Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/675E4C3E2BE211F09E5F6197DAE4EC9C.roa
File: 675E4C3E2BE211F09E5F6197DAE4EC9C.roa (raw, json)
Hash identifier: UzwHS6A0fq8DXwtMgOOMEMRtplHOr5CoRLhFT+Hw3VU=
Subject key identifier: 21:8C:25:B8:60:B7:D0:F5:5A:83:65:D3:F2:DF:3D:22:1F:6D:86:1F
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 09F4
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/675E4C3E2BE211F09E5F6197DAE4EC9C.roa
Signing time: Thu 08 May 2025 07:59:45 +0000
ROA not before: Thu 08 May 2025 07:59:40 +0000
ROA not after: Tue 01 Dec 2026 07:59:40 +0000
asID: 200010
IP address blocks: 102.135.98.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 12 May 2025 00:07:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2548 (0x9f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: May 8 07:59:40 2025 GMT
Not After : Dec 1 07:59:40 2026 GMT
Subject: CN=681c6471-0193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9b:0e:45:97:2c:47:d7:ce:0e:69:5d:f8:8d:
9b:2e:04:3d:86:3b:f0:38:2e:be:4f:71:b0:c8:ea:
f2:53:6c:7e:c5:29:f1:9c:2d:25:ad:9a:18:2d:31:
b1:22:29:05:a0:e6:0e:a9:1d:f9:00:7b:e5:47:c7:
32:ec:51:62:3e:b7:9d:ae:8e:66:a4:3d:cf:cc:e0:
a1:41:0b:56:1f:9e:cc:33:b7:7a:5c:c6:be:f4:7f:
ef:0e:2c:9d:50:2b:2b:22:06:36:9c:c0:96:b7:99:
23:20:cb:c3:11:6d:5f:77:e2:69:67:72:0f:c8:45:
7c:fb:43:9a:69:53:8d:47:e5:95:76:ed:84:4e:f0:
77:48:81:eb:88:b0:80:57:f1:f1:52:92:a0:f0:07:
b6:3d:ab:44:b6:a2:f7:8f:76:2f:b6:c9:c6:6c:9f:
73:36:24:44:3e:0c:bc:cf:d1:ea:31:72:a2:6e:94:
90:87:25:03:e2:a9:dd:cd:64:d9:79:53:85:07:84:
99:03:0e:d9:2e:4a:ab:9f:51:a2:94:79:d9:3f:a3:
c4:55:34:d6:6d:5c:83:3a:31:b3:2e:44:7f:ee:1d:
0f:1c:48:db:79:e1:af:e0:a9:35:2b:c8:eb:b5:2a:
66:44:f2:d9:53:86:57:62:f4:55:24:4b:a0:3a:0d:
7a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:8C:25:B8:60:B7:D0:F5:5A:83:65:D3:F2:DF:3D:22:1F:6D:86:1F
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/675E4C3E2BE211F09E5F6197DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.98.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:d7:26:3a:56:22:90:7e:59:3e:f2:62:65:f0:61:18:75:e9:
51:75:4e:93:0f:2d:cc:8c:b3:00:2e:9d:d6:3c:d8:6e:f1:c2:
cf:a4:e1:03:d3:ed:2d:43:4b:95:18:1d:b3:9c:93:32:db:42:
fc:4a:7c:77:ba:26:d6:a5:ee:99:b2:4c:c4:a2:38:11:33:d7:
b9:ed:1f:7e:ac:a3:9a:81:a6:4f:af:f4:f6:84:ba:07:99:61:
d1:15:a4:5b:7f:bf:5f:16:43:e2:fa:d4:28:50:a9:b3:63:21:
cc:f1:90:a7:e5:71:6a:4f:ce:1a:a5:7c:4a:e1:1d:c4:7c:df:
7b:6b:a8:c9:3e:4c:75:cc:dd:af:15:16:88:72:93:c7:ba:5f:
0b:db:bc:c5:b2:ab:29:c5:06:c6:c1:d5:64:52:33:5a:56:33:
b4:ce:36:48:14:ed:89:10:b0:5d:a1:ae:30:62:40:df:91:7a:
6e:6f:f8:f4:c9:c2:8f:3e:f1:f4:cd:eb:ed:ed:27:bf:70:f5:
14:c8:f9:63:73:0a:61:24:9a:47:25:36:2b:7a:b6:85:03:5a:
e8:42:b9:2c:64:b4:78:03:2e:78:2b:b6:ea:c2:e6:71:e5:71:
c8:14:49:bd:22:ed:3c:00:77:d4:45:f6:21:78:f2:fe:43:9f:
e0:42:c4:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 14:34:57 2025 by rpki-client