Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BEDE/50DE07F874C511EFA2EC1F93762E951A/11527DAE3CC911F08C481C8EDAE4EC9C.roa
File: 11527DAE3CC911F08C481C8EDAE4EC9C.roa (raw, json)
Hash identifier: UiY+nU7WO8uSctMYIFsh5vR61YQsVRnHrhATjm1Zbgg=
Subject key identifier: 51:B9:2F:99:D3:D6:B9:79:98:E7:6C:E5:7D:64:96:6A:98:7C:86:CB
Certificate issuer: /CN=F363BEDEAF/serialNumber=E8F1B1249BE5C2AA56F39B75B04EBD01E4C69D13
Certificate serial: 0107
Authority key identifier: E8:F1:B1:24:9B:E5:C2:AA:56:F3:9B:75:B0:4E:BD:01:E4:C6:9D:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/6PGxJJvlwqpW85t1sE69AeTGnRM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BEDE/50DE07F874C511EFA2EC1F93762E951A/11527DAE3CC911F08C481C8EDAE4EC9C.roa
Signing time: Thu 29 May 2025 20:11:13 +0000
ROA not before: Thu 29 May 2025 20:11:08 +0000
ROA not after: Fri 29 May 2026 20:11:08 +0000
asID: 37515
IP address blocks: 41.77.96.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BEDE/50DE07F874C511EFA2EC1F93762E951A/6PGxJJvlwqpW85t1sE69AeTGnRM.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BEDE/50DE07F874C511EFA2EC1F93762E951A/6PGxJJvlwqpW85t1sE69AeTGnRM.mft
rsync://rpki.afrinic.net/repository/afrinic/6PGxJJvlwqpW85t1sE69AeTGnRM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 19 Jul 2025 00:06:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 263 (0x107)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BEDEAF, serialNumber=E8F1B1249BE5C2AA56F39B75B04EBD01E4C69D13
Validity
Not Before: May 29 20:11:08 2025 GMT
Not After : May 29 20:11:08 2026 GMT
Subject: CN=6838bf61-cb2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f3:e6:15:b2:47:e5:ef:20:a1:d3:69:00:d1:
28:62:45:1c:e8:b2:7d:fd:9b:73:eb:44:1d:89:40:
7e:4a:45:71:e6:b1:94:10:a8:a7:7f:4b:b8:fe:e0:
9c:54:bd:33:9d:78:17:65:1c:e2:0c:61:a8:37:6e:
9e:4f:c1:a3:12:1b:66:84:8b:c7:f0:ca:2c:17:be:
05:79:f2:07:7b:17:a6:28:76:99:13:a4:14:d0:ee:
54:43:b0:d5:34:23:bc:9c:6d:59:45:60:e6:83:7e:
24:23:fd:02:86:9a:24:a8:26:cf:5f:70:11:e9:59:
b2:88:15:9e:0d:09:da:b9:34:42:48:6b:82:d7:0c:
b2:a7:01:93:12:32:fa:62:f9:32:04:9c:7a:bd:8e:
82:17:a7:17:88:fb:40:25:32:97:b6:29:72:31:1c:
fe:9b:08:31:e9:88:c7:ad:10:bd:fc:ad:a4:93:e5:
47:23:96:41:49:ae:94:ad:d1:61:3e:2a:1b:b0:39:
52:88:b4:cd:6e:46:22:f5:6a:3f:9f:c1:34:4e:af:
9b:4d:38:06:81:09:30:8b:6f:d5:df:34:c3:d2:97:
60:41:4f:e8:70:c0:19:94:2b:67:66:66:24:de:99:
f2:a0:cb:cd:ec:db:44:ea:b9:49:3f:4b:83:46:a1:
85:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:B9:2F:99:D3:D6:B9:79:98:E7:6C:E5:7D:64:96:6A:98:7C:86:CB
X509v3 Authority Key Identifier:
keyid:E8:F1:B1:24:9B:E5:C2:AA:56:F3:9B:75:B0:4E:BD:01:E4:C6:9D:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BEDE/50DE07F874C511EFA2EC1F93762E951A/6PGxJJvlwqpW85t1sE69AeTGnRM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/6PGxJJvlwqpW85t1sE69AeTGnRM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BEDE/50DE07F874C511EFA2EC1F93762E951A/11527DAE3CC911F08C481C8EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.77.96.0/21
Signature Algorithm: sha256WithRSAEncryption
b8:f8:c0:a3:fc:ee:a4:74:fc:75:6c:18:d6:00:ce:b0:2a:b7:
99:bf:a5:db:08:fc:a6:6d:60:cb:2d:b6:a2:f9:3a:08:14:ea:
ba:f7:52:fa:f2:32:98:11:69:65:42:59:c7:4a:92:d6:e4:8b:
6a:0c:f1:8a:bc:90:f4:2f:d0:a2:80:0f:7e:5e:63:e3:a4:05:
02:2b:56:42:2b:2e:b1:68:0f:8b:f6:8f:6b:37:d4:40:e0:a9:
94:7f:48:6f:23:93:62:98:2b:cc:97:59:43:dd:c4:5c:89:00:
b1:a1:e7:f9:ba:6c:c8:06:86:c3:3e:f5:48:e8:28:a3:0f:4b:
f3:2f:bd:72:aa:85:a3:e8:2f:f3:69:3c:e8:9e:3b:5b:46:10:
fe:65:bb:17:48:a0:6e:0f:66:b4:c1:c7:cb:cc:a5:03:c9:ad:
4a:b3:d7:3f:70:ae:40:d7:ec:82:5b:e3:01:3e:fa:8c:e9:04:
1f:60:23:3e:bd:b2:ee:4b:5a:d6:54:63:aa:34:49:13:44:a2:
1f:d3:f9:fb:c8:12:e7:b6:da:5b:7c:04:3f:e7:35:80:fc:73:
cb:1f:98:75:c5:97:5f:bb:8a:b6:a2:95:36:c5:b7:6b:5a:7f:
b3:54:d6:77:db:d4:2b:b3:55:de:2e:2b:6c:d5:80:2a:38:2c:
5a:94:69:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 17 11:03:36 2025 by rpki-client