Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/BE0E2DAE275711F0B603E8AEDAE4EC9C.roa
File: BE0E2DAE275711F0B603E8AEDAE4EC9C.roa (raw, json)
Hash identifier: dC5sLTg3aPEzF8smmSSGhe+0unA4gV/JbZVMEb43eeM=
Subject key identifier: A9:89:8F:6B:91:D3:4D:E6:E0:78:18:7D:9D:5F:BF:D1:A5:91:E5:AF
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 09B2
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/BE0E2DAE275711F0B603E8AEDAE4EC9C.roa
Signing time: Fri 02 May 2025 13:17:06 +0000
ROA not before: Fri 02 May 2025 13:17:01 +0000
ROA not after: Tue 13 Jan 2026 13:17:01 +0000
asID: 329007
IP address blocks: 102.135.12.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 12 May 2025 00:07:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2482 (0x9b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: May 2 13:17:01 2025 GMT
Not After : Jan 13 13:17:01 2026 GMT
Subject: CN=6814c5d2-5220
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:52:3f:2e:8b:7f:bc:75:87:c5:f6:c3:cc:fc:
f1:aa:62:58:a6:a2:4d:18:e6:5d:84:07:3a:79:3e:
02:24:ca:cb:81:16:d3:96:67:80:64:c0:77:2b:6b:
19:0d:4b:34:2e:70:55:9e:68:c7:41:7d:51:ba:26:
c9:25:06:f5:07:47:bc:ac:5e:4a:3d:e1:0c:0b:82:
2d:cd:7f:79:28:80:ba:15:e1:17:2c:40:11:1c:ad:
77:c3:d4:29:3d:3a:3c:82:fa:00:5a:91:da:ca:5b:
4b:1a:29:58:31:fe:fc:10:9d:30:f8:2f:29:d6:4e:
75:c2:e7:72:9b:69:b6:31:c5:58:86:c8:b0:1a:9f:
11:1d:f1:28:75:9b:2a:f8:8b:9f:0e:7d:b9:1b:4c:
0f:ca:05:ff:96:1f:03:26:15:35:69:32:93:c9:a8:
a9:87:d3:40:03:37:1e:65:29:b4:0b:10:25:dd:2c:
46:34:10:a9:e7:2a:8b:11:b7:44:36:9c:81:79:7d:
0a:3e:fe:2e:45:e2:bc:8d:d0:c9:64:78:fc:59:4d:
cd:c7:d9:a1:cf:2b:16:c1:22:65:4c:3b:50:b4:6f:
89:c0:5a:6a:a1:c5:a2:bf:88:e0:e2:6c:ea:d9:31:
a2:50:9b:52:a7:f3:76:98:10:1f:1f:e3:67:c6:a7:
21:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:89:8F:6B:91:D3:4D:E6:E0:78:18:7D:9D:5F:BF:D1:A5:91:E5:AF
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/BE0E2DAE275711F0B603E8AEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.12.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:cf:1a:45:b9:f8:81:2f:8f:16:a6:da:c5:eb:c2:28:b7:80:
80:8e:b0:2d:f5:19:2d:77:45:78:71:8b:42:23:14:42:ef:3e:
40:ea:de:03:fd:b7:9a:b0:5c:4b:62:dc:99:d8:76:66:30:5b:
6e:df:cf:8f:fc:d4:10:a5:61:20:95:f7:9c:1e:b2:18:35:ca:
43:4a:3f:2b:4d:d9:aa:d6:6f:f2:11:8e:6f:69:f8:a3:c1:c0:
b9:7d:22:de:c4:26:33:56:b6:d7:7d:65:5c:0c:b2:21:a2:df:
2b:b0:92:47:8a:28:5c:e5:a4:d5:e5:3b:72:69:80:c5:86:2f:
3b:f2:8a:57:27:b4:47:34:9b:5e:45:60:b0:c2:45:41:1b:e8:
45:82:68:8b:ca:93:19:db:75:49:d7:27:85:0a:f1:55:04:6b:
84:91:be:5d:13:0f:47:4f:5a:86:ba:a9:7c:7a:8f:30:53:4a:
76:de:68:63:4a:76:53:a1:49:6d:1b:62:7f:98:cf:eb:a9:0e:
aa:28:40:3a:f2:d1:48:fd:6d:9a:5b:a4:f7:a9:25:8e:70:e9:
26:47:f3:c3:2c:8a:92:c3:a8:66:77:42:92:53:5e:26:60:38:
61:34:10:c7:b2:cf:88:62:39:44:30:94:2e:50:16:a6:c2:4f:
4a:ef:ee:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 05:13:45 2025 by rpki-client