Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/AA048AFA2B1811F08C57B7CFDAE4EC9C.roa
File: AA048AFA2B1811F08C57B7CFDAE4EC9C.roa (raw, json)
Hash identifier: voBv2G/QZEM6Eg55ARC3qE7hGoDOWWVlRmq5L9/N3lo=
Subject key identifier: BB:C3:D0:4E:D9:D4:AA:F6:FB:79:C6:C3:22:D9:50:A1:97:10:55:81
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 09E4
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/AA048AFA2B1811F08C57B7CFDAE4EC9C.roa
Signing time: Wed 07 May 2025 07:55:38 +0000
ROA not before: Wed 07 May 2025 07:55:34 +0000
ROA not after: Tue 10 Feb 2026 07:55:34 +0000
asID: 213659
IP address blocks: 102.135.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 12 May 2025 00:07:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2532 (0x9e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: May 7 07:55:34 2025 GMT
Not After : Feb 10 07:55:34 2026 GMT
Subject: CN=681b11fa-4828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c8:73:2f:15:e4:ea:56:d5:e8:d5:39:c9:89:
19:38:db:34:7e:ba:f3:36:87:8f:d3:78:34:3d:1c:
1f:bc:08:56:f2:8a:14:ff:32:c3:c4:f1:85:9a:5e:
bf:99:9a:cb:01:37:7f:02:78:71:56:70:23:f9:95:
7f:99:11:55:42:2c:31:d1:89:fd:3f:0d:ce:30:e5:
c0:fa:96:e8:92:13:e5:b1:e3:d7:c3:a0:04:0d:a5:
ae:8c:dc:13:6c:f7:a5:e1:85:29:75:1d:ff:1a:d3:
c6:cd:f0:7c:42:2f:56:e4:38:01:c0:08:a4:ff:94:
15:52:b1:cc:35:1c:93:15:03:68:c2:29:ae:72:7b:
50:e8:7e:7f:ed:e0:39:c6:90:6f:0b:2b:14:54:c1:
85:53:90:1f:83:52:9b:b5:c7:90:25:4d:58:fc:88:
a1:c2:e9:d2:b2:84:e8:76:39:37:e8:41:46:39:70:
a7:fd:83:12:a6:a1:ef:da:c7:5c:b5:2a:53:ea:6e:
78:37:7e:92:1b:cf:94:ef:1d:db:c7:99:20:4f:40:
4a:01:5f:9a:24:a4:7c:d5:6b:d7:aa:a1:2e:a8:38:
d4:49:b1:2a:52:51:6a:d0:dd:17:fc:b5:ee:2e:55:
26:44:8c:81:da:72:9c:c7:77:92:48:2b:70:ad:cf:
a3:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:C3:D0:4E:D9:D4:AA:F6:FB:79:C6:C3:22:D9:50:A1:97:10:55:81
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/AA048AFA2B1811F08C57B7CFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.25.0/24
Signature Algorithm: sha256WithRSAEncryption
31:a7:16:1c:51:0b:db:01:8c:91:1a:5f:35:21:22:30:0f:0c:
c7:13:ac:1d:14:4b:31:4d:ce:5b:ba:32:99:fe:07:6f:e0:fb:
98:da:32:e0:98:94:91:09:ed:be:c9:74:aa:9d:5b:5c:f6:b4:
01:9e:d1:27:3c:c9:f7:c7:1f:36:50:a2:b9:75:e7:f6:46:63:
42:17:6f:65:ff:43:6c:24:be:18:45:70:0b:10:42:ca:95:cc:
7d:15:50:43:c8:44:31:31:07:8a:56:42:e3:04:11:a8:f9:03:
5d:ac:12:16:51:9f:7f:2b:0f:82:36:94:0c:e8:a4:a8:80:a4:
9d:22:f3:aa:de:36:88:7b:85:bb:5f:ed:8d:b6:c0:62:f1:00:
f6:f6:de:51:d7:00:65:2c:23:19:6a:b0:26:e8:a9:2c:c6:c7:
26:b5:9d:5a:80:31:9d:25:e0:7a:e2:9b:89:be:82:8d:9a:9c:
ad:7d:be:1b:ad:8d:74:34:e8:14:c3:0f:d5:7f:b5:4b:b8:31:
af:21:a2:8f:5c:85:d7:3f:88:95:d8:2a:cb:2d:8a:ba:48:92:
17:aa:64:b7:99:f6:04:6c:37:11:fb:a1:14:a7:34:af:a0:e5:
97:9e:67:9b:2f:74:1d:c7:c4:5d:3b:93:1a:2a:79:01:db:08:
4d:37:42:2c
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICCeQwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
M0JBMTlBRjExMC8GA1UEBRMoNkFFQTI0QjA5OUMzMkIyMkU0RTQ4QkI5RjI2Q0Y1
NzhCRUY2QkZGMzAeFw0yNTA1MDcwNzU1MzRaFw0yNjAyMTAwNzU1MzRaMBgxFjAU
BgNVBAMTDTY4MWIxMWZhLTQ4MjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDNyHMvFeTqVtXo1TnJiRk42zR+uvM2h4/TeDQ9HB+8CFbyihT/MsPE8YWa
Xr+ZmssBN38CeHFWcCP5lX+ZEVVCLDHRif0/Dc4w5cD6luiSE+Wx49fDoAQNpa6M
3BNs96XhhSl1Hf8a08bN8HxCL1bkOAHACKT/lBVSscw1HJMVA2jCKa5ye1Dofn/t
4DnGkG8LKxRUwYVTkB+DUpu1x5AlTVj8iKHC6dKyhOh2OTfoQUY5cKf9gxKmoe/a
x1y1KlPqbng3fpIbz5TvHdvHmSBPQEoBX5okpHzVa9eqoS6oONRJsSpSUWrQ3Rf8
te4uVSZEjIHacpzHd5JIK3Ctz6O7AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUu8PQ
TtnUqvb7ecbDItlQoZcQVYEwHwYDVR0jBBgwFoAUauoksJnDKyLk5Iu58mz1eL72
v/MwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVBNDBENTc3L2F1b2tz
Sm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2F1b2tzSm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVB
NDBENTc3L0FBMDQ4QUZBMkIxODExRjA4QzU3QjdDRkRBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmhxkwDQYJKoZIhvcNAQEL
BQADggEBADGnFhxRC9sBjJEaXzUhIjAPDMcTrB0USzFNzlu6Mpn+B2/g+5jaMuCY
lJEJ7b7JdKqdW1z2tAGe0Sc8yffHHzZQorl15/ZGY0IXb2X/Q2wkvhhFcAsQQsqV
zH0VUEPIRDExB4pWQuMEEaj5A12sEhZRn38rD4I2lAzopKiApJ0i86reNoh7hbtf
7Y22wGLxAPb23lHXAGUsIxlqsCboqSzGxya1nVqAMZ0l4Hrim4m+go2anK19vhut
jXQ06BTDD9V/tUu4Ma8hoo9chdc/iJXYKsstirpIkheqZLeZ9gRsNxH7oRSnNK+g
5ZeeZ5svdB3HxF07kxoqeQHbCE03Qiw=
-----END CERTIFICATE-----
Generated at Sat May 10 17:00:13 2025 by rpki-client