Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/4996321E275711F0B42D63AADAE4EC9C.roa
File: 4996321E275711F0B42D63AADAE4EC9C.roa (raw, json)
Hash identifier: cuZDoMSFT3POrzWXgAIGcYkTKn4KoXVLqaSJubN1fEg=
Subject key identifier: 7A:59:5B:1A:06:B5:9E:6F:22:14:FB:04:AE:46:D2:82:66:8B:A0:15
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 09AC
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/4996321E275711F0B42D63AADAE4EC9C.roa
Signing time: Fri 02 May 2025 13:13:50 +0000
ROA not before: Fri 02 May 2025 13:13:45 +0000
ROA not after: Thu 01 Jan 2026 13:13:45 +0000
asID: 329007
IP address blocks: 102.135.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 12 May 2025 00:07:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2476 (0x9ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: May 2 13:13:45 2025 GMT
Not After : Jan 1 13:13:45 2026 GMT
Subject: CN=6814c50e-468b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:2e:c3:55:8e:b0:65:77:1c:8c:35:31:99:0d:
08:49:56:48:9c:79:7f:6a:62:4d:74:80:58:e0:a6:
ee:3f:1d:1c:d4:e0:e9:3b:90:0e:4c:3f:d8:6b:48:
a6:c4:97:74:11:11:ff:dc:9e:b8:84:1c:e0:01:8f:
b1:84:ce:fa:e4:d0:70:6e:a2:7c:0d:32:aa:ad:64:
89:36:b2:a8:bd:b1:9e:8f:4f:fa:d0:0f:b9:af:a5:
de:ae:32:8a:1b:c4:6d:89:93:0b:2c:ee:49:79:b0:
81:0a:2a:8b:22:05:5f:df:9c:bc:18:4f:8f:f6:e2:
28:cb:50:01:98:94:82:16:3f:a3:ce:0f:2d:fa:04:
9d:fc:1c:5f:3d:b7:2d:90:1d:93:77:d6:9d:09:b8:
b1:62:07:18:1a:ac:20:65:47:b6:c8:32:62:76:a1:
66:cf:04:35:3f:db:95:30:77:c1:f0:47:7d:a1:ef:
ac:f3:02:e3:8f:da:3c:ba:6f:9b:a4:16:09:81:10:
23:b1:b4:ee:fd:98:14:a9:31:41:56:67:11:99:a4:
84:5b:28:62:8c:fc:18:4e:92:95:cb:1d:60:e7:c0:
44:d5:c2:bc:24:f7:b6:59:34:f3:e1:a5:98:a7:21:
1e:f0:de:9a:e3:1b:0f:43:98:4f:cd:35:9f:74:6d:
81:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:59:5B:1A:06:B5:9E:6F:22:14:FB:04:AE:46:D2:82:66:8B:A0:15
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/4996321E275711F0B42D63AADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.3.0/24
Signature Algorithm: sha256WithRSAEncryption
80:22:a7:12:0f:b5:24:f8:9e:8b:2c:96:d2:c0:ea:7e:6e:50:
64:f2:8b:f1:b0:38:ad:39:87:2f:ef:76:9d:50:d2:00:0a:04:
3d:6c:6f:51:4c:66:9c:bb:40:e6:8d:9c:f3:47:77:c9:29:3a:
61:f6:13:aa:5d:55:c7:96:05:7b:6f:42:53:93:07:04:38:9a:
33:ba:72:81:0f:3e:ee:9b:38:0c:0f:49:9e:05:b1:10:21:22:
48:97:74:eb:34:2c:5b:a8:7c:86:fd:d9:4c:00:b7:36:f0:c1:
a6:50:ee:25:2a:79:c8:36:4a:2f:fb:40:31:5d:59:12:4d:af:
80:51:45:38:08:5e:57:26:a9:66:4f:cd:99:90:6d:f0:83:6e:
c9:63:24:76:ec:f5:1f:da:a8:04:57:6f:0a:15:1e:bc:85:f5:
49:e8:da:de:34:22:ba:08:17:ca:e4:59:22:81:fa:a9:0f:04:
d6:cb:67:6f:f3:29:8a:8f:4c:89:f4:b7:98:a1:39:45:d0:2c:
ca:d3:2f:4a:3d:5d:60:92:39:1e:ae:3e:a8:b3:0a:12:8d:2f:
e6:a9:f9:ad:46:aa:30:b2:a4:85:bc:38:e6:ca:2b:48:da:3f:
98:74:a2:f4:8a:a9:8b:9c:7e:05:5d:af:dd:0e:ca:e4:bb:29:
1f:4a:ef:52
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICCawwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
M0JBMTlBRjExMC8GA1UEBRMoNkFFQTI0QjA5OUMzMkIyMkU0RTQ4QkI5RjI2Q0Y1
NzhCRUY2QkZGMzAeFw0yNTA1MDIxMzEzNDVaFw0yNjAxMDExMzEzNDVaMBgxFjAU
BgNVBAMTDTY4MTRjNTBlLTQ2OGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDZLsNVjrBldxyMNTGZDQhJVkiceX9qYk10gFjgpu4/HRzU4Ok7kA5MP9hr
SKbEl3QREf/cnriEHOABj7GEzvrk0HBuonwNMqqtZIk2sqi9sZ6PT/rQD7mvpd6u
MoobxG2Jkwss7kl5sIEKKosiBV/fnLwYT4/24ijLUAGYlIIWP6PODy36BJ38HF89
ty2QHZN31p0JuLFiBxgarCBlR7bIMmJ2oWbPBDU/25Uwd8HwR32h76zzAuOP2jy6
b5ukFgmBECOxtO79mBSpMUFWZxGZpIRbKGKM/BhOkpXLHWDnwETVwrwk97ZZNPPh
pZinIR7w3prjGw9DmE/NNZ90bYHvAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUellb
Gga1nm8iFPsErkbSgmaLoBUwHwYDVR0jBBgwFoAUauoksJnDKyLk5Iu58mz1eL72
v/MwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVBNDBENTc3L2F1b2tz
Sm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2F1b2tzSm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVB
NDBENTc3LzQ5OTYzMjFFMjc1NzExRjBCNDJENjNBQURBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmhwMwDQYJKoZIhvcNAQEL
BQADggEBAIAipxIPtST4nossltLA6n5uUGTyi/GwOK05hy/vdp1Q0gAKBD1sb1FM
Zpy7QOaNnPNHd8kpOmH2E6pdVceWBXtvQlOTBwQ4mjO6coEPPu6bOAwPSZ4FsRAh
IkiXdOs0LFuofIb92UwAtzbwwaZQ7iUqecg2Si/7QDFdWRJNr4BRRTgIXlcmqWZP
zZmQbfCDbsljJHbs9R/aqARXbwoVHryF9Uno2t40IroIF8rkWSKB+qkPBNbLZ2/z
KYqPTIn0t5ihOUXQLMrTL0o9XWCSOR6uPqizChKNL+ap+a1GqjCypIW8OObKK0ja
P5h0ovSKqYucfgVdr90OyuS7KR9K71I=
-----END CERTIFICATE-----
Generated at Sat May 10 07:51:54 2025 by rpki-client