Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/59E4A35408A211F0A2B4D078762E951A.roa
File: 59E4A35408A211F0A2B4D078762E951A.roa (raw, json)
Hash identifier: Hs9qtU34FPPQi9GoMJHEFUWdY9IIcxuAt0rrXnoC32c=
Subject key identifier: 70:41:92:02:3E:6A:38:9D:1E:7E:CF:67:D1:03:CB:DD:CF:2F:15:EF
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 07DE
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/59E4A35408A211F0A2B4D078762E951A.roa
Signing time: Mon 24 Mar 2025 11:23:03 +0000
ROA not before: Mon 24 Mar 2025 11:23:00 +0000
ROA not after: Tue 24 Mar 2026 11:23:00 +0000
asID: 2914
IP address blocks: 196.251.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 05 Apr 2025 05:10:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2014 (0x7de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF
Validity
Not Before: Mar 24 11:23:00 2025 GMT
Not After : Mar 24 11:23:00 2026 GMT
Subject: CN=67e14097-39e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:33:75:e3:0f:8a:e2:34:52:b2:63:fe:3c:09:
97:5f:89:c7:15:ca:b4:27:5b:03:88:50:dc:cd:da:
f7:26:8c:c9:4a:e3:ca:b2:28:c5:b9:01:8c:e8:59:
a6:bb:57:96:e8:ed:fb:28:67:d4:d6:8f:46:5c:5f:
51:d1:b9:e2:17:ae:ff:75:bc:94:fb:c1:2e:29:c0:
46:d4:ce:8d:4a:e2:80:70:12:0d:de:e8:26:5b:02:
49:b9:de:05:96:cd:15:aa:1b:0f:6f:3a:58:32:48:
44:98:e1:ae:1f:de:12:eb:81:e7:1c:61:a3:f3:87:
9e:37:36:40:8a:80:9c:9a:e7:6d:70:fc:c6:52:d3:
86:39:9a:e7:a2:62:d8:b3:92:63:79:81:fc:6f:14:
ea:35:63:62:e9:85:35:69:17:54:f6:af:3b:46:c1:
ba:d1:db:c7:e9:98:81:8a:3f:82:dc:0c:f4:38:9c:
85:3c:54:c6:69:4d:cd:29:4c:c6:1d:23:5c:3e:8c:
d9:8e:27:9c:1d:98:58:8a:51:7a:c7:e6:1a:94:c9:
91:d6:d1:45:38:e4:c2:f5:0c:1c:8b:c9:89:9f:95:
9e:b3:9d:2f:db:22:3a:7e:dd:1d:6c:9c:4d:53:83:
de:20:2f:57:15:0f:bf:df:7e:70:6c:19:f6:6f:c2:
ac:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:41:92:02:3E:6A:38:9D:1E:7E:CF:67:D1:03:CB:DD:CF:2F:15:EF
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/59E4A35408A211F0A2B4D078762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.106.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:9f:85:05:26:c0:35:a6:a3:89:c3:28:24:20:e3:af:ba:fe:
68:d1:b3:f2:03:3a:94:a1:39:a9:5c:5f:29:17:9e:3d:e6:17:
be:e9:0c:ea:6e:fb:06:de:22:3e:a1:c9:cd:81:f3:5d:3f:19:
ef:27:f3:1a:06:aa:f2:b8:6e:bf:78:69:07:c6:29:cc:85:e1:
19:6b:f6:bc:7c:45:d9:10:c5:6c:33:0b:ba:ba:ea:5d:e6:6d:
8b:c4:3e:54:21:7a:87:11:fb:ee:67:af:4e:1e:04:6a:1b:db:
17:c8:99:6c:4f:cf:ea:11:47:0d:67:a3:4f:eb:c8:3e:5c:8d:
02:4b:0e:36:4d:e2:41:4e:16:89:b7:65:ec:06:24:ea:81:5d:
5f:89:59:48:35:96:76:33:5e:a4:f3:5d:66:a7:ea:c9:f8:44:
19:b8:31:c3:de:ae:fe:44:c4:b4:c9:8e:94:01:f3:5a:59:d5:
47:43:ea:fb:aa:95:4e:22:4f:b9:90:7c:02:7f:50:39:87:10:
46:4b:ec:6f:90:31:6c:4f:24:cc:95:83:96:b9:46:d1:06:7a:
0e:96:e1:02:24:aa:fd:c3:7b:c7:9b:96:a7:b0:35:da:49:0f:
e0:b8:79:79:20:6a:59:45:0a:e7:95:be:4e:b4:69:f2:44:9d:
81:d0:7d:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 01:38:33 2025 by rpki-client