Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/D5C13ED60AE811F0A9FF5A5A762E951A.roa
File: D5C13ED60AE811F0A9FF5A5A762E951A.roa (raw, json)
Hash identifier: llmH5x+RtIZ9DiTG4M4jMx71S9SS5W2KkWQu0aSR/RY=
Subject key identifier: 45:2B:A4:6A:49:D1:2B:4D:75:23:07:11:ED:FE:74:8F:CC:32:43:B6
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0899
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/D5C13ED60AE811F0A9FF5A5A762E951A.roa
Signing time: Thu 27 Mar 2025 08:52:38 +0000
ROA not before: Thu 27 Mar 2025 08:52:34 +0000
ROA not after: Tue 10 Feb 2026 08:52:34 +0000
asID: 48266
IP address blocks: 102.135.11.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2201 (0x899)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF
Validity
Not Before: Mar 27 08:52:34 2025 GMT
Not After : Feb 10 08:52:34 2026 GMT
Subject: CN=67e511d6-5942
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d6:fd:47:26:5f:ba:a7:19:51:74:33:d4:12:
35:c2:b8:c0:5f:f7:52:0e:13:a4:17:76:ca:d4:64:
c0:71:74:d0:90:ba:1f:d1:5d:72:57:b4:54:d5:e1:
90:b5:8b:8c:9b:ba:47:10:9b:fc:ae:40:56:da:27:
68:eb:52:d8:fb:5c:3f:e0:61:27:19:d2:2d:5c:da:
bb:fb:a1:be:a9:c6:af:19:9b:69:19:ff:1f:0d:9b:
86:a8:53:79:ec:d8:b3:40:63:4f:f8:21:77:9f:e5:
47:5f:14:d0:73:16:af:a8:2e:a1:9d:89:79:89:29:
db:87:18:f1:09:b1:c7:ac:2b:51:73:98:da:f9:4d:
c0:e1:eb:87:23:0c:dd:17:d2:80:32:36:e7:26:40:
dd:85:0e:4b:9b:f1:14:45:23:0d:20:db:48:8d:24:
94:29:aa:67:34:06:cc:87:5d:c2:40:31:92:3c:7a:
9f:c8:80:08:e2:b3:e7:68:d1:40:4a:ac:71:43:e8:
cb:9c:79:6b:39:67:02:07:3d:91:5e:af:81:50:09:
05:d2:2b:fd:33:25:ef:5f:a4:be:0b:fc:3e:67:84:
df:fa:69:c1:f6:e3:74:37:83:51:55:04:4e:6c:a2:
90:70:7a:63:69:2d:b5:70:86:7b:b5:94:16:c3:af:
ec:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:2B:A4:6A:49:D1:2B:4D:75:23:07:11:ED:FE:74:8F:CC:32:43:B6
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/D5C13ED60AE811F0A9FF5A5A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.11.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:b7:28:88:a0:3c:b1:ca:32:61:01:4c:2d:bd:a6:14:ad:df:
47:f4:db:ac:ed:e8:56:e2:33:73:83:dd:f4:c9:be:4e:30:75:
89:ea:03:fd:39:5d:b6:84:32:3f:4b:19:b3:28:ef:05:5d:96:
13:f4:89:c3:8a:d6:a4:b2:50:42:3b:4c:c6:2d:ed:57:56:ef:
19:35:ad:9a:47:1d:e2:b5:2f:89:8a:55:d2:ca:5e:f2:79:11:
27:4e:e2:7b:07:28:25:0d:72:64:ab:29:fd:d5:7d:ac:87:24:
03:c2:14:f0:3c:bf:95:58:69:87:c0:9b:c3:a9:3e:fd:d6:db:
1c:7a:00:8d:5e:91:84:72:ed:8e:cc:82:f7:ff:38:bc:1c:b5:
e1:32:ba:82:a5:d3:cf:b1:f6:f5:e6:22:ac:82:3d:56:75:d5:
28:a5:c0:09:6d:6e:49:c1:0f:a1:64:7a:ae:e2:55:24:fa:76:
40:c1:41:f3:16:d8:3d:74:df:d2:f7:da:d6:5c:be:13:5a:11:
d2:a3:ff:98:2d:aa:c8:25:9d:60:e1:9e:9f:fd:f1:db:02:0a:
49:04:3d:2a:d2:67:c9:97:5b:2d:e3:bb:73:2d:7d:bb:6b:e2:
5e:dd:a9:bf:99:40:6f:c2:9a:b1:de:a3:d8:5b:01:6c:09:8f:
96:13:24:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:43:16 2025 by rpki-client