Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/2B1B9210FE9F11EFAA02178C762E951A.roa
File: 2B1B9210FE9F11EFAA02178C762E951A.roa (raw, json)
Hash identifier: eTIL9Eopsl2wAhgKH8KcOMcSSbfYzMDBEFQcEmFco8I=
Subject key identifier: 14:11:52:2D:4B:BD:66:52:26:F5:72:52:66:D8:E0:E4:D6:DB:E9:9D
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 06F2
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/2B1B9210FE9F11EFAA02178C762E951A.roa
Signing time: Tue 11 Mar 2025 17:35:05 +0000
ROA not before: Tue 11 Mar 2025 17:35:00 +0000
ROA not after: Tue 01 Dec 2026 17:35:00 +0000
asID: 209642
IP address blocks: 102.135.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 06:24:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1778 (0x6f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF
Validity
Not Before: Mar 11 17:35:00 2025 GMT
Not After : Dec 1 17:35:00 2026 GMT
Subject: CN=67d07449-952a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:98:bf:b5:f1:b4:cb:1d:0a:08:88:0d:6b:c0:
ff:b7:53:91:45:07:9d:83:ad:00:17:fb:f6:25:10:
5f:61:20:e8:81:b0:84:97:83:ff:d5:4f:14:bc:d3:
d7:11:a3:a1:35:bd:60:b5:a7:1b:f1:7c:c2:a5:04:
c8:18:49:15:34:10:dc:0d:c1:ca:16:7d:72:09:1e:
64:63:2a:06:ab:92:4d:4f:25:e0:02:fe:11:ea:aa:
a2:3d:8f:19:c7:ca:bd:b0:ca:6c:5b:0d:e2:c1:4f:
93:4b:01:f8:d6:f9:41:f0:dd:70:ea:2a:f1:8d:18:
eb:b8:93:2d:fd:10:32:60:d7:16:6f:9f:5e:df:87:
99:5b:85:60:c4:8f:9a:3f:de:07:f1:91:3b:62:37:
b0:7b:ad:bf:43:74:1a:b4:d2:5b:29:c5:27:50:3c:
0e:39:8f:55:5d:b9:7e:e8:72:de:69:8a:58:4e:20:
ed:89:23:14:1d:3e:f4:e2:23:2a:fe:a3:da:2b:78:
3e:5b:b1:a8:f3:e8:61:4f:f4:cd:5b:06:fe:f0:80:
ac:a6:33:61:ef:fd:2d:12:79:68:ad:16:f1:7e:5f:
c1:f4:88:7b:fe:d7:30:bb:26:2a:be:a6:1f:fa:a4:
d1:e9:84:5d:2e:c4:8d:38:3e:72:4b:5e:e8:50:4c:
8f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:11:52:2D:4B:BD:66:52:26:F5:72:52:66:D8:E0:E4:D6:DB:E9:9D
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/2B1B9210FE9F11EFAA02178C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.14.0/24
Signature Algorithm: sha256WithRSAEncryption
52:4c:b2:9e:69:76:59:34:67:e7:da:73:d5:81:1e:a6:4b:93:
fb:1f:a4:60:58:1a:7d:31:ec:b0:34:89:03:d0:28:44:3d:a0:
ed:3e:27:1c:8c:a8:4a:22:2b:0a:df:dd:55:09:bc:41:bb:66:
93:4d:30:23:60:4b:6b:ab:80:ca:44:f6:a7:03:77:b9:0f:78:
a9:54:a9:71:63:e3:1e:bd:54:ab:14:20:cd:de:68:b3:23:dc:
26:10:c7:5c:97:0b:a4:e8:f6:20:de:4c:ab:09:48:17:22:6f:
a1:24:9b:d8:e0:7c:39:37:7e:48:82:55:05:40:91:8c:a1:97:
59:f8:8b:16:40:b7:c6:55:d3:4c:b9:9c:85:4a:32:a8:d4:dd:
57:0d:37:f6:82:44:aa:c4:6c:16:c4:df:ff:93:84:30:4f:04:
c3:df:39:42:ab:40:62:06:c4:bd:60:8d:6b:56:d2:36:29:d1:
d0:42:80:d7:3c:ef:90:d5:e4:19:b9:c4:9f:20:ff:66:0c:48:
d0:8b:bb:1f:4e:68:f7:5a:bf:67:8b:ef:b0:b6:a7:6f:0f:e1:
8c:6f:2e:09:06:8d:53:20:bd:89:76:78:6f:4f:a3:6b:68:9b:
17:33:3d:2b:f2:5c:73:e2:18:9f:0a:71:9e:1b:63:4d:2f:f0:
c4:28:56:db
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBvIwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
M0JBMTlBRjExMC8GA1UEBRMoNkFFQTI0QjA5OUMzMkIyMkU0RTQ4QkI5RjI2Q0Y1
NzhCRUY2QkZGMzAeFw0yNTAzMTExNzM1MDBaFw0yNjEyMDExNzM1MDBaMBgxFjAU
BgNVBAMTDTY3ZDA3NDQ5LTk1MmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDRmL+18bTLHQoIiA1rwP+3U5FFB52DrQAX+/YlEF9hIOiBsISXg//VTxS8
09cRo6E1vWC1pxvxfMKlBMgYSRU0ENwNwcoWfXIJHmRjKgarkk1PJeAC/hHqqqI9
jxnHyr2wymxbDeLBT5NLAfjW+UHw3XDqKvGNGOu4ky39EDJg1xZvn17fh5lbhWDE
j5o/3gfxkTtiN7B7rb9DdBq00lspxSdQPA45j1VduX7oct5pilhOIO2JIxQdPvTi
Iyr+o9oreD5bsajz6GFP9M1bBv7wgKymM2Hv/S0SeWitFvF+X8H0iHv+1zC7Jiq+
ph/6pNHphF0uxI04PnJLXuhQTI+lAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUFBFS
LUu9ZlIm9XJSZtjg5Nbb6Z0wHwYDVR0jBBgwFoAUauoksJnDKyLk5Iu58mz1eL72
v/MwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVBNDBENTc3L2F1b2tz
Sm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2F1b2tzSm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVB
NDBENTc3LzJCMUI5MjEwRkU5RjExRUZBQTAyMTc4Qzc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmhw4wDQYJKoZIhvcNAQEL
BQADggEBAFJMsp5pdlk0Z+fac9WBHqZLk/sfpGBYGn0x7LA0iQPQKEQ9oO0+JxyM
qEoiKwrf3VUJvEG7ZpNNMCNgS2urgMpE9qcDd7kPeKlUqXFj4x69VKsUIM3eaLMj
3CYQx1yXC6To9iDeTKsJSBcib6Ekm9jgfDk3fkiCVQVAkYyhl1n4ixZAt8ZV00y5
nIVKMqjU3VcNN/aCRKrEbBbE3/+ThDBPBMPfOUKrQGIGxL1gjWtW0jYp0dBCgNc8
75DV5Bm5xJ8g/2YMSNCLux9OaPdav2eL77C2p28P4YxvLgkGjVMgvYl2eG9Po2to
mxczPSvyXHPiGJ8KcZ4bY00v8MQoVts=
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:01:47 2025 by rpki-client