Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/A53055BC3D5711F0AA3686B4DAE4EC9C.roa
File: A53055BC3D5711F0AA3686B4DAE4EC9C.roa (raw, json)
Hash identifier: mRyHRoW3nu7QOTsteZzbwwa66rYBX6XzNr5c5/7suZ0=
Subject key identifier: B7:47:09:13:6E:5F:A4:B0:01:7A:63:F2:ED:26:B6:C0:83:B1:DF:BE
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0AD2
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/A53055BC3D5711F0AA3686B4DAE4EC9C.roa
Signing time: Fri 30 May 2025 13:11:50 +0000
ROA not before: Fri 30 May 2025 13:11:45 +0000
ROA not after: Sat 30 May 2026 13:11:45 +0000
asID: 208485
IP address blocks: 102.135.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 07 Jun 2025 00:06:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2770 (0xad2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: May 30 13:11:45 2025 GMT
Not After : May 30 13:11:45 2026 GMT
Subject: CN=6839ae95-4787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:64:7a:e1:12:ee:a4:0f:a6:b0:d2:5e:76:49:
78:fd:e7:95:65:f2:06:05:14:ac:4c:ea:02:63:27:
3f:ae:a5:da:1d:81:9e:71:bb:c6:06:59:56:7e:ee:
db:b0:61:1d:a4:1b:cf:18:93:0d:47:af:8a:55:5e:
ad:15:d7:08:0e:39:2c:51:f4:6e:b2:9a:64:60:72:
ab:d8:21:de:fd:4e:f9:82:ef:7f:f0:85:28:f7:60:
e1:87:f7:ef:5c:a7:4f:0b:36:d9:f8:a1:d6:07:1f:
96:08:a6:4f:43:38:6f:0a:fc:96:fa:f9:28:3b:ec:
99:5f:8f:fd:f0:8c:51:e9:69:5e:75:a8:e5:e1:d0:
e3:ac:02:e0:ec:21:86:b1:78:97:cb:16:96:e7:b9:
6e:01:f0:55:14:57:32:f2:49:2e:e9:36:fc:ca:45:
3c:ad:8d:ea:ee:5b:5c:dc:30:ab:5f:a7:27:9f:48:
e3:0d:d3:1b:43:64:b4:e9:55:6d:c3:e8:b4:45:94:
c7:61:1e:dc:f9:28:5e:fe:4d:1e:83:57:1e:db:06:
cd:e3:23:4a:54:b6:be:fa:c3:5e:e2:73:3a:42:ce:
9b:ac:21:4b:10:2c:17:d4:ab:9a:6f:86:2a:5f:9c:
44:92:05:1e:fe:29:ff:5a:80:59:bf:a7:79:90:66:
59:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:47:09:13:6E:5F:A4:B0:01:7A:63:F2:ED:26:B6:C0:83:B1:DF:BE
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/A53055BC3D5711F0AA3686B4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.0.0/24
Signature Algorithm: sha256WithRSAEncryption
23:25:81:99:36:c1:57:1a:8e:d5:2b:63:74:01:49:7f:2c:05:
97:a7:fc:32:d6:6a:41:54:d0:e5:19:b2:b5:68:46:50:b4:2e:
07:f2:bd:7b:71:88:0f:0c:4b:36:fa:f8:4d:58:53:ff:21:4a:
56:cf:c7:0e:4a:0c:41:83:7d:cb:80:08:2e:4a:84:fe:ac:b2:
5f:78:ca:d9:f0:f3:b8:0b:86:f9:05:28:7c:df:d4:41:f2:54:
cc:11:ab:a2:f3:71:57:51:3a:42:37:f3:36:62:87:25:76:32:
ff:0b:7f:bf:b2:a8:5c:47:0f:61:e7:ad:2b:8c:e3:27:7e:97:
ef:43:da:04:8c:5b:3b:ad:e6:12:f8:5d:5f:ee:8d:0e:82:86:
98:9d:57:4c:3d:ff:27:ff:de:ec:82:a1:a5:5a:b5:00:a3:9e:
d6:dc:6a:0d:8b:26:f8:fc:84:fe:11:78:80:64:16:ba:10:51:
23:e0:ea:8e:65:59:23:8d:01:35:54:15:c8:f8:4e:8f:6b:df:
ee:35:40:69:08:11:0e:8d:db:d2:63:49:2e:ce:31:17:85:e2:
d2:da:7d:80:88:f4:58:ea:76:ad:12:f6:16:f2:f8:c3:04:ef:
13:da:76:a3:08:d6:c9:60:77:ba:20:6e:65:af:91:15:d7:ab:
f7:5e:a5:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 18:36:12 2025 by rpki-client