Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/88A338EA138311F0AB3998B0762E951A.roa
File: 88A338EA138311F0AB3998B0762E951A.roa (raw, json)
Hash identifier: NW06j2i1nz2eM/3Z2vmmE5Lp89027uWAluOmikiUfME=
Subject key identifier: 0B:C5:3C:13:9E:15:90:4B:EC:DF:B0:89:38:EB:44:E5:2B:A6:74:D1
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 08CC
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/88A338EA138311F0AB3998B0762E951A.roa
Signing time: Mon 07 Apr 2025 07:40:10 +0000
ROA not before: Mon 07 Apr 2025 07:40:05 +0000
ROA not after: Tue 10 Feb 2026 07:40:05 +0000
asID: 329007
IP address blocks: 196.251.124.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 03 May 2025 00:07:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2252 (0x8cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Apr 7 07:40:05 2025 GMT
Not After : Feb 10 07:40:05 2026 GMT
Subject: CN=67f3815a-f897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:42:6e:2b:b4:ce:c6:b7:1a:91:4c:85:a5:1c:
d8:09:67:8f:c8:35:56:05:a7:bc:e2:e2:f6:07:a6:
9a:96:6b:a5:a2:31:c7:7f:68:37:2c:f8:5d:f3:34:
5d:20:09:94:ab:97:88:30:73:c3:97:bc:84:f2:3f:
75:56:5f:29:d7:f3:1d:89:00:a8:f3:ff:56:5f:1b:
de:f0:5b:99:bc:08:22:e0:5c:fd:2e:35:ef:d8:fd:
b5:fa:32:61:26:03:ac:fb:83:29:8a:d8:86:a3:6e:
9e:70:9a:cb:f7:04:1a:4c:0e:2b:d7:5c:b2:86:a0:
ae:cc:87:89:dd:00:f0:88:3c:f1:3b:0b:20:bf:12:
94:98:b3:6d:05:5d:20:ba:b0:4e:5b:de:2f:4c:fc:
2b:0a:97:44:b4:18:02:67:63:c4:cd:d7:c7:f0:92:
44:26:65:08:b3:2b:c4:40:e0:d7:52:d0:b5:b5:16:
03:5f:66:64:85:bb:ef:58:9b:d2:bd:62:ea:59:f7:
20:4d:e2:d0:c7:f8:29:f9:3d:90:e8:d8:6f:0b:ad:
7f:fe:10:3c:19:34:39:4c:6f:59:04:0a:8f:10:4a:
53:67:f7:ec:f3:9c:af:de:a6:88:18:b3:0c:fa:fe:
6c:82:e4:d3:cf:0e:93:02:a9:ec:1c:3d:25:56:e8:
a4:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:C5:3C:13:9E:15:90:4B:EC:DF:B0:89:38:EB:44:E5:2B:A6:74:D1
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/88A338EA138311F0AB3998B0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.124.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:74:a9:4d:b6:7b:e3:29:17:7e:05:ee:e8:f8:e2:92:c1:b4:
b4:12:9c:c7:c8:3a:4f:13:bb:0f:13:36:d2:2a:87:8f:bd:47:
2e:0c:29:fe:8d:44:ce:dc:ce:41:13:e3:d1:38:4d:2f:4e:cd:
15:af:2a:9d:a5:7c:1d:42:54:e4:95:77:ad:a2:03:df:62:b0:
28:a5:59:76:73:1c:92:ec:08:1f:79:10:35:0a:ec:20:be:51:
dd:42:19:96:70:1a:39:00:1e:4a:cf:d4:7b:1b:48:b8:59:13:
a4:30:82:4e:30:c1:5b:94:47:fa:9b:66:29:16:a0:00:00:a5:
c1:cf:ff:a7:9a:ca:9f:b0:a7:e4:d2:3e:31:63:b1:c7:70:e8:
65:7f:ea:7f:27:fa:d2:ec:eb:c1:7c:a6:f5:4a:0c:df:7b:82:
0d:1f:17:ed:86:76:39:0b:d0:22:d1:60:a7:80:01:3b:a4:60:
c2:3e:c4:ee:1b:82:eb:62:92:90:e4:63:48:82:d8:e7:d9:56:
97:39:dc:8a:b8:53:4f:76:29:61:3f:3c:db:35:bb:b3:e2:6c:
02:78:2c:80:6b:59:ae:88:42:38:f0:cb:9a:5c:00:9a:14:24:
cf:7c:ab:e8:2d:8c:30:29:4e:d7:28:eb:87:87:1e:21:5e:a5:
2e:24:d8:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 21:32:48 2025 by rpki-client