Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/5E9D1C64E87C11EF9871FBAF762E951A.roa
File: 5E9D1C64E87C11EF9871FBAF762E951A.roa (raw, json)
Hash identifier: 6ftMQh4N6+rWBZQaO3efWgz43Gc9Xw0X2svg2Ag7SF4=
Subject key identifier: 00:4E:F0:9B:B4:4D:1D:C6:1C:A9:B2:E8:21:B0:B2:C7:1F:57:A0:77
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0618
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/5E9D1C64E87C11EF9871FBAF762E951A.roa
Signing time: Tue 11 Feb 2025 13:30:34 +0000
ROA not before: Tue 11 Feb 2025 13:30:28 +0000
ROA not after: Wed 11 Feb 2026 13:30:28 +0000
asID: 401116
IP address blocks: 196.251.112.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 06:24:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1560 (0x618)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF
Validity
Not Before: Feb 11 13:30:28 2025 GMT
Not After : Feb 11 13:30:28 2026 GMT
Subject: CN=67ab50f9-232f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:cb:2c:ba:b7:da:b0:dc:8f:b4:0c:59:d4:ff:
ab:93:50:01:d5:7c:6b:c3:ba:ee:2f:63:5d:65:3a:
69:a3:87:14:a8:3b:94:8b:f5:2d:d1:94:d3:17:f8:
05:5c:47:80:88:90:a9:6d:a3:f5:81:56:fd:65:33:
19:46:8b:d6:27:27:78:59:fb:48:0b:c7:e1:be:cf:
f8:2a:d4:0c:ad:a6:71:b5:98:b1:a0:4f:ed:39:63:
57:2f:e0:c3:7c:59:f7:72:e9:7d:e4:ac:56:74:74:
89:2c:89:20:9a:71:c1:46:06:ac:3f:23:53:ac:e4:
83:0f:72:59:8a:60:b8:cc:6a:ff:35:41:6e:84:c6:
f7:8a:48:64:19:c9:fa:68:80:aa:eb:45:8b:ee:b4:
20:31:78:e5:d7:cc:e4:8b:04:51:17:c5:fe:d5:3b:
d5:02:b0:43:5b:2b:d7:02:0a:c2:b6:59:c9:75:67:
91:51:b4:ba:ff:6e:19:27:14:5b:58:ee:ef:d4:64:
1d:11:df:3b:db:b9:46:9f:44:f1:df:41:2d:e0:17:
c8:4d:81:0e:4d:ed:4c:64:93:91:c4:93:49:32:65:
85:2a:11:f2:12:28:2c:b8:4a:26:f8:45:25:91:7d:
7c:3a:64:6a:06:c7:b0:92:3b:71:14:e6:07:ed:cd:
7b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:4E:F0:9B:B4:4D:1D:C6:1C:A9:B2:E8:21:B0:B2:C7:1F:57:A0:77
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/5E9D1C64E87C11EF9871FBAF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.112.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:ee:c2:a3:41:42:d6:e0:fa:5c:35:ed:8b:7f:c7:44:50:20:
ca:e7:5e:cd:3f:4b:60:d6:f1:f8:f9:df:b0:81:0e:c8:df:e6:
c5:1f:43:c9:be:e7:21:53:7f:4a:47:39:e0:14:91:d6:d0:9d:
91:08:71:52:b1:62:10:82:36:41:58:ef:64:96:25:47:f2:01:
50:99:ba:ee:f6:cd:d0:5a:38:9b:92:fd:01:a0:4f:66:ff:dc:
35:c7:60:61:bc:a3:87:cf:69:a0:c6:b0:d3:ea:8c:5a:f5:32:
6f:2b:a3:f8:44:b1:fd:b9:d5:38:26:17:d4:18:73:57:71:f1:
6f:61:77:e0:c0:b3:8a:81:68:1c:c1:63:f7:e5:a8:71:2d:e5:
2c:fd:20:d0:8c:4d:06:ae:90:a2:5e:bb:19:bf:85:fc:a9:4d:
c9:7e:58:c7:b1:cb:f7:c9:45:08:5b:ae:50:a4:37:aa:eb:27:
0f:56:fe:73:ff:59:df:5a:85:16:52:23:64:ac:ab:0a:b0:95:
c4:0d:3d:a2:80:16:5f:e5:de:ff:1c:14:ca:33:02:bc:aa:62:
32:46:d2:5c:f6:c6:cf:b3:7d:17:f4:11:d2:ad:a0:b1:7d:1d:
be:b0:2a:0f:f1:d5:1c:27:1e:7a:bc:6c:d3:26:a0:b2:a9:13:
93:b0:a3:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:27:33 2025 by rpki-client