Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/AA99BF6C50BB11F0A4C3D3F1DAE4EC9C.roa
File: AA99BF6C50BB11F0A4C3D3F1DAE4EC9C.roa (raw, json)
Hash identifier: oM/OhPu3qzSF8rMLOYiVrcn3bYE5ndV51WJU2AD0HH0=
Subject key identifier: 24:A6:EE:98:F7:17:E8:18:84:63:7C:B4:3D:FE:98:80:C1:70:29:BD
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0BBA
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/AA99BF6C50BB11F0A4C3D3F1DAE4EC9C.roa
Signing time: Tue 24 Jun 2025 05:25:40 +0000
ROA not before: Tue 24 Jun 2025 05:25:36 +0000
ROA not after: Sat 20 Jun 2026 05:25:36 +0000
asID: 834
IP address blocks: 102.135.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 01 Jul 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3002 (0xbba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Jun 24 05:25:36 2025 GMT
Not After : Jun 20 05:25:36 2026 GMT
Subject: CN=685a36d4-9e5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ea:60:38:3e:d7:34:94:8f:c2:92:b8:03:a6:
49:42:74:f3:a0:d7:7c:c5:50:72:4e:01:49:d4:f8:
f8:91:bc:a3:27:b5:45:02:e4:f1:9e:75:27:50:f0:
e2:9a:4c:67:71:0b:2c:a4:a6:41:11:f6:84:e8:3b:
fd:46:52:51:50:d6:da:ba:a4:50:1f:f1:3b:56:99:
c3:37:5f:50:68:0e:07:f3:77:13:56:13:5b:34:f1:
99:28:35:0f:c0:24:c1:78:0d:ef:f7:a0:76:a7:82:
8c:b4:e5:51:81:50:6b:97:28:1b:b1:18:ce:1e:fd:
af:06:cd:97:24:ef:e1:6f:6e:f3:2a:64:5b:43:fb:
8f:f6:63:ec:44:53:89:4d:7f:20:b1:2d:1c:70:15:
98:e1:b7:40:98:e7:5d:92:ae:5a:2d:52:a0:11:76:
3c:f1:21:53:d7:d5:08:d8:4b:b2:cf:4d:0b:39:e6:
1f:45:52:11:90:6a:72:90:5c:98:94:dc:bc:26:1a:
27:7b:33:2a:4f:27:33:09:79:93:3a:f3:76:94:c1:
17:d3:26:cf:e4:b2:f3:d2:d5:30:07:4a:31:11:59:
96:0e:20:cc:e1:24:64:16:94:3f:22:be:c7:97:0e:
43:2c:ca:22:44:6f:b1:cf:b8:e4:4e:e3:c7:e4:37:
cb:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:A6:EE:98:F7:17:E8:18:84:63:7C:B4:3D:FE:98:80:C1:70:29:BD
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/AA99BF6C50BB11F0A4C3D3F1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.6.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:6e:95:b7:72:4e:e8:66:b9:69:0c:9b:b4:3b:07:57:7d:32:
9a:76:4e:2c:05:5c:81:21:99:32:49:1a:4a:37:18:d9:77:ac:
fb:6d:e2:25:c8:8b:2b:2c:70:6e:56:b4:2b:3b:e6:24:e2:08:
7a:7e:09:fd:63:cd:00:95:7c:80:52:95:f4:3a:69:c4:d9:aa:
d9:83:5c:d3:f3:63:4e:94:3b:54:6c:be:76:e3:b3:e4:cd:80:
8e:f7:a1:b5:4a:f5:6b:b6:89:14:31:80:d0:1e:02:7f:52:b0:
3c:eb:6f:73:02:10:92:13:e4:9c:3f:a3:ba:a5:0e:4a:20:c5:
12:0d:8e:75:2b:ce:84:c1:d0:33:d6:ff:ef:92:d1:0f:26:2d:
3e:60:3e:08:2a:fd:bf:1b:62:96:41:99:91:58:84:37:d5:62:
d7:e9:1e:e7:b3:fd:7e:68:d6:30:41:f8:88:e4:92:e5:a3:f5:
5c:cc:c7:37:c1:ff:06:a2:ea:38:c1:97:bc:8a:83:23:c3:d2:
84:6f:06:e3:97:a5:42:25:07:fe:63:4a:59:66:cb:dd:6e:96:
f3:ff:4e:57:15:42:db:1b:3b:c0:44:7e:2a:7e:72:f3:d6:61:
a1:98:67:9f:a5:31:cd:75:7a:1f:59:ba:01:25:23:3f:56:58:
34:35:2e:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 09:28:20 2025 by rpki-client