Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/D3CBE9B208A111F09DCF1875762E951A.roa
File: D3CBE9B208A111F09DCF1875762E951A.roa (raw, json)
Hash identifier: GqMgyM8KHZIgNPFpFR+XBu+VieijwDmcg/6xAG6pLL8=
Subject key identifier: CC:E6:B9:16:CC:6D:5C:EA:92:34:8E:7E:CB:13:8C:41:22:5F:2C:CB
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 07DB
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/D3CBE9B208A111F09DCF1875762E951A.roa
Signing time: Mon 24 Mar 2025 11:19:19 +0000
ROA not before: Mon 24 Mar 2025 11:19:15 +0000
ROA not after: Tue 24 Mar 2026 11:19:15 +0000
asID: 2914
IP address blocks: 196.251.105.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 06:24:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2011 (0x7db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF
Validity
Not Before: Mar 24 11:19:15 2025 GMT
Not After : Mar 24 11:19:15 2026 GMT
Subject: CN=67e13fb7-0827
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:8a:e3:33:41:ff:78:55:db:5e:fd:91:a5:ec:
65:04:dc:a0:4f:b7:8c:65:b9:f8:8f:52:e7:a6:3c:
51:da:e0:e8:16:34:c8:9b:5d:a8:bf:d1:db:6a:a8:
e0:ea:59:f8:20:ef:5f:0f:3e:f8:9f:7f:66:77:39:
f3:e5:3b:48:d1:fa:34:c5:bd:31:36:eb:5a:0d:57:
99:30:5c:ed:67:62:af:68:3e:f1:59:bb:89:da:fe:
79:96:f2:9f:77:b5:4b:60:47:28:a8:de:56:b2:16:
fc:a3:dd:22:63:20:d8:5d:aa:5e:da:ec:ef:75:bb:
df:88:e8:03:6d:4e:28:29:69:4c:0c:23:0c:ae:14:
63:d7:49:56:cd:0e:42:d1:9f:d0:94:e9:7f:c8:76:
4a:1a:59:92:72:ec:5d:24:8d:1f:e2:09:5a:e2:ad:
3c:59:8d:c8:b8:b9:54:95:a4:f1:8b:1d:f9:f4:05:
5a:f4:b9:4b:d3:8d:77:9c:8d:96:1e:47:60:47:ae:
e4:ff:bc:bd:b4:f8:2a:ea:cf:d9:b5:06:ce:c6:18:
63:5c:9e:48:2c:c8:7c:ff:0f:6b:65:be:70:2c:e9:
bc:a2:91:a0:73:81:dd:bf:93:06:12:c9:13:da:e1:
14:5b:5f:0e:f0:a0:97:de:31:eb:db:5b:93:d8:16:
b6:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:E6:B9:16:CC:6D:5C:EA:92:34:8E:7E:CB:13:8C:41:22:5F:2C:CB
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/D3CBE9B208A111F09DCF1875762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.105.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:40:96:33:ed:1a:cd:15:a4:3d:3e:89:1a:6e:c2:81:de:04:
fa:0b:64:0e:42:d4:8c:05:f1:1c:20:8f:2a:d6:15:89:fe:d5:
e5:df:54:bb:b5:c2:30:10:ba:9b:b0:6c:17:f3:be:8d:c9:35:
7e:5b:d9:10:7c:2f:2b:c0:e6:38:c7:a1:e7:1f:9e:16:79:e0:
10:e6:5c:93:a4:7c:dd:e4:2a:99:5e:7c:52:a0:48:0d:79:e2:
a1:15:4a:90:6b:09:c5:9e:cd:6e:2c:7f:be:78:20:9f:28:80:
95:26:84:4f:83:dd:16:04:72:50:c4:47:d0:db:44:80:56:b6:
4a:59:f3:28:64:1f:c9:77:be:55:81:13:3a:18:94:bd:f1:d4:
dc:7d:60:7f:55:1e:f7:40:79:2e:89:d4:ff:a3:9e:8f:90:d5:
75:df:d8:a9:99:a2:66:aa:10:98:14:23:2b:83:a3:4b:9b:cf:
06:7b:4b:b6:31:cb:b0:4e:bf:b3:fb:4c:dd:6e:81:5d:e6:e2:
a6:91:05:f1:ee:2e:53:1a:6d:7f:0a:f4:03:4a:8f:30:00:5d:
cc:2b:53:60:37:d2:ae:41:22:08:2c:73:86:91:f8:2b:24:fe:
17:e9:34:f1:50:1c:df:0b:f6:6a:d2:29:7c:92:5f:66:0e:b8:
33:00:85:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:59:15 2025 by rpki-client