Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/CAAC2BD82C1611F0A7C110EEDAE4EC9C.roa
File: CAAC2BD82C1611F0A7C110EEDAE4EC9C.roa (raw, json)
Hash identifier: NVLhjjQMsQ3oPk4STcjMaGGVQCzAhE9tSVx6Oy7a+08=
Subject key identifier: 70:2C:1D:C5:F1:A3:83:4A:F7:93:FA:CF:AF:61:68:26:09:12:93:D0
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 09FA
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/CAAC2BD82C1611F0A7C110EEDAE4EC9C.roa
Signing time: Thu 08 May 2025 14:14:45 +0000
ROA not before: Thu 08 May 2025 14:14:41 +0000
ROA not after: Fri 08 May 2026 14:14:41 +0000
asID: 55154
IP address blocks: 196.251.104.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 12 May 2025 00:07:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2554 (0x9fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: May 8 14:14:41 2025 GMT
Not After : May 8 14:14:41 2026 GMT
Subject: CN=681cbc55-3383
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:25:f5:8e:9d:82:d8:a2:6c:0b:b6:9a:4b:9e:
59:55:fa:bd:ca:57:68:64:d3:05:98:cb:12:5b:d8:
ab:8b:15:fc:ac:da:ff:9f:2d:ee:1e:29:c9:6e:63:
03:be:f3:ab:cc:fb:71:92:7d:be:11:ea:1b:fe:55:
2f:89:79:46:ab:47:cb:87:e3:1f:65:7b:1b:81:b6:
93:bc:0e:a1:ee:58:fb:3b:99:ca:03:af:9c:b9:58:
52:64:32:a8:7f:5f:f4:34:84:6a:26:83:13:d8:d9:
8e:8a:a6:38:0d:7b:d5:17:10:a4:fc:36:6c:c7:10:
62:e9:3f:f1:8f:11:e5:c8:e2:81:f1:62:3b:17:54:
2c:01:b7:9c:13:b4:19:5e:e4:07:50:2d:54:c5:fc:
b8:2e:f4:4a:a2:75:c7:d3:a0:c4:92:5d:79:cd:f0:
c7:91:fb:c9:05:3b:28:fc:eb:e9:cf:f0:53:fd:04:
4d:52:9f:e3:d4:56:a5:22:da:5a:4e:60:7c:c7:c3:
1c:e4:69:c0:e6:1a:e7:5e:15:74:c6:75:e0:c5:47:
2a:da:75:91:15:f7:9e:4e:02:23:d7:93:f7:c0:dc:
66:04:52:2a:78:fc:c3:8d:bb:95:e5:25:9c:55:83:
62:d8:03:0a:8b:e1:12:b1:00:ec:ed:4d:a0:10:6c:
7e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:2C:1D:C5:F1:A3:83:4A:F7:93:FA:CF:AF:61:68:26:09:12:93:D0
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/CAAC2BD82C1611F0A7C110EEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.104.0/24
Signature Algorithm: sha256WithRSAEncryption
77:45:56:ed:68:3e:7e:fc:7d:75:e9:d7:30:67:0e:cc:82:31:
c4:9b:74:4e:e4:f6:3a:7f:a6:46:23:88:38:7f:4b:63:a4:1b:
56:95:6f:dd:5d:f8:99:df:52:73:3b:15:8a:fe:1a:a8:c2:20:
4a:a3:61:51:fd:99:42:6e:a8:f8:70:d0:bc:ae:ca:b4:62:96:
50:ac:24:1f:fe:3c:d3:69:a2:4c:6c:30:22:80:c5:73:74:e4:
43:86:dc:c9:02:6d:f7:b8:ee:1c:62:63:16:89:50:ca:58:ec:
0d:d4:e8:bc:39:3d:1d:7d:39:42:54:1f:42:6e:b8:81:20:37:
e5:89:c1:5d:c4:6a:a5:8e:f6:85:4b:c5:7f:22:1a:69:23:18:
7a:e4:20:4a:2f:0e:f1:c3:e0:3e:ac:0c:d4:69:5d:86:26:93:
c5:17:c2:24:91:66:55:99:f0:49:2f:f3:a2:a6:c4:b4:4a:e8:
5d:26:5f:7e:e4:2c:69:a0:df:7d:82:be:49:bf:55:89:54:e2:
71:66:c8:e3:6c:01:d9:9c:cd:8b:44:20:dd:f2:d5:31:d1:72:
da:d2:10:0a:3d:81:d9:d5:6c:d4:8b:fd:00:8c:5d:56:81:2e:
83:ae:a8:a5:0a:cf:bc:ef:64:dc:e0:a8:60:6b:db:0a:c8:33:
cc:17:2d:f9
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICCfowDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
M0JBMTlBRjExMC8GA1UEBRMoNkFFQTI0QjA5OUMzMkIyMkU0RTQ4QkI5RjI2Q0Y1
NzhCRUY2QkZGMzAeFw0yNTA1MDgxNDE0NDFaFw0yNjA1MDgxNDE0NDFaMBgxFjAU
BgNVBAMTDTY4MWNiYzU1LTMzODMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC9JfWOnYLYomwLtppLnllV+r3KV2hk0wWYyxJb2KuLFfys2v+fLe4eKclu
YwO+86vM+3GSfb4R6hv+VS+JeUarR8uH4x9lexuBtpO8DqHuWPs7mcoDr5y5WFJk
Mqh/X/Q0hGomgxPY2Y6KpjgNe9UXEKT8NmzHEGLpP/GPEeXI4oHxYjsXVCwBt5wT
tBle5AdQLVTF/Lgu9EqidcfToMSSXXnN8MeR+8kFOyj86+nP8FP9BE1Sn+PUVqUi
2lpOYHzHwxzkacDmGudeFXTGdeDFRyradZEV955OAiPXk/fA3GYEUip4/MONu5Xl
JZxVg2LYAwqL4RKxAOztTaAQbH7rAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUcCwd
xfGjg0r3k/rPr2FoJgkSk9AwHwYDVR0jBBgwFoAUauoksJnDKyLk5Iu58mz1eL72
v/MwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVBNDBENTc3L2F1b2tz
Sm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2F1b2tzSm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVB
NDBENTc3L0NBQUMyQkQ4MkMxNjExRjBBN0MxMTBFRURBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADE+2gwDQYJKoZIhvcNAQEL
BQADggEBAHdFVu1oPn78fXXp1zBnDsyCMcSbdE7k9jp/pkYjiDh/S2OkG1aVb91d
+JnfUnM7FYr+GqjCIEqjYVH9mUJuqPhw0LyuyrRillCsJB/+PNNpokxsMCKAxXN0
5EOG3MkCbfe47hxiYxaJUMpY7A3U6Lw5PR19OUJUH0JuuIEgN+WJwV3EaqWO9oVL
xX8iGmkjGHrkIEovDvHD4D6sDNRpXYYmk8UXwiSRZlWZ8Ekv86KmxLRK6F0mX37k
LGmg332Cvkm/VYlU4nFmyONsAdmczYtEIN3y1THRctrSEAo9gdnVbNSL/QCMXVaB
LoOuqKUKz7zvZNzgqGBr2wrIM8wXLfk=
-----END CERTIFICATE-----
Generated at Sat May 10 14:47:50 2025 by rpki-client