Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/CB22023E274011F0B7632998DAE4EC9C.roa
File: CB22023E274011F0B7632998DAE4EC9C.roa (raw, json)
Hash identifier: Z5laFFhl9e4ZEHK5j45V8g+YQ6HkYLlQcELruXTPcJ8=
Subject key identifier: BE:E8:00:C6:1B:25:A9:51:38:19:32:B8:E5:D0:30:10:88:64:6E:43
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 09AA
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/CB22023E274011F0B7632998DAE4EC9C.roa
Signing time: Fri 02 May 2025 10:32:49 +0000
ROA not before: Fri 02 May 2025 10:32:44 +0000
ROA not after: Sat 02 May 2026 10:32:44 +0000
asID: 208485
IP address blocks: 102.135.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 10 May 2025 00:07:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2474 (0x9aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: May 2 10:32:44 2025 GMT
Not After : May 2 10:32:44 2026 GMT
Subject: CN=68149f51-e5f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:10:0b:73:04:58:89:c8:f9:98:98:f4:75:34:
43:3a:fc:2e:af:b7:e0:29:25:f8:1a:b8:db:7d:4b:
b7:e9:3c:76:c0:10:b9:be:d3:52:9c:c2:3c:36:10:
5f:80:be:d1:71:0b:51:df:22:a8:c3:b7:03:43:fb:
8d:94:9d:f7:55:86:9b:8a:ac:da:8c:4d:a6:19:a5:
23:f4:76:fc:46:f2:c1:60:c5:26:d3:3c:72:f2:a6:
e2:37:8d:6e:5e:ae:b4:62:57:aa:4d:9e:d5:4d:fb:
ae:33:33:fd:f8:a7:49:59:70:46:38:30:ea:03:78:
d2:37:8b:55:1a:31:4f:25:0b:ad:15:4c:9e:31:ea:
89:7c:fd:38:35:a7:0c:d6:41:69:66:2b:5b:d1:03:
fb:0b:f5:51:18:59:77:90:19:ac:df:86:2f:82:5f:
c9:ce:fd:7b:ee:72:1e:c5:14:7d:49:43:25:20:49:
0b:9e:30:10:70:e2:9f:2b:b1:26:44:36:e0:25:50:
c3:d2:ce:36:c5:2b:4b:ba:a4:bf:ef:5b:0d:87:71:
21:59:92:2d:d4:df:3d:e6:ba:5c:b8:15:69:e0:d1:
d8:44:76:0d:40:05:b6:a3:51:e7:bf:ab:68:53:44:
32:09:38:40:a2:48:38:c4:ab:bc:6b:83:51:18:cb:
b7:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:E8:00:C6:1B:25:A9:51:38:19:32:B8:E5:D0:30:10:88:64:6E:43
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/CB22023E274011F0B7632998DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.37.0/24
Signature Algorithm: sha256WithRSAEncryption
77:c0:52:a0:ff:30:64:b3:5f:dd:85:08:30:98:b2:cc:c5:b5:
fe:9b:75:5e:58:11:d9:6c:6a:13:2d:8a:02:13:0f:9f:fa:ca:
05:cf:1a:7a:b3:d2:2b:16:5c:26:f6:0b:64:db:cf:b7:72:9f:
7e:8b:2e:28:0e:ae:a9:0c:84:8f:2c:ec:6b:17:d4:b7:a1:01:
ab:c4:ab:07:7f:fc:8d:7e:91:51:4f:6e:a8:58:77:bb:26:c0:
6f:f1:52:3b:d0:18:c1:1c:a7:7c:28:d0:e2:10:ae:8f:22:d1:
5a:eb:e7:a4:cc:7d:32:3b:f5:d6:dc:5b:3e:80:e1:e1:ee:8b:
8c:22:f9:a5:cd:37:67:dc:a2:42:71:9a:ec:bc:f9:65:a3:e7:
6b:aa:2d:4e:99:f9:36:cb:cd:77:16:43:9b:e0:4c:96:dc:4f:
07:69:06:fe:14:77:29:8e:aa:8d:06:d2:bb:c4:13:37:f9:71:
79:6c:0e:05:30:c3:0c:9c:36:c4:33:63:07:b5:93:36:4b:24:
61:c6:f0:59:9b:73:87:20:a3:5e:ed:ae:32:09:06:ff:18:f3:
95:7c:d0:eb:ec:0d:8f:16:2e:87:d7:57:5c:a3:cc:ca:a9:b8:
60:82:2b:fc:b2:55:67:46:a5:db:4d:cf:e1:1c:c7:48:dd:e7:
eb:42:14:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 16:26:12 2025 by rpki-client