Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/B72B61B6D33611EFA7D343A0762E951A.roa
File: B72B61B6D33611EFA7D343A0762E951A.roa (raw, json)
Hash identifier: oDgojF6YuVyfluoDllE9idmvYbXlnfvpemvEK+z0icI=
Subject key identifier: 58:BA:18:65:A7:77:96:FD:25:F7:85:AD:D4:EC:D1:89:F9:1D:57:E1
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0554
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/B72B61B6D33611EFA7D343A0762E951A.roa
Signing time: Wed 15 Jan 2025 11:49:03 +0000
ROA not before: Wed 15 Jan 2025 11:48:52 +0000
ROA not after: Thu 15 Jan 2026 11:48:52 +0000
asID: 53356
IP address blocks: 102.135.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 05 Apr 2025 05:10:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1364 (0x554)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF
Validity
Not Before: Jan 15 11:48:52 2025 GMT
Not After : Jan 15 11:48:52 2026 GMT
Subject: CN=6787a0af-fe1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:03:14:fd:c1:12:56:03:80:45:60:7d:fd:01:
8a:7b:3a:29:cc:7d:4c:8d:13:c6:fc:81:bd:e2:54:
36:80:ce:7b:b1:31:d1:01:ae:09:cd:31:b3:cc:36:
43:55:89:a6:74:f4:60:66:2d:d8:49:99:c6:c1:3e:
7d:b5:5f:90:d0:c8:84:cc:7b:98:c6:d0:b3:4f:39:
18:07:1f:11:d7:c0:87:5d:24:a1:a8:a8:3c:24:50:
2a:02:ec:8f:26:a4:81:45:d7:29:c6:47:be:01:6e:
42:cb:ec:14:16:e7:17:03:8d:73:d7:ac:ef:1c:6f:
f0:8c:1e:a6:9a:c1:19:25:9e:a9:a6:76:ea:57:9c:
41:b9:5f:67:c9:dd:49:a7:be:01:08:3e:63:c3:34:
0d:3d:22:95:2c:23:5e:e0:95:e5:51:59:fc:56:d3:
60:03:98:cf:be:22:eb:a2:fd:8c:4f:9f:bf:64:2e:
e6:c5:f7:3d:33:08:ce:15:a8:4a:6b:5b:fe:12:ab:
e6:1b:e0:69:16:77:bb:33:53:99:14:98:09:73:8b:
7e:23:a8:9e:22:42:9d:68:b3:2c:f7:ae:2d:56:69:
78:1e:37:bd:09:ed:16:59:49:df:12:e8:d0:fd:bb:
8c:bf:36:4b:3f:10:fd:4c:ee:44:d5:c9:9d:04:ed:
a7:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:BA:18:65:A7:77:96:FD:25:F7:85:AD:D4:EC:D1:89:F9:1D:57:E1
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/B72B61B6D33611EFA7D343A0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.47.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:85:e7:2c:01:09:a8:49:fc:14:88:1e:f2:de:c7:7f:c3:b5:
0f:2a:0c:37:96:eb:06:0a:b4:13:93:2f:20:13:32:a8:f7:5b:
ed:2f:1d:68:c6:44:e8:b0:5e:3a:8d:40:06:45:2c:c9:e4:2c:
07:77:21:d5:73:7e:00:86:95:d6:2b:07:e2:6a:9b:98:5a:b1:
a2:88:0b:50:a8:80:e7:05:5e:87:96:2c:f0:17:ce:87:22:0f:
bc:ab:a8:96:2a:49:01:1b:1b:dd:d1:16:fc:12:ca:2d:2c:15:
c7:26:36:77:37:81:51:c8:e0:50:1d:0b:b3:87:ee:35:fc:77:
f2:a7:3e:7f:7c:36:64:d7:51:67:4a:0f:9f:e0:68:e6:2c:55:
c3:a7:5c:b9:6c:42:18:43:a3:f6:42:83:a3:38:91:99:2d:a0:
4a:47:22:e4:91:79:8f:d5:a1:b8:6d:99:fa:4d:20:38:67:c5:
be:9d:97:1e:94:95:1f:b9:d5:3c:b4:40:b0:30:ba:d3:ae:16:
d5:1b:3c:f0:71:91:e5:bf:4d:08:a8:9c:5c:e0:24:b0:1c:e1:
a8:e0:b4:98:47:b0:7a:8a:ed:de:ba:a8:48:78:62:f0:58:73:
b1:ee:db:24:1d:6e:92:4f:a4:23:48:f2:5d:8d:88:62:c9:c6:
a5:88:3f:d4
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBVQwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
M0JBMTlBRjExMC8GA1UEBRMoNkFFQTI0QjA5OUMzMkIyMkU0RTQ4QkI5RjI2Q0Y1
NzhCRUY2QkZGMzAeFw0yNTAxMTUxMTQ4NTJaFw0yNjAxMTUxMTQ4NTJaMBgxFjAU
BgNVBAMTDTY3ODdhMGFmLWZlMWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCaAxT9wRJWA4BFYH39AYp7OinMfUyNE8b8gb3iVDaAznuxMdEBrgnNMbPM
NkNViaZ09GBmLdhJmcbBPn21X5DQyITMe5jG0LNPORgHHxHXwIddJKGoqDwkUCoC
7I8mpIFF1ynGR74BbkLL7BQW5xcDjXPXrO8cb/CMHqaawRklnqmmdupXnEG5X2fJ
3UmnvgEIPmPDNA09IpUsI17gleVRWfxW02ADmM++Iuui/YxPn79kLubF9z0zCM4V
qEprW/4Sq+Yb4GkWd7szU5kUmAlzi34jqJ4iQp1osyz3ri1WaXgeN70J7RZZSd8S
6ND9u4y/Nks/EP1M7kTVyZ0E7acJAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUWLoY
Zad3lv0l94Wt1OzRifkdV+EwHwYDVR0jBBgwFoAUauoksJnDKyLk5Iu58mz1eL72
v/MwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVBNDBENTc3L2F1b2tz
Sm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2F1b2tzSm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVB
NDBENTc3L0I3MkI2MUI2RDMzNjExRUZBN0QzNDNBMDc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmhy8wDQYJKoZIhvcNAQEL
BQADggEBABuF5ywBCahJ/BSIHvLex3/DtQ8qDDeW6wYKtBOTLyATMqj3W+0vHWjG
ROiwXjqNQAZFLMnkLAd3IdVzfgCGldYrB+Jqm5hasaKIC1CogOcFXoeWLPAXzoci
D7yrqJYqSQEbG93RFvwSyi0sFccmNnc3gVHI4FAdC7OH7jX8d/KnPn98NmTXUWdK
D5/gaOYsVcOnXLlsQhhDo/ZCg6M4kZktoEpHIuSReY/VobhtmfpNIDhnxb6dlx6U
lR+51Ty0QLAwutOuFtUbPPBxkeW/TQionFzgJLAc4ajgtJhHsHqK7d66qEh4YvBY
c7Hu2yQdbpJPpCNI8l2NiGLJxqWIP9Q=
-----END CERTIFICATE-----
Generated at Fri Apr 4 01:41:03 2025 by rpki-client