Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/97DF48D0E87C11EFB67CEDB2762E951A.roa
File: 97DF48D0E87C11EFB67CEDB2762E951A.roa (raw, json)
Hash identifier: An6yNqquNLA1Y8NfJf99nOdfm6TjtgHdif+RG3vSrKU=
Subject key identifier: 7F:4C:E8:AC:33:2F:DA:1F:21:FE:04:D1:1F:80:AF:AA:40:1A:26:CF
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0624
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/97DF48D0E87C11EFB67CEDB2762E951A.roa
Signing time: Tue 11 Feb 2025 13:32:09 +0000
ROA not before: Tue 11 Feb 2025 13:32:05 +0000
ROA not after: Wed 11 Feb 2026 13:32:05 +0000
asID: 401116
IP address blocks: 196.251.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1572 (0x624)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF
Validity
Not Before: Feb 11 13:32:05 2025 GMT
Not After : Feb 11 13:32:05 2026 GMT
Subject: CN=67ab5159-4173
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:64:2c:ad:d5:62:32:5f:36:44:5d:79:3e:fe:
d3:e5:9c:11:5d:e8:0c:ba:4f:d9:0c:e2:3b:94:93:
a6:f1:1c:9b:4c:8b:0c:1b:6f:8a:c1:00:f8:84:90:
b2:f1:11:6f:ff:a2:a9:9b:1f:aa:09:9d:1e:c4:cd:
c0:25:87:1b:ce:ee:ef:4e:80:93:95:3d:5d:24:aa:
0d:3b:f8:c1:cc:91:fb:0e:0f:89:b8:5d:b3:b3:56:
a2:8d:50:44:e8:24:b6:2a:0f:a3:82:83:bc:6a:9a:
5f:f8:a9:a7:78:78:8d:ba:ea:33:38:6a:64:25:b1:
9f:30:88:1a:e5:65:d0:12:e6:ec:1b:1a:53:1e:e1:
9f:af:03:de:12:52:55:c6:c2:fa:ac:ca:28:d4:7c:
bc:d5:a2:98:b8:2a:23:b9:40:a7:12:d7:40:6a:4f:
11:86:e3:71:68:5d:fe:1c:6d:5b:34:38:75:a1:2d:
f3:2c:10:92:a3:cc:50:48:24:d1:5f:86:1f:5a:75:
07:0e:c1:1d:19:1c:05:4f:e5:f4:07:79:dd:0f:0c:
fa:d6:d4:71:92:15:a9:7d:8d:e9:c4:43:48:5c:6f:
bf:51:cc:87:62:00:1a:32:5e:fb:0f:a8:8e:8c:c2:
5c:6c:98:66:6e:3f:7d:74:bb:cb:f9:39:31:f5:d1:
30:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:4C:E8:AC:33:2F:DA:1F:21:FE:04:D1:1F:80:AF:AA:40:1A:26:CF
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/97DF48D0E87C11EFB67CEDB2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.117.0/24
Signature Algorithm: sha256WithRSAEncryption
51:d5:3c:ae:c4:ec:99:ef:06:82:3d:78:ff:69:9c:fd:c6:38:
72:a9:6a:75:3c:b1:fa:e4:e0:0e:ea:63:bd:79:90:61:e5:2f:
f6:e6:b4:dc:c2:3c:a7:db:9a:bc:d9:58:12:ce:08:31:b2:97:
f5:4d:04:4c:06:b7:c6:31:5b:1c:fd:4a:70:60:ba:9f:54:3f:
db:be:a6:a3:b2:47:6d:38:5b:1a:c1:0f:26:b4:23:5d:48:cc:
8b:ba:1f:dd:9f:88:b8:e8:f2:94:e6:df:77:02:8c:98:54:32:
24:43:2d:0b:f2:97:05:8c:93:3d:06:77:a3:bf:03:cf:1f:d6:
10:5f:c1:84:20:2f:6c:33:04:44:7d:d2:13:18:8a:3f:17:cc:
26:a5:70:b5:45:b4:30:ee:7f:ee:9f:41:ed:0d:d3:c9:49:d0:
94:21:24:79:fc:81:f7:ab:52:fa:e1:33:05:6c:5b:10:9d:69:
d9:44:04:64:05:22:af:1c:a6:d8:ea:05:42:08:51:b1:8c:a4:
61:f3:e6:72:b9:57:82:a1:42:dc:09:e7:db:c3:e8:b2:00:59:
96:aa:15:80:08:cb:9d:e1:5e:ad:3e:1b:da:77:b0:5e:18:f7:
98:61:a3:17:66:6d:5b:fa:cf:bb:a0:50:cb:9b:87:a1:ea:8b:
34:0d:08:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:25:36 2025 by rpki-client