Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/38500228485411F0B7F04FB3DAE4EC9C.roa
File: 38500228485411F0B7F04FB3DAE4EC9C.roa (raw, json)
Hash identifier: JNU0yNJSG+DN+DW2VF+GU6rXvE2YDrADpOOF7F1W628=
Subject key identifier: E4:CB:A1:8A:27:AD:86:A4:74:5D:A9:69:CB:6A:EE:31:96:6A:F2:9B
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0B3A
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/38500228485411F0B7F04FB3DAE4EC9C.roa
Signing time: Fri 13 Jun 2025 12:45:01 +0000
ROA not before: Fri 13 Jun 2025 12:44:56 +0000
ROA not after: Sat 13 Jun 2026 12:44:56 +0000
asID: 208485
IP address blocks: 196.251.103.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 17 Jun 2025 00:06:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2874 (0xb3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Jun 13 12:44:56 2025 GMT
Not After : Jun 13 12:44:56 2026 GMT
Subject: CN=684c1d4d-a7e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ac:62:da:e4:ba:e5:25:d0:bd:05:7a:a6:f3:
a2:94:6e:ee:59:77:1b:b9:cd:2a:14:d5:cb:68:d3:
42:4e:fa:aa:6f:b4:d0:d4:52:c5:9c:2f:10:48:b9:
9c:ad:89:a8:a2:a1:fb:d7:06:1c:a6:2b:8d:c4:30:
e0:31:a0:7c:2a:6c:dc:ea:a3:8b:50:2d:1f:05:5d:
f8:52:3e:54:c0:0f:c2:6a:b5:30:eb:11:b7:44:8d:
e9:e1:df:d2:ef:b4:dc:9a:6a:3c:b3:8b:12:cf:3f:
80:b1:18:1a:aa:f5:9c:97:45:e2:18:19:f7:61:91:
d4:aa:f1:47:aa:8e:5c:56:42:97:6f:ed:fd:f3:0a:
de:f5:7e:8d:5f:07:df:e0:cb:c8:e1:77:3f:16:c8:
83:70:93:9b:9f:e7:2d:ae:63:35:9a:90:37:2e:16:
83:3a:82:27:2f:28:3f:99:8f:45:66:60:66:c9:4b:
45:be:8c:5f:3b:e2:37:c7:5e:94:d7:38:6a:32:be:
60:95:bf:03:66:32:d6:63:d5:c2:2f:01:81:0f:e2:
94:ac:49:a6:68:54:dd:b8:45:f2:ff:b5:e3:b0:8c:
57:6d:24:c0:93:04:eb:89:28:89:d0:f6:9b:51:62:
a5:93:34:34:ec:0d:98:b3:4a:6d:58:6a:20:ee:d5:
b3:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:CB:A1:8A:27:AD:86:A4:74:5D:A9:69:CB:6A:EE:31:96:6A:F2:9B
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/38500228485411F0B7F04FB3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.103.0/24
Signature Algorithm: sha256WithRSAEncryption
65:21:f7:c7:b3:bc:8d:f9:42:63:7f:16:2e:e1:32:af:43:21:
f8:72:49:b3:5f:c8:70:c3:68:e3:82:97:d4:f7:1d:32:3b:6d:
0a:09:f1:35:1e:3c:1f:cd:1e:b1:36:fc:8c:4d:a3:78:45:65:
1a:63:fa:9d:77:6b:0c:87:dc:e6:4a:dd:ef:28:0d:cc:53:0b:
61:9c:01:a3:81:26:57:58:f6:b8:f5:62:32:57:ea:6d:4c:4f:
bf:78:a6:5a:31:19:d2:3d:12:56:9c:89:9e:6f:d3:7a:02:64:
10:db:b1:08:eb:35:83:60:59:de:27:ac:47:74:1f:85:97:11:
fd:09:04:b7:e6:e5:03:1b:13:87:b6:03:e9:d1:46:a6:64:31:
ac:4b:b5:c3:b2:4d:91:29:6f:f4:ab:3e:8a:fd:ee:b6:5e:2b:
f2:4e:0a:8f:97:41:d1:92:8c:76:22:98:dd:34:69:95:cf:7b:
fa:cb:7f:05:3c:20:e0:4f:af:9e:6b:2b:2d:f1:58:f5:51:7d:
c6:83:4a:13:fc:cb:30:7d:60:26:2a:0c:0f:59:a4:71:2d:3e:
47:81:81:4c:e5:90:27:2c:d0:64:58:7f:b2:10:c9:9e:7e:0b:
a7:10:0b:cc:b3:d5:66:98:e5:ae:1d:d8:8c:67:93:25:4b:9b:
d6:8b:e0:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 20:30:33 2025 by rpki-client