Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/285A6A3AE87C11EF98CD65AF762E951A.roa
File: 285A6A3AE87C11EF98CD65AF762E951A.roa (raw, json)
Hash identifier: OpfH2GqJdU4Y6dkGOjUEECH2XSpI4fbinpik4bPdZPY=
Subject key identifier: 40:C7:EF:9A:43:DE:01:B3:51:D6:81:52:4E:5F:A4:9D:51:C9:6B:E2
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0610
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/285A6A3AE87C11EF98CD65AF762E951A.roa
Signing time: Tue 11 Feb 2025 13:29:02 +0000
ROA not before: Tue 11 Feb 2025 13:28:58 +0000
ROA not after: Wed 11 Feb 2026 13:28:58 +0000
asID: 401109
IP address blocks: 196.251.98.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1552 (0x610)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF
Validity
Not Before: Feb 11 13:28:58 2025 GMT
Not After : Feb 11 13:28:58 2026 GMT
Subject: CN=67ab509e-c214
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:05:89:19:f1:a9:c6:1a:65:42:55:86:ed:4f:
23:c3:30:70:d4:18:91:dd:4f:34:f9:9b:2a:57:9f:
f0:50:58:f0:1f:cc:b2:f9:6d:b1:42:3b:ad:2c:f8:
ab:7e:40:de:92:ec:4d:d6:df:c9:84:c2:70:a4:f0:
b2:e9:91:5a:d6:06:ad:5a:44:99:30:6b:52:5e:22:
02:4f:f4:93:29:b9:14:b6:bc:b3:2f:33:06:d4:a8:
c2:8f:58:76:4b:67:fd:e2:42:ef:49:43:2e:94:a9:
7d:b3:62:22:7d:73:01:b1:b9:2b:87:02:db:3b:71:
4c:a7:57:0f:7a:60:11:8d:cd:3c:5f:20:57:8c:ec:
bc:af:aa:c4:79:82:d1:aa:5d:d1:d7:49:9e:7e:5b:
23:5f:b3:66:4e:68:05:4b:56:95:1e:5f:4a:90:c6:
f3:76:6b:48:e4:f2:d9:5b:44:47:92:5b:2b:55:3c:
78:f3:78:0b:a8:08:2f:e4:a7:92:50:ac:d8:91:93:
8a:6b:de:a9:b5:0d:b5:b3:2d:7c:2a:1c:35:fd:5a:
4a:e3:61:74:d1:95:59:df:3e:05:5d:ae:d1:fe:0c:
a4:f6:a5:48:f8:7a:b0:dc:7b:2e:c6:b6:5d:13:57:
f3:8a:fc:fd:98:4b:ff:b2:eb:f4:f4:53:7f:22:2f:
ab:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:C7:EF:9A:43:DE:01:B3:51:D6:81:52:4E:5F:A4:9D:51:C9:6B:E2
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/285A6A3AE87C11EF98CD65AF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.98.0/24
Signature Algorithm: sha256WithRSAEncryption
08:f3:da:ef:28:9f:28:fa:ae:ad:22:e3:24:7d:5d:a8:c8:ec:
26:89:8e:03:d8:92:ae:8a:65:ee:5c:c0:f2:c2:46:06:24:21:
97:70:22:ac:2a:91:e3:50:37:08:32:ab:97:5c:bb:a7:ef:a7:
8a:0e:5a:95:1b:41:ec:a5:a7:b8:09:e5:65:2e:4a:82:df:a7:
bf:76:8d:db:97:fe:a1:7d:3a:9e:58:f3:3a:a5:21:60:f4:80:
08:78:1b:0f:0b:7b:16:e1:eb:30:5c:78:6a:b5:67:a4:93:55:
fb:c6:2b:70:92:c4:f3:fc:a2:2e:ed:56:a1:91:81:ad:73:c3:
5e:08:0b:8a:34:44:d4:10:eb:3c:df:06:6e:61:16:0d:f2:7b:
8b:71:9b:03:3a:2c:b5:84:29:8f:10:5e:9b:bf:f0:21:0e:83:
23:3b:60:52:82:9a:dd:d0:fc:0c:c6:5b:2a:e1:a5:02:0a:87:
36:37:68:6c:b2:07:69:33:64:ae:b0:c0:0e:bb:f5:6e:2d:72:
20:32:b2:c0:36:66:91:6e:a1:4b:f5:ef:81:64:53:96:b0:b9:
f4:25:12:3f:5b:e3:05:1c:9c:7a:1c:95:33:aa:8d:64:c1:86:
c8:ab:2a:ba:e9:5b:3c:d3:fa:c1:8e:5f:94:65:19:e3:16:5c:
e0:c9:0d:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:20:45 2025 by rpki-client