Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/DF4FC3B03A3F11F0A6947E94DAE4EC9C.roa
File: DF4FC3B03A3F11F0A6947E94DAE4EC9C.roa (raw, json)
Hash identifier: Dl0TSqxyLwHowpaC3J8U9tczR2ieYTWUoYyumnosxBM=
Subject key identifier: F4:33:B9:FE:6B:5E:16:97:26:C7:BD:A6:45:87:43:C0:48:C5:4C:9C
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0AC5
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/DF4FC3B03A3F11F0A6947E94DAE4EC9C.roa
Signing time: Mon 26 May 2025 14:44:06 +0000
ROA not before: Mon 26 May 2025 14:43:59 +0000
ROA not after: Sat 23 May 2026 14:43:59 +0000
asID: 43641
IP address blocks: 102.135.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Jun 2025 02:51:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2757 (0xac5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: May 26 14:43:59 2025 GMT
Not After : May 23 14:43:59 2026 GMT
Subject: CN=68347e36-de81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:7f:6b:45:55:0b:c4:55:25:2c:ff:3c:a4:26:
c7:c5:f3:0a:d6:48:e3:e1:f2:f1:01:46:d6:37:78:
bc:c5:2e:00:55:26:8a:b9:b5:8d:f1:c5:45:1d:cc:
f1:18:5e:6a:4c:d8:64:57:ac:6e:92:9c:8b:19:0d:
2b:de:67:00:d3:c7:fd:e6:e5:4f:2d:61:32:8f:53:
2d:b1:29:14:66:3c:f9:c6:93:f5:4b:89:59:c4:ab:
59:3c:4c:9c:f4:01:90:56:4a:86:00:1e:f1:f9:fd:
48:88:4b:4c:5c:68:f5:e5:38:93:fe:77:e8:04:e5:
c9:1c:c2:1b:03:fe:ee:87:eb:43:85:51:0c:ec:f8:
3f:b0:30:3b:4c:ac:84:d2:12:65:60:ef:19:4d:75:
ea:ba:26:4c:a3:79:4c:57:91:af:48:3c:4c:2f:13:
cd:63:d0:ba:f8:f0:8b:59:77:68:19:cf:b3:53:cd:
5f:1f:91:5f:07:f3:a1:ea:af:62:d4:8d:ae:4e:70:
5f:7b:4b:8f:4f:88:de:0b:12:04:0c:2e:6b:c1:b5:
65:77:18:6f:85:8c:8f:33:95:af:09:48:1f:e3:3a:
2a:28:f3:d6:d9:c0:73:20:ba:51:6f:d9:9e:1b:be:
da:e9:b9:fa:c0:48:30:1d:62:59:81:1f:bf:c1:58:
65:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:33:B9:FE:6B:5E:16:97:26:C7:BD:A6:45:87:43:C0:48:C5:4C:9C
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/DF4FC3B03A3F11F0A6947E94DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.7.0/24
Signature Algorithm: sha256WithRSAEncryption
90:fa:47:af:cc:2f:41:ec:2e:4d:78:5c:50:ce:e5:48:b1:f3:
d4:71:1a:04:b0:6d:44:d4:5d:41:b2:da:e3:45:ec:0f:8b:9a:
f5:fb:99:f4:6a:27:c0:14:b3:ad:6e:f7:f3:27:1a:e2:54:f9:
ca:dc:3a:05:a0:e5:c3:bb:d7:45:57:26:b6:e6:16:d4:af:5f:
26:17:5d:2c:34:5e:43:e3:3b:86:9b:96:c2:8a:e7:f1:c7:93:
c4:f0:7c:2d:ab:8b:ca:b5:65:db:67:20:59:70:9d:d1:26:d2:
d8:ed:65:63:6f:04:08:3b:d0:4a:3b:99:e4:60:32:ab:09:55:
85:60:e2:51:de:bd:49:9a:c4:92:5c:6d:8e:aa:3a:3c:38:d0:
a0:d8:61:78:ca:c8:93:bd:c1:80:5e:62:6b:f5:9b:19:41:67:
13:97:9c:65:22:f4:e1:68:3a:5d:12:95:ea:89:61:d7:bf:80:
6d:8b:91:9c:cb:e0:8e:10:23:01:25:5d:48:3d:f7:d6:85:a3:
c6:d7:85:e5:9d:9f:da:90:7f:6b:ff:18:d8:88:d7:d4:56:a0:
30:67:52:ac:13:ec:f2:a4:50:ac:aa:bc:73:c7:15:a3:85:07:
8f:ce:f6:c6:de:5a:fb:0c:11:cb:15:0a:93:4c:cf:32:e4:3c:
30:1c:28:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:18:55 2025 by rpki-client