json)
Hash identifier: oLJWFNCCDzeUsmjniGGi8PsHy/yZsCtJYG3T54IX4ok=
Subject key identifier: 9B:06:DE:F3:FF:13:CE:B8:39:51:0C:EC:6A:6E:B8:D6:88:8C:BF:CB
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 07EC
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/2242E59A08A311F0809D5F7D762E951A.roa
Signing time: Mon 24 Mar 2025 11:28:40 +0000
ROA not before: Mon 24 Mar 2025 11:28:34 +0000
ROA not after: Tue 24 Mar 2026 11:28:34 +0000
asID: 2914
IP address blocks: 196.251.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2028 (0x7ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF
Validity
Not Before: Mar 24 11:28:34 2025 GMT
Not After : Mar 24 11:28:34 2026 GMT
Subject: CN=67e141e8-31c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:cd:f4:a1:6e:29:df:b0:fe:e3:32:70:65:67:
99:d3:7a:23:bc:c1:41:88:79:c2:86:ae:c1:2a:d7:
38:22:27:21:29:73:d2:e0:e1:50:85:93:b4:6b:44:
a3:0a:c3:f7:c0:55:cb:58:ec:bd:fd:f1:da:61:47:
01:d7:66:0e:c3:f8:3f:a4:83:cf:65:ea:f0:59:bc:
4b:96:cd:e7:98:10:1b:25:2c:b9:96:a7:f0:bc:38:
7b:3c:c7:c3:18:cb:e2:e4:31:8c:ae:8b:7e:ff:2d:
e8:42:2d:b0:c0:a0:f8:c6:65:8a:bd:f1:f8:f7:ee:
fe:95:4c:7a:fa:cf:ad:f9:46:78:66:41:db:8d:a4:
85:ac:54:e7:78:01:ef:e6:ca:1b:d6:e4:92:9d:98:
fe:27:ef:df:11:52:73:40:88:5f:43:ba:91:e3:df:
5c:12:cb:a5:8d:c6:97:9d:21:ba:57:9e:93:dd:c4:
41:79:cf:27:64:41:b1:bb:60:1f:7e:ee:b0:74:82:
c5:15:13:cc:65:a3:6d:9e:0f:ec:a1:83:2f:08:58:
7a:a2:40:85:7d:68:68:6d:6c:35:aa:e1:cc:b0:d7:
4f:a6:da:c6:01:3c:cc:2c:72:17:bf:d4:76:41:0f:
ec:cb:41:9c:ab:10:0d:81:5e:10:3d:e1:87:d7:c5:
52:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:06:DE:F3:FF:13:CE:B8:39:51:0C:EC:6A:6E:B8:D6:88:8C:BF:CB
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/2242E59A08A311F0809D5F7D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.76.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:a5:23:28:e9:92:fa:1d:bf:72:f8:35:e6:61:ad:8b:dc:76:
b4:7d:de:df:36:0a:2b:4f:4d:4b:3e:80:b8:e0:5d:ce:c1:05:
6b:b7:aa:4d:c5:12:e3:f5:6d:21:fb:7c:27:d9:4c:84:48:25:
25:21:00:02:71:eb:61:f3:c4:a0:c2:e4:7e:5f:27:a8:5c:b5:
5f:7d:0a:ac:46:8c:2c:c9:07:17:c4:ea:f1:d1:b6:dc:71:94:
68:bb:4b:35:bc:0a:79:f8:ef:bc:7b:dd:04:0f:27:93:bb:9e:
6d:47:25:5a:83:2d:56:72:3f:0f:39:b9:b6:14:cf:b3:f9:f2:
b1:06:84:2d:66:41:c5:d9:8d:de:5d:bf:ed:41:97:19:d4:6e:
7c:fd:59:67:00:fa:a2:fb:02:79:42:71:90:15:a8:21:d0:69:
b4:52:43:fd:8b:84:db:5d:3f:f5:06:0b:f4:93:bd:b4:f4:a2:
d8:e5:de:7c:4b:6b:2a:91:5d:46:b5:09:53:a9:ed:a7:8f:60:
18:a8:56:0e:0c:7f:86:da:b5:da:81:08:d5:96:46:46:19:21:
fb:73:a4:99:40:e8:84:b6:6f:98:3b:4f:62:d0:cd:ca:f4:a3:
ef:0b:84:98:26:ec:cd:04:5c:60:b3:cd:f1:a3:c0:9b:83:51:
ad:58:2d:d1
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICB+wwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
M0JBMTlBRjExMC8GA1UEBRMoNkFFQTI0QjA5OUMzMkIyMkU0RTQ4QkI5RjI2Q0Y1
NzhCRUY2QkZGMzAeFw0yNTAzMjQxMTI4MzRaFw0yNjAzMjQxMTI4MzRaMBgxFjAU
BgNVBAMTDTY3ZTE0MWU4LTMxYzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC6zfShbinfsP7jMnBlZ5nTeiO8wUGIecKGrsEq1zgiJyEpc9Lg4VCFk7Rr
RKMKw/fAVctY7L398dphRwHXZg7D+D+kg89l6vBZvEuWzeeYEBslLLmWp/C8OHs8
x8MYy+LkMYyui37/LehCLbDAoPjGZYq98fj37v6VTHr6z635RnhmQduNpIWsVOd4
Ae/myhvW5JKdmP4n798RUnNAiF9DupHj31wSy6WNxpedIbpXnpPdxEF5zydkQbG7
YB9+7rB0gsUVE8xlo22eD+yhgy8IWHqiQIV9aGhtbDWq4cyw10+m2sYBPMwsche/
1HZBD+zLQZyrEA2BXhA94YfXxVKpAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUmwbe
8/8Tzrg5UQzsam641oiMv8swHwYDVR0jBBgwFoAUauoksJnDKyLk5Iu58mz1eL72
v/MwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVBNDBENTc3L2F1b2tz
Sm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2F1b2tzSm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVB
NDBENTc3LzIyNDJFNTlBMDhBMzExRjA4MDlENUY3RDc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADE+0wwDQYJKoZIhvcNAQEL
BQADggEBAKylIyjpkvodv3L4NeZhrYvcdrR93t82CitPTUs+gLjgXc7BBWu3qk3F
EuP1bSH7fCfZTIRIJSUhAAJx62HzxKDC5H5fJ6hctV99CqxGjCzJBxfE6vHRttxx
lGi7SzW8Cnn477x73QQPJ5O7nm1HJVqDLVZyPw85ubYUz7P58rEGhC1mQcXZjd5d
v+1BlxnUbnz9WWcA+qL7AnlCcZAVqCHQabRSQ/2LhNtdP/UGC/STvbT0otjl3nxL
ayqRXUa1CVOp7aePYBioVg4Mf4batdqBCNWWRkYZIftzpJlA6IS2b5g7T2LQzcr0
o+8LhJgm7M0EXGCzzfGjwJuDUa1YLdE=
-----END CERTIFICATE-----
Generated at Sat Apr 5 00:43:14 2025 by rpki-client