Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/470EB6A8405011F08C709289DAE4EC9C.roa
File: 470EB6A8405011F08C709289DAE4EC9C.roa (raw, json)
Hash identifier: GkRPWOXQ1tUMDo7keLqT2IQKpc6rxo7HwEPrcjfzrpc=
Subject key identifier: 3F:4E:39:81:3B:DF:97:76:AC:4A:D6:98:34:91:29:B4:1F:AD:F9:E1
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0B05
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/470EB6A8405011F08C709289DAE4EC9C.roa
Signing time: Tue 03 Jun 2025 07:56:39 +0000
ROA not before: Tue 03 Jun 2025 07:56:33 +0000
ROA not after: Wed 03 Jun 2026 07:56:33 +0000
asID: 9304
IP address blocks: 196.251.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 07 Jun 2025 00:06:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2821 (0xb05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Jun 3 07:56:33 2025 GMT
Not After : Jun 3 07:56:33 2026 GMT
Subject: CN=683eaab6-d33b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fa:0b:5a:10:f9:b2:9c:fb:0f:94:0c:34:99:
81:d9:0a:19:3a:63:9e:5c:dc:e3:da:33:1d:db:81:
94:18:11:be:79:b1:a5:eb:29:0b:90:f0:a4:b1:97:
01:fc:41:6a:37:95:92:d0:35:c2:e8:c9:51:13:12:
92:fd:94:d7:44:71:bc:f4:cf:ca:93:c9:3a:54:d1:
6a:e1:1d:82:46:5d:94:de:92:7c:b0:d0:16:19:4a:
ff:06:b5:c4:c6:8c:ad:f1:92:72:62:6d:d3:f2:9c:
01:ee:40:61:04:10:8f:ed:be:7b:41:d9:28:6a:b2:
32:68:e1:ac:75:d5:43:a9:55:a7:51:69:22:3d:90:
6b:4a:3f:03:e5:73:a7:b9:97:bc:37:04:85:96:98:
d2:25:d8:1c:48:fe:26:97:e5:67:df:de:64:2e:5f:
b4:75:56:73:1f:e6:8f:f4:82:d4:95:41:4b:7a:79:
5a:2d:a7:32:6e:75:60:29:ee:d4:e9:fb:5e:32:a9:
cc:16:b7:0a:33:c3:47:72:a0:79:72:9f:8d:11:f9:
51:3f:56:1d:2f:2d:87:41:63:74:a1:ac:b9:50:ba:
2c:ec:a6:15:1a:04:7f:f4:05:c1:2d:73:dc:92:b9:
ed:cb:52:17:4c:3a:cc:9c:dd:7c:97:00:fe:61:a1:
8d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:4E:39:81:3B:DF:97:76:AC:4A:D6:98:34:91:29:B4:1F:AD:F9:E1
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/470EB6A8405011F08C709289DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.64.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:83:a7:09:f0:d6:c1:ae:27:2f:23:d5:4f:41:6e:a2:06:59:
97:96:0e:52:8f:c2:d7:b1:7b:64:15:70:40:06:5a:46:e3:f2:
5e:93:aa:30:9c:9b:ca:ba:7f:69:7f:0a:cc:1f:5f:12:48:e4:
ea:67:bb:fe:73:62:bc:af:ed:ae:ab:b8:a1:6c:11:99:58:0d:
7e:d9:e0:1e:7a:95:ec:1b:2d:ac:b8:6f:a7:08:f7:40:67:31:
98:a9:3a:d0:85:24:d9:08:4e:99:00:40:49:5e:9d:2a:b3:68:
01:db:82:ef:32:be:2f:68:52:13:0e:50:fd:bd:c8:ec:44:b1:
33:52:0a:3e:00:fd:33:a9:57:a4:a3:9e:00:be:ed:55:d9:62:
f1:5f:d6:73:9f:62:d9:e0:03:1e:b6:25:f6:56:01:29:87:8e:
37:57:73:9d:ac:98:4b:32:de:14:1f:9e:52:98:0f:0d:f2:d9:
62:18:01:ab:89:b9:0c:bf:02:11:f3:40:c4:18:b2:08:70:3b:
e7:a8:2d:fd:94:57:a7:80:4d:83:70:32:58:9a:1d:08:5e:b0:
7d:92:b1:6e:8e:61:9f:41:73:fe:78:b3:c7:5e:94:d1:36:c7:
dd:a0:86:4e:50:e6:d6:5f:16:fd:53:51:de:37:9a:b4:67:3a:
05:48:f1:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 18:11:54 2025 by rpki-client