Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/33E0045608A111F0B1CB8472762E951A.roa
File: 33E0045608A111F0B1CB8472762E951A.roa (raw, json)
Hash identifier: CLDmOQUC9kbn5qwoye53aNz+r3Os1X6bnRfLeWCS47Y=
Subject key identifier: 10:19:47:65:C4:5B:C7:65:54:DF:DF:03:CB:7C:D2:90:5E:D8:7B:C3
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 07CB
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/33E0045608A111F0B1CB8472762E951A.roa
Signing time: Mon 24 Mar 2025 11:14:50 +0000
ROA not before: Mon 24 Mar 2025 11:14:46 +0000
ROA not after: Tue 24 Mar 2026 11:14:46 +0000
asID: 2914
IP address blocks: 102.135.122.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1995 (0x7cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF
Validity
Not Before: Mar 24 11:14:46 2025 GMT
Not After : Mar 24 11:14:46 2026 GMT
Subject: CN=67e13eaa-c2e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:5d:5b:04:89:b8:7b:e2:28:ad:2b:c9:f1:fa:
68:97:36:5d:6a:9e:be:83:16:1f:b8:b0:04:72:8a:
eb:a3:da:04:9b:5b:30:66:cd:87:62:fa:57:fa:8f:
36:6c:44:f0:19:ff:f0:8b:80:9f:39:ca:d8:ea:99:
b7:58:ac:86:c2:a2:13:23:58:f9:52:cc:cb:fb:bd:
75:ae:12:32:ef:f6:c6:67:56:b1:62:88:37:5d:d4:
a5:ed:5a:c5:3b:bf:2b:1d:c9:56:71:32:a3:ca:94:
8b:08:8a:75:aa:36:df:a7:d3:fe:4f:59:cd:7a:37:
54:eb:72:b7:ff:93:ef:97:8f:d8:95:b9:a8:1c:b0:
83:85:55:36:f3:8e:5f:d9:23:ad:b9:61:e2:f1:2c:
f4:44:bf:4e:ff:fe:14:3b:78:af:e9:fe:d7:1b:20:
bd:54:a8:0f:61:b3:bf:6f:49:65:ae:ba:3d:a2:f5:
6f:78:2f:74:12:4a:1e:49:55:f5:2f:9f:e0:1e:2c:
bf:74:f1:3e:78:7e:03:f3:a2:e0:3c:50:9a:c5:f7:
4c:27:d9:d6:67:3a:7f:05:23:b7:4c:55:35:b6:5b:
d2:20:b6:ff:7c:e5:37:0e:b1:ad:9b:9a:32:56:13:
d1:9c:3f:75:6b:91:0a:bf:7f:9a:ea:cb:80:3d:6a:
ec:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:19:47:65:C4:5B:C7:65:54:DF:DF:03:CB:7C:D2:90:5E:D8:7B:C3
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/33E0045608A111F0B1CB8472762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.122.0/24
Signature Algorithm: sha256WithRSAEncryption
71:bf:58:f9:d9:69:c1:48:6b:9b:bd:2c:3f:d9:c8:82:59:6c:
34:14:69:4b:ac:59:05:03:de:37:66:4c:12:e5:72:ba:42:1d:
e8:41:0e:fa:4d:8f:4f:95:b1:d2:38:38:0c:58:7f:e4:45:47:
7e:65:9f:31:12:e5:02:d8:35:4a:02:52:3b:ed:34:7d:c2:5a:
12:d5:60:98:77:8a:fa:0e:5d:1e:bc:de:b2:b1:42:13:bb:ec:
55:4e:22:49:29:f6:90:80:2b:e7:23:17:fb:77:b5:b6:80:d2:
82:e6:16:2c:8c:a5:8d:5f:19:bd:e4:63:d4:9f:96:99:44:5a:
c2:bf:d0:b3:8e:12:45:14:5c:69:ce:d7:e1:16:d3:9a:83:f1:
b0:43:ab:c9:b7:01:24:8e:29:88:75:39:f5:d4:68:d9:f4:fd:
21:e3:0c:be:56:36:a0:b0:da:26:d6:95:f7:93:40:e8:cb:b5:
08:5c:c3:eb:fd:4d:d6:c9:20:48:77:9e:d1:3a:a1:c5:06:79:
24:74:af:ca:b2:80:c5:91:96:cb:6b:34:9c:25:66:d6:43:10:
b7:53:53:9b:6a:a1:4f:77:2d:d5:2b:14:6b:09:cd:c8:af:a8:
d5:2a:35:af:61:6b:75:46:58:2a:3b:ad:70:9b:bd:d6:2b:c4:
35:02:8d:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:56 2025 by rpki-client