Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/E76D46B6EAA411EF8557EE41762E951A.roa
File: E76D46B6EAA411EF8557EE41762E951A.roa (raw, json)
Hash identifier: 8e+haUpvYN+Y4HHPHrx6NQ8v7jnkhONs2HOALRPpQkU=
Subject key identifier: 79:75:93:BE:BD:38:15:7D:DE:4F:13:AD:67:DF:06:04:88:17:62:61
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 064E
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/E76D46B6EAA411EF8557EE41762E951A.roa
Signing time: Fri 14 Feb 2025 07:25:45 +0000
ROA not before: Fri 14 Feb 2025 07:25:41 +0000
ROA not after: Sat 14 Feb 2026 07:25:41 +0000
asID: 329007
IP address blocks: 196.251.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1614 (0x64e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF
Validity
Not Before: Feb 14 07:25:41 2025 GMT
Not After : Feb 14 07:25:41 2026 GMT
Subject: CN=67aeeff9-f567
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:45:37:19:ea:2b:fe:db:2b:9f:c5:ae:02:1d:
57:a8:d3:fa:48:4a:87:02:b3:87:c4:11:6c:d3:2b:
d1:3a:79:fa:86:d5:ae:70:e2:84:e1:c1:d0:8f:90:
ea:6d:82:b5:f0:60:47:eb:c8:4b:89:a7:1c:25:49:
b2:44:94:e6:fb:2b:9b:a6:24:77:89:4f:64:47:02:
0d:49:51:47:06:ef:a6:0f:20:ba:46:43:c1:c4:1e:
3b:b9:8a:d3:96:d9:d9:83:d0:5e:78:74:08:f8:45:
03:09:01:57:90:30:a9:dd:6d:6d:91:1c:17:4e:19:
9f:f6:50:db:38:df:0c:49:48:b8:7e:36:a6:fc:d3:
f7:31:79:30:6b:75:0d:88:2f:a9:6f:5e:46:c3:b3:
50:54:2e:6f:95:09:35:4c:dd:22:4f:17:a1:90:bc:
70:50:fd:ab:4f:5e:90:54:39:75:50:8d:e3:d9:2d:
8d:30:7c:d0:d9:78:cb:c8:e5:50:2e:bc:c9:f4:25:
30:1f:6e:78:e2:8e:54:36:f1:97:91:3e:7f:88:42:
db:2e:ef:6b:f3:cb:df:2b:21:60:8d:1c:08:42:7d:
86:f0:2b:6e:55:92:31:57:bc:3f:d1:b4:c1:45:cc:
aa:6d:21:65:53:67:9d:57:95:31:97:3d:ee:71:a7:
8a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:75:93:BE:BD:38:15:7D:DE:4F:13:AD:67:DF:06:04:88:17:62:61
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/E76D46B6EAA411EF8557EE41762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.82.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:72:6d:40:3d:e4:97:f4:2e:e4:3a:c7:7b:30:9e:c0:a8:53:
22:b0:c2:cd:d5:d0:71:7b:7e:fc:6d:ca:3e:c7:2d:fa:17:a1:
87:89:80:db:03:93:fe:e4:1b:81:b3:d9:39:34:0d:bb:ec:b7:
2e:42:4f:8a:2e:4c:fa:7d:82:96:e7:56:3e:80:a5:12:10:26:
3c:e0:dc:6b:1f:3b:98:82:74:c6:4c:e0:a2:5b:8b:0d:68:74:
e3:70:a1:e8:a2:22:8a:2a:94:76:73:ce:b4:2b:c8:0f:b7:6e:
5d:a3:0d:bb:4b:51:f4:88:af:4c:40:31:8f:6b:1b:0c:32:4e:
87:d7:56:af:cf:9e:91:0a:bd:ad:2d:0e:7a:77:a0:6b:25:c1:
07:e2:ea:68:fa:e7:ea:ff:9f:9b:9e:00:f4:82:4f:1d:47:5f:
80:e8:f0:a4:d7:87:46:1a:be:e5:d7:db:13:3f:ec:75:c6:8a:
40:62:fb:4d:b6:1a:8b:ff:d9:fa:87:9c:27:08:5f:aa:93:51:
ab:d5:73:da:10:1d:1c:bb:1d:0d:5b:61:23:a6:aa:c7:d3:3f:
fa:71:c9:e7:43:65:0c:7e:24:9a:7e:7e:3a:7a:d4:bf:2d:1f:
67:f7:2e:46:bc:75:5e:87:b0:f5:ae:44:a4:70:9a:2b:b5:bd:
0c:ee:d9:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:37:45 2025 by rpki-client