Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/4F0D77C23DF311F098F833AEDAE4EC9C.roa
File: 4F0D77C23DF311F098F833AEDAE4EC9C.roa (raw, json)
Hash identifier: aIqQl5JQb+GX+TpYy58OoT49DqqFp4sfy0WTQuu8f0U=
Subject key identifier: CE:B5:98:13:8E:33:53:6F:49:CF:59:F1:BF:24:26:F0:D1:85:A5:2C
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0AFE
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/4F0D77C23DF311F098F833AEDAE4EC9C.roa
Signing time: Sat 31 May 2025 07:46:06 +0000
ROA not before: Sat 31 May 2025 07:46:02 +0000
ROA not after: Fri 29 May 2026 07:46:02 +0000
asID: 834
IP address blocks: 102.135.23.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 07 Jun 2025 00:06:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2814 (0xafe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: May 31 07:46:02 2025 GMT
Not After : May 29 07:46:02 2026 GMT
Subject: CN=683ab3be-fd31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:03:f1:27:e1:e8:03:c8:27:8b:70:17:31:9c:
15:f1:71:69:8c:d5:3b:0e:49:c4:f2:03:48:90:1a:
49:74:36:bb:e2:f2:06:c9:1b:bf:a4:f8:79:32:0d:
fb:4b:86:36:d9:48:55:3e:0d:2b:3b:65:9a:d3:1b:
e0:54:8f:1f:43:ee:be:25:b5:dd:d1:d1:77:bc:6b:
e6:db:98:24:22:01:45:00:79:17:46:e0:e6:39:9d:
68:ab:29:5c:d3:85:00:76:73:6d:7b:05:46:2a:18:
32:b9:be:cb:1a:e8:42:d6:41:86:02:8c:db:de:9f:
66:6c:47:f3:5c:ff:c6:19:ef:12:ca:f2:55:16:73:
0e:40:64:5e:d3:04:0d:54:ff:70:95:a6:b8:64:5a:
4e:37:07:16:5b:4b:6f:48:ce:11:d6:62:17:b3:16:
f2:ee:56:ea:2d:55:61:16:10:0a:d8:7e:af:bb:cb:
2e:6e:98:69:9c:1d:ee:bc:50:91:6f:53:ba:a7:8b:
ae:50:8d:3c:8a:5a:34:b2:5f:9c:2f:69:45:5f:a2:
54:34:30:d9:6a:76:f4:40:5e:ec:a3:b4:a3:da:19:
21:da:3b:e8:22:4e:e7:60:99:66:27:0d:7c:bb:8d:
fb:4f:0a:c6:fb:b8:57:83:f6:3e:9a:00:e7:16:c8:
4f:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:B5:98:13:8E:33:53:6F:49:CF:59:F1:BF:24:26:F0:D1:85:A5:2C
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/4F0D77C23DF311F098F833AEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.23.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:01:20:5f:3b:a0:03:1d:6e:85:c6:d4:ec:12:5f:e5:47:17:
a5:f6:d1:7c:24:1c:0d:cc:b1:75:d3:e3:d5:e8:7e:82:2b:e3:
46:1a:9c:5e:8b:dc:5f:12:13:3f:13:c2:ff:62:18:06:18:48:
f3:f9:e9:59:69:f8:f9:08:2a:64:a2:cb:98:31:33:6e:d7:2c:
58:38:8d:aa:3f:6f:2b:e9:79:c6:c6:64:4b:df:fb:e1:a1:40:
08:08:63:3e:f2:cf:89:84:ff:4a:ea:f4:ce:2d:27:47:83:76:
05:7e:35:b8:d5:e0:73:1f:08:b3:c4:38:9f:0e:a6:7d:c4:6e:
58:39:34:f9:d6:ad:6f:3e:69:41:9a:a6:c5:d4:f0:f8:7e:6f:
60:3d:24:2a:74:e0:45:e9:a0:ff:0b:a0:ed:22:5c:4f:d2:e7:
d6:54:f8:4d:8d:6a:a2:4b:ca:62:f0:db:af:f5:22:8e:5c:e5:
d0:82:a4:13:89:7b:e9:bb:d1:56:a1:2b:f0:0c:72:ac:01:24:
87:e4:19:e1:a5:d8:34:dd:56:56:a8:2e:5c:5a:bb:e3:4e:ac:
72:66:09:01:a5:21:72:77:c0:1d:1c:2e:72:c3:d4:29:f1:9a:
b4:5f:d4:d7:fd:8a:0f:ce:b0:70:60:89:0b:95:13:7f:87:db:
1e:5a:1d:6d
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICCv4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
M0JBMTlBRjExMC8GA1UEBRMoNkFFQTI0QjA5OUMzMkIyMkU0RTQ4QkI5RjI2Q0Y1
NzhCRUY2QkZGMzAeFw0yNTA1MzEwNzQ2MDJaFw0yNjA1MjkwNzQ2MDJaMBgxFjAU
BgNVBAMTDTY4M2FiM2JlLWZkMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDlA/En4egDyCeLcBcxnBXxcWmM1TsOScTyA0iQGkl0Nrvi8gbJG7+k+Hky
DftLhjbZSFU+DSs7ZZrTG+BUjx9D7r4ltd3R0Xe8a+bbmCQiAUUAeRdG4OY5nWir
KVzThQB2c217BUYqGDK5vssa6ELWQYYCjNven2ZsR/Nc/8YZ7xLK8lUWcw5AZF7T
BA1U/3CVprhkWk43BxZbS29IzhHWYhezFvLuVuotVWEWEArYfq+7yy5umGmcHe68
UJFvU7qni65QjTyKWjSyX5wvaUVfolQ0MNlqdvRAXuyjtKPaGSHaO+giTudgmWYn
DXy7jftPCsb7uFeD9j6aAOcWyE/9AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUzrWY
E44zU29Jz1nxvyQm8NGFpSwwHwYDVR0jBBgwFoAUauoksJnDKyLk5Iu58mz1eL72
v/MwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVBNDBENTc3L2F1b2tz
Sm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2F1b2tzSm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVB
NDBENTc3LzRGMEQ3N0MyM0RGMzExRjA5OEY4MzNBRURBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmhxcwDQYJKoZIhvcNAQEL
BQADggEBAMQBIF87oAMdboXG1OwSX+VHF6X20XwkHA3MsXXT49XofoIr40YanF6L
3F8SEz8Twv9iGAYYSPP56Vlp+PkIKmSiy5gxM27XLFg4jao/byvpecbGZEvf++Gh
QAgIYz7yz4mE/0rq9M4tJ0eDdgV+NbjV4HMfCLPEOJ8Opn3Eblg5NPnWrW8+aUGa
psXU8Ph+b2A9JCp04EXpoP8LoO0iXE/S59ZU+E2NaqJLymLw26/1Io5c5dCCpBOJ
e+m70VahK/AMcqwBJIfkGeGl2DTdVlaoLlxau+NOrHJmCQGlIXJ3wB0cLnLD1Cnx
mrRf1Nf9ig/OsHBgiQuVE3+H2x5aHW0=
-----END CERTIFICATE-----
Generated at Thu Jun 5 18:17:36 2025 by rpki-client