Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/042811DA533E11F0A8FCD0C2DAE4EC9C.roa
File: 042811DA533E11F0A8FCD0C2DAE4EC9C.roa (raw, json)
Hash identifier: e5oLHM/0woiqrGh1MplJo5Y68wPzxTu9M0cCkpTMAAE=
Subject key identifier: 51:DA:66:67:0A:4C:A2:4A:37:5B:91:12:21:8F:AD:4D:8A:2F:E0:AE
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0C0D
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/042811DA533E11F0A8FCD0C2DAE4EC9C.roa
Signing time: Fri 27 Jun 2025 10:03:47 +0000
ROA not before: Fri 27 Jun 2025 10:03:43 +0000
ROA not after: Wed 24 Jun 2026 10:03:43 +0000
asID: 9304
IP address blocks: 196.251.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 30 Jun 2025 02:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3085 (0xc0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Jun 27 10:03:43 2025 GMT
Not After : Jun 24 10:03:43 2026 GMT
Subject: CN=685e6c83-6f93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b2:6d:56:db:05:9f:03:97:a5:c6:90:da:c6:
07:d5:69:d9:d1:d2:5a:78:e4:9f:fc:49:b2:6d:72:
3b:e8:e7:e0:a8:1f:32:d9:c8:7b:77:f3:9a:4c:0d:
c4:fe:b6:94:11:ff:f3:36:1c:04:2c:f1:77:6b:dd:
50:c6:42:26:0e:04:16:89:80:64:05:3e:89:2e:3f:
40:7f:cc:6e:29:e3:e4:ab:e1:c6:d9:e9:2b:60:44:
cf:74:0d:d0:1c:fd:4c:fd:5d:93:df:6c:86:e6:ef:
59:b1:8c:0c:cd:92:ab:c4:ed:74:9d:b5:b9:80:08:
e0:e8:bb:dc:0d:62:68:be:54:76:d4:6c:ca:ec:ed:
f2:b8:03:87:1e:b5:09:d9:ad:f3:76:17:29:75:f9:
10:fc:aa:3f:76:5e:a3:ee:96:8f:c0:22:78:65:ac:
df:e5:10:6f:4b:f0:91:12:53:99:ea:53:96:10:3d:
00:66:ae:6b:32:31:70:6f:72:e4:aa:cc:e1:1f:68:
60:bf:a6:70:b6:48:2d:8d:3c:15:28:43:76:a5:b8:
b9:04:a2:87:de:24:c1:90:aa:86:74:9e:26:5c:dc:
d2:5d:d6:cf:ee:d3:fc:db:60:b3:b7:66:8b:b3:18:
26:6f:b0:0b:9e:59:35:c0:db:9c:8a:f4:9b:e1:08:
da:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:DA:66:67:0A:4C:A2:4A:37:5B:91:12:21:8F:AD:4D:8A:2F:E0:AE
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/042811DA533E11F0A8FCD0C2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.75.0/24
Signature Algorithm: sha256WithRSAEncryption
59:86:29:c9:4a:b4:d2:5c:e4:d2:be:ca:c6:5c:e2:1f:88:66:
4f:7c:96:c1:fd:de:06:8a:8c:dd:d5:bc:97:25:21:70:15:1f:
2f:bd:c9:86:d3:93:04:d9:33:74:80:7e:49:a7:d3:da:76:fe:
24:9d:91:f4:da:5f:5c:26:3e:df:2f:70:2b:d3:3e:d0:4f:84:
f9:12:dd:97:33:4e:ce:ae:44:b1:24:f3:91:e3:35:a7:99:cd:
09:ea:1a:a0:8a:07:d9:bb:73:53:9f:39:19:08:5c:ff:1a:d0:
06:3b:09:15:ac:0a:88:57:9f:31:04:97:ed:d8:34:64:04:6d:
97:e8:70:19:90:48:f3:3d:07:04:83:91:a5:d9:05:eb:4c:1d:
6c:bf:05:10:c3:44:8c:6f:f5:9c:f2:37:47:cc:d3:af:3c:16:
4d:1d:ee:37:57:95:88:2f:f0:c0:b0:50:1f:48:e3:f6:8c:83:
46:5a:7d:b5:25:b4:c5:05:c3:65:f3:03:33:f5:25:da:7b:b9:
cb:3d:bf:84:7c:c4:76:81:e1:06:a6:c5:9e:88:0b:d6:90:6c:
17:02:36:47:5e:7d:ca:21:d2:f8:0f:a7:aa:9f:bb:80:29:a3:
e7:1d:6f:b6:79:9a:ea:ff:4f:0d:53:46:28:60:31:46:de:58:
2f:15:e9:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 03:51:38 2025 by rpki-client