Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/5E89ADFA296D11F08B474FA7DAE4EC9C.roa
File: 5E89ADFA296D11F08B474FA7DAE4EC9C.roa (raw, json)
Hash identifier: ediCTOKtUDLs6eUHd0yI00WhXHF/TKhYTekvNcmsGeA=
Subject key identifier: 6A:E2:F2:A2:62:34:DA:F0:99:CE:57:29:7E:BE:A8:D1:08:19:70:0B
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 09CB
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/5E89ADFA296D11F08B474FA7DAE4EC9C.roa
Signing time: Mon 05 May 2025 04:56:57 +0000
ROA not before: Mon 05 May 2025 04:56:52 +0000
ROA not after: Tue 10 Feb 2026 04:56:52 +0000
asID: 213659
IP address blocks: 102.135.30.0/24 maxlen: 24
102.135.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 09 May 2025 00:06:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2507 (0x9cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: May 5 04:56:52 2025 GMT
Not After : Feb 10 04:56:52 2026 GMT
Subject: CN=68184519-20c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:68:c9:c9:d6:ef:40:5a:43:fd:56:7c:ec:88:
bc:02:81:c9:70:02:6c:2f:a2:d2:eb:4f:ef:f3:a9:
a8:29:7d:af:3f:09:5d:bc:06:3a:8e:bc:4e:f0:9d:
4d:96:2e:54:68:3f:c2:fa:dd:56:0b:82:cf:07:4c:
64:76:79:a6:3f:81:9a:e8:84:07:d5:62:69:ee:f2:
7e:22:f9:06:e3:d4:e8:35:00:e4:db:fe:f2:de:94:
8c:cc:d9:07:fd:d9:18:2e:05:60:e5:48:52:12:b6:
78:cd:30:65:de:28:83:95:e2:5a:fe:e6:53:b0:63:
1a:fa:0c:f6:da:3e:29:95:a3:3d:fb:9c:03:9b:d9:
84:64:30:b4:65:7a:41:85:06:a3:69:fe:8d:49:b5:
07:fa:3e:46:4e:b9:1a:02:7e:b7:70:ae:a3:aa:1a:
cf:fd:b0:1e:6b:a2:65:82:80:f9:e9:e7:58:ba:0e:
7b:58:78:16:a7:67:98:38:41:b6:84:0a:54:82:6a:
a9:d4:11:b3:f9:83:da:eb:ec:4f:d2:7c:03:5c:69:
4a:be:89:f1:ca:b8:59:9a:76:f1:b2:a3:0c:6e:ef:
74:20:9b:1d:fc:02:93:dc:a0:02:65:d9:5b:c3:67:
6e:1f:b5:59:c2:67:dd:86:07:3b:8b:6f:b2:83:f1:
43:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:E2:F2:A2:62:34:DA:F0:99:CE:57:29:7E:BE:A8:D1:08:19:70:0B
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/5E89ADFA296D11F08B474FA7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.30.0/23
Signature Algorithm: sha256WithRSAEncryption
3a:8b:5c:23:9a:5a:f8:bc:12:b3:ff:c7:20:23:9c:93:9e:2f:
2b:b8:b7:37:15:c6:be:78:c5:84:b6:10:80:d1:18:11:69:d2:
65:a0:72:15:00:a1:2d:da:61:ad:d6:43:b7:f4:f4:be:cb:2e:
2e:80:b5:6e:6d:3d:33:4b:db:75:a6:5a:1c:0e:75:e5:b2:35:
d5:f6:ff:50:e2:23:c3:f9:f6:00:72:b5:0b:91:26:23:ef:55:
db:06:af:11:44:a6:c2:65:93:1e:52:9d:82:9b:ef:1d:d3:60:
ce:94:36:60:56:56:21:da:b2:62:d3:5e:46:4c:a0:f0:bd:75:
3f:2b:d9:b0:6c:7a:c9:bd:4d:b3:c7:50:1e:f0:74:76:47:c1:
0c:62:32:f0:cb:6b:70:eb:ff:cf:63:0d:ee:30:df:f0:d7:43:
5e:2e:8d:95:4c:bb:94:a2:03:8e:92:68:b3:1f:66:86:54:e1:
49:79:a6:3c:c5:39:01:64:aa:d2:e1:00:e8:79:05:4b:a3:7a:
22:df:e0:b0:82:4f:dd:e7:eb:a2:6b:ad:b2:72:75:e6:15:eb:
cb:a1:31:03:b0:e2:68:96:ec:2e:e4:d9:15:88:fb:1f:65:fe:
a1:87:26:d2:76:57:54:ea:4a:a0:07:32:77:b2:26:be:b8:8b:
5d:18:bc:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 06:58:33 2025 by rpki-client