Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/1B9771A2485411F0836584B1DAE4EC9C.roa
File: 1B9771A2485411F0836584B1DAE4EC9C.roa (raw, json)
Hash identifier: nR9m2chgVtmXSCDQMW6e2ZM9sV4UzSgA9vSjeYSOLN4=
Subject key identifier: 96:67:35:66:13:25:97:15:DE:F6:F0:C4:AE:AF:9F:75:04:9B:0E:6C
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0B38
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/1B9771A2485411F0836584B1DAE4EC9C.roa
Signing time: Fri 13 Jun 2025 12:44:13 +0000
ROA not before: Fri 13 Jun 2025 12:44:08 +0000
ROA not after: Thu 01 Jan 2026 12:44:08 +0000
asID: 329007
IP address blocks: 196.251.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 18 Jun 2025 00:06:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2872 (0xb38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Jun 13 12:44:08 2025 GMT
Not After : Jan 1 12:44:08 2026 GMT
Subject: CN=684c1d1d-6ce6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:4f:08:e2:36:62:ee:48:51:8b:2e:04:de:98:
4d:79:e4:b5:02:4f:02:b3:6a:7a:5e:33:c3:e9:2a:
e4:44:c1:3f:ac:91:01:27:30:9b:b2:9a:87:cd:d7:
7d:46:39:da:58:1c:e2:f2:69:03:0b:39:df:80:a1:
6a:50:29:00:d5:d6:35:4e:6e:bf:88:a8:b6:98:60:
13:bf:d6:75:c8:95:f9:3c:67:97:b9:ea:d6:d8:5a:
b8:32:ba:eb:e0:d5:a1:c0:62:ca:04:46:df:6c:ad:
4d:87:b6:5f:35:15:c9:b5:bc:56:bf:bf:01:8a:b8:
d0:96:37:b0:64:15:d3:6f:4a:5b:70:ce:60:4b:b1:
d7:4f:2b:61:5c:9c:97:66:f4:b1:73:91:4c:01:58:
d7:77:4c:6f:12:75:cf:c5:fe:6f:a4:15:79:13:e4:
3d:ea:db:9b:5a:9a:65:57:8b:cd:11:4f:02:31:06:
26:33:7e:58:b5:bc:ad:7d:c8:95:00:fa:64:58:07:
c9:27:81:e7:5c:1f:79:5e:cd:76:14:f5:a5:03:5d:
39:e5:ec:40:eb:cf:8e:70:21:11:83:7f:3c:f7:ea:
ff:5b:43:72:e5:66:76:cb:25:f7:4d:6d:90:58:43:
cf:f2:f9:28:e8:a0:a1:ea:de:03:c7:71:b4:49:7f:
f5:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:67:35:66:13:25:97:15:DE:F6:F0:C4:AE:AF:9F:75:04:9B:0E:6C
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/1B9771A2485411F0836584B1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.101.0/24
Signature Algorithm: sha256WithRSAEncryption
20:7e:c8:be:e2:bd:20:ea:3a:80:14:8d:f7:df:99:61:21:5b:
92:d6:d9:c4:13:9d:97:05:04:7c:42:ab:50:08:1c:77:3d:f1:
14:4e:e5:cd:ee:64:70:0c:16:31:27:55:46:44:31:89:89:52:
cf:c0:91:d2:c2:13:32:44:4a:1f:06:38:b6:9a:27:75:e5:f1:
89:00:e7:79:59:26:b2:e4:d7:87:4e:39:83:08:ae:f3:38:00:
a9:66:c3:dc:50:f1:ca:9c:59:ea:a4:88:ca:d8:9c:2d:b6:ac:
b0:17:2f:0a:68:2e:60:fc:f2:76:b9:b5:e1:b4:6f:af:92:59:
0e:1e:d5:1b:62:17:50:3b:69:e0:1e:a3:d1:68:15:d5:73:0f:
be:34:dc:ec:47:89:e1:f6:0b:a7:8f:dc:16:f3:fe:85:46:57:
a8:cb:f7:5b:a2:cf:d0:bd:b0:93:b4:80:79:6f:57:f6:5f:c9:
db:cf:98:b1:42:e2:a2:82:ba:bd:29:94:4c:0c:21:89:f2:a9:
ff:fa:9b:8e:7a:44:08:00:14:7d:25:b5:6d:07:b4:f8:20:e9:
8f:13:64:f2:ab:97:15:7c:0e:cf:3c:c9:f4:a9:ae:4d:5f:7b:
dc:47:65:12:91:9d:90:b4:84:33:f4:ed:4e:6c:a6:46:03:cf:
a9:23:9d:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 13:33:25 2025 by rpki-client