Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/2D4761227D9311F0AB139EE3DAE4EC9C.roa
File: 2D4761227D9311F0AB139EE3DAE4EC9C.roa (raw, json)
Hash identifier: CjxayLMaOYI/9euOxVEa0uRMjUQyMX4HUYx1Nv702ys=
Subject key identifier: B2:C6:FC:68:72:01:55:37:E5:F4:2A:1D:54:C1:56:12:2E:49:93:FE
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0CFF
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/2D4761227D9311F0AB139EE3DAE4EC9C.roa
Signing time: Wed 20 Aug 2025 06:59:13 +0000
ROA not before: Wed 20 Aug 2025 06:59:08 +0000
ROA not after: Thu 20 Aug 2026 06:59:08 +0000
asID: 398704
IP address blocks: 102.135.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3327 (0xcff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Aug 20 06:59:08 2025 GMT
Not After : Aug 20 06:59:08 2026 GMT
Subject: CN=68a57240-15ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:39:26:49:71:44:d0:e9:72:02:0f:be:b4:ee:
07:50:05:bf:05:92:60:82:45:19:77:23:0d:97:6a:
0b:10:66:01:6d:88:02:a1:b1:d4:09:45:b0:10:d9:
30:7f:66:d3:94:a2:a1:4c:4e:4b:0d:77:4f:e7:b2:
c7:45:29:82:95:03:41:5c:bd:76:2d:ea:82:82:c6:
fc:74:7e:a1:27:2b:79:b4:bb:94:57:f5:b1:99:72:
c4:31:a0:6f:d2:22:2c:e6:b7:d9:30:b3:4f:c1:90:
85:30:1b:a1:a6:3e:69:da:9e:33:85:1b:32:3c:52:
46:b0:f3:d5:a3:18:4b:a4:69:5d:6e:8e:94:c1:8f:
31:df:90:36:06:9e:e8:81:78:00:86:1c:c1:ad:70:
01:9b:fe:01:00:1b:a7:9d:c7:cd:58:05:80:2f:a6:
b6:d5:ee:14:42:4b:92:84:b9:bb:7d:62:63:5f:31:
80:67:d9:3b:03:9f:01:5b:f2:e2:10:50:5b:58:82:
8a:03:49:f9:ab:0c:51:54:0a:1e:31:9b:20:02:d2:
49:c9:1e:e7:89:10:6c:4e:4e:f7:f6:04:67:69:7c:
b7:3c:7f:f3:37:6d:31:fe:01:18:4b:d2:4b:2c:1f:
a4:7c:41:98:17:84:54:5d:68:30:3a:56:6e:68:e1:
61:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:C6:FC:68:72:01:55:37:E5:F4:2A:1D:54:C1:56:12:2E:49:93:FE
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/2D4761227D9311F0AB139EE3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.106.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:ad:16:61:f5:d4:70:f5:9a:8e:35:c8:55:66:28:85:94:40:
c4:bc:30:a8:5b:0a:ee:86:9c:d0:b3:e1:a4:72:1b:f9:1b:7d:
07:c0:c9:c5:08:f7:9e:44:15:75:33:67:4d:0d:48:58:56:c4:
10:b3:a8:3e:b6:64:7b:02:7e:38:21:a7:05:5f:cc:33:78:f4:
d4:45:8c:73:2c:ff:7f:2c:1e:a8:bd:68:b1:d4:ea:3b:bb:99:
17:ec:57:fd:48:90:a5:6e:a1:86:df:00:aa:da:73:7a:14:3f:
7f:e4:71:43:33:a2:7d:6f:57:8c:e9:89:92:54:61:d1:3b:8c:
92:38:35:e1:af:d2:13:9b:01:8d:8c:f3:9e:8b:da:2d:77:f9:
3b:3d:b8:11:c1:fd:29:cc:00:5d:67:21:f0:6e:5a:1c:ba:4e:
9a:7a:84:30:06:01:42:56:f6:2a:0f:59:26:19:9d:97:29:e1:
8a:4e:92:cd:3b:bf:cb:88:22:55:24:4b:76:04:46:9e:58:e8:
c1:4c:23:d7:67:e8:01:11:0e:66:f9:5a:04:43:77:b9:10:22:
77:75:82:b9:4e:9f:be:68:d0:8d:f1:42:94:36:4f:40:dc:5b:
e2:64:20:50:4b:02:4b:da:d6:0f:d9:75:7e:33:aa:49:5a:ee:
81:72:2b:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:46:58 2025 by rpki-client