Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/AF03FCB80A1411F094CE5952762E951A.roa
File: AF03FCB80A1411F094CE5952762E951A.roa (raw, json)
Hash identifier: kX7HPNMa66cFkTWsGyKYt7+VxfGpk9wSSIvnWZWgdLM=
Subject key identifier: 6A:E5:CB:E9:4F:CC:14:8D:E9:42:20:7B:C5:E3:4E:BD:DB:3A:63:69
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 087E
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/AF03FCB80A1411F094CE5952762E951A.roa
Signing time: Wed 26 Mar 2025 07:34:00 +0000
ROA not before: Wed 26 Mar 2025 07:33:56 +0000
ROA not after: Thu 26 Mar 2026 07:33:56 +0000
asID: 4766
IP address blocks: 102.135.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2174 (0x87e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF
Validity
Not Before: Mar 26 07:33:56 2025 GMT
Not After : Mar 26 07:33:56 2026 GMT
Subject: CN=67e3ade8-21fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b2:72:b4:82:7b:f8:53:3f:cd:3d:cc:30:e3:
2f:a4:a7:00:e9:e3:43:5c:7d:13:bc:83:bc:1d:3a:
c4:43:50:aa:e9:90:43:3a:a9:1c:e7:43:a6:d9:46:
1c:df:b7:b3:80:c7:ff:c6:54:76:99:7d:fd:ed:66:
7b:a7:22:9f:a9:77:2e:c6:43:9b:7e:03:47:e3:c9:
b5:70:16:2a:30:f3:96:cb:21:43:f3:e2:1e:3f:f8:
2d:42:5d:5a:81:65:28:99:94:eb:bb:b3:83:fc:de:
82:58:ab:ff:b0:f1:10:fc:94:70:22:08:1e:34:7b:
ef:61:a9:b5:ee:d2:6c:f5:2f:0c:24:e9:61:2a:8f:
72:43:0d:45:c7:d5:c7:41:df:01:d0:4f:f7:13:f7:
16:14:76:6a:db:2f:f3:38:a1:4d:0f:84:52:6e:1a:
8f:13:7a:36:75:be:01:91:31:ad:cd:e9:45:cc:c2:
f1:14:79:72:26:e4:a8:19:b1:03:da:83:d3:9a:19:
c1:8e:0d:bc:22:a7:0f:7e:ba:ad:a4:2a:35:fd:cb:
ee:a3:6b:0d:cd:db:fe:e3:e2:8f:25:e8:eb:8c:5c:
19:1b:1c:28:d1:10:04:91:04:1b:51:9d:ae:cd:0f:
c5:84:2b:4e:98:74:f8:24:84:2c:09:73:67:94:9e:
4c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:E5:CB:E9:4F:CC:14:8D:E9:42:20:7B:C5:E3:4E:BD:DB:3A:63:69
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/AF03FCB80A1411F094CE5952762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.83.0/24
Signature Algorithm: sha256WithRSAEncryption
19:e9:c7:4c:f3:24:11:8c:d4:2f:87:f2:39:67:d4:44:33:9b:
19:b9:95:c4:3b:d0:fa:fc:18:7d:ae:6a:00:6e:8c:43:8d:2f:
a4:75:81:96:7a:36:f7:ed:c6:94:c2:a1:17:7b:8f:dd:74:a1:
17:b1:57:2f:37:d0:95:ac:b4:65:2f:bc:16:0e:2d:5e:22:84:
35:b9:90:43:a7:25:79:c6:74:6f:fb:77:5e:79:59:c1:3a:64:
0c:bb:07:f4:a2:6a:91:1a:f1:17:13:6c:0d:c4:24:cd:b4:6b:
33:3c:4c:b3:a4:50:2b:e2:a4:c2:49:45:c6:49:a5:16:91:98:
d1:2a:69:cb:f2:53:4c:d6:7f:04:ee:1c:ce:b4:82:66:3a:97:
89:55:cb:ae:02:be:55:89:82:e4:5f:87:cb:25:67:1e:02:cd:
c5:7b:01:8a:3b:80:cc:a9:85:e0:5c:94:c4:ce:be:0d:2f:0f:
e3:76:ac:86:43:04:35:a9:59:36:fa:94:b6:23:f5:d6:b6:88:
1e:d1:cc:ab:de:a2:d7:ac:f5:ec:64:06:14:b9:2a:ed:17:2e:
91:50:bd:b5:0a:7a:b0:4d:27:9c:6e:25:4c:13:5b:ac:de:eb:
2c:03:3e:67:cb:02:8e:12:84:7a:c2:0e:16:b5:63:f8:d9:90:
92:a0:dd:51
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICCH4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
M0JBMTlBRjExMC8GA1UEBRMoNkFFQTI0QjA5OUMzMkIyMkU0RTQ4QkI5RjI2Q0Y1
NzhCRUY2QkZGMzAeFw0yNTAzMjYwNzMzNTZaFw0yNjAzMjYwNzMzNTZaMBgxFjAU
BgNVBAMTDTY3ZTNhZGU4LTIxZmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCbsnK0gnv4Uz/NPcww4y+kpwDp40NcfRO8g7wdOsRDUKrpkEM6qRznQ6bZ
Rhzft7OAx//GVHaZff3tZnunIp+pdy7GQ5t+A0fjybVwFiow85bLIUPz4h4/+C1C
XVqBZSiZlOu7s4P83oJYq/+w8RD8lHAiCB40e+9hqbXu0mz1Lwwk6WEqj3JDDUXH
1cdB3wHQT/cT9xYUdmrbL/M4oU0PhFJuGo8TejZ1vgGRMa3N6UXMwvEUeXIm5KgZ
sQPag9OaGcGODbwipw9+uq2kKjX9y+6jaw3N2/7j4o8l6OuMXBkbHCjREASRBBtR
na7ND8WEK06YdPgkhCwJc2eUnkyHAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUauXL
6U/MFI3pQiB7xeNOvds6Y2kwHwYDVR0jBBgwFoAUauoksJnDKyLk5Iu58mz1eL72
v/MwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVBNDBENTc3L2F1b2tz
Sm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2F1b2tzSm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVB
NDBENTc3L0FGMDNGQ0I4MEExNDExRjA5NENFNTk1Mjc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmh1MwDQYJKoZIhvcNAQEL
BQADggEBABnpx0zzJBGM1C+H8jln1EQzmxm5lcQ70Pr8GH2uagBujEONL6R1gZZ6
NvftxpTCoRd7j910oRexVy830JWstGUvvBYOLV4ihDW5kEOnJXnGdG/7d155WcE6
ZAy7B/SiapEa8RcTbA3EJM20azM8TLOkUCvipMJJRcZJpRaRmNEqacvyU0zWfwTu
HM60gmY6l4lVy64CvlWJguRfh8slZx4CzcV7AYo7gMypheBclMTOvg0vD+N2rIZD
BDWpWTb6lLYj9da2iB7RzKveotes9exkBhS5Ku0XLpFQvbUKerBNJ5xuJUwTW6ze
6ywDPmfLAo4ShHrCDha1Y/jZkJKg3VE=
-----END CERTIFICATE-----
Generated at Sat Apr 5 00:37:19 2025 by rpki-client