Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/9A602950485B11F08DEB96E1DAE4EC9C.roa
File: 9A602950485B11F08DEB96E1DAE4EC9C.roa (raw, json)
Hash identifier: AOq6i+4l77F1h6yoPkt+fNK4V1lbjTwTYBFGjuP/Gb0=
Subject key identifier: C5:91:08:72:43:C8:1A:BD:15:7D:91:C2:BA:E5:4F:38:D9:74:6B:17
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0B4F
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/9A602950485B11F08DEB96E1DAE4EC9C.roa
Signing time: Fri 13 Jun 2025 13:37:52 +0000
ROA not before: Fri 13 Jun 2025 13:37:47 +0000
ROA not after: Sat 13 Jun 2026 13:37:47 +0000
asID: 29802
IP address blocks: 196.251.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 17 Jun 2025 02:50:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2895 (0xb4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Jun 13 13:37:47 2025 GMT
Not After : Jun 13 13:37:47 2026 GMT
Subject: CN=684c29b0-0a61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:76:47:d0:1c:7d:48:4e:01:3a:27:63:df:a2:
e2:a4:0e:26:21:78:e4:cc:45:c6:71:48:18:70:80:
ea:75:a4:46:25:7d:ec:4a:93:2c:43:00:af:76:71:
20:0c:43:28:c3:47:f2:16:a8:4b:a8:e0:bd:dd:9b:
c9:25:fe:31:c1:25:fd:8d:46:10:29:b9:35:ff:b8:
79:e4:7f:1a:5e:6d:30:b2:26:33:51:6d:ad:1e:e5:
18:1a:42:eb:f2:a6:20:ac:57:5a:3c:da:e8:b7:0c:
62:6d:83:e9:96:30:7c:ae:3b:eb:dc:2a:da:e0:7c:
50:0c:b2:d1:bc:f8:72:a9:38:de:5f:f8:c8:8d:ac:
a6:83:03:cf:d5:ce:4d:3d:c2:b3:b0:9e:a4:46:a4:
5f:d9:b4:f5:fa:87:37:c5:f7:45:0a:61:bc:e4:3f:
da:78:a5:5b:40:37:39:a2:7c:31:c2:95:dc:29:c4:
31:5c:f3:c7:17:82:e7:89:26:4f:ff:85:88:1d:1c:
f4:76:0f:1b:86:80:dd:20:12:75:1f:6e:54:8e:dc:
a3:b6:16:48:c2:97:b4:9a:6a:38:15:94:0c:22:53:
db:e1:08:5e:64:79:f1:33:f6:ed:f1:9e:2e:6d:5e:
52:1a:72:23:7d:ae:d0:85:25:c1:f4:35:ff:11:36:
3d:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:91:08:72:43:C8:1A:BD:15:7D:91:C2:BA:E5:4F:38:D9:74:6B:17
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/9A602950485B11F08DEB96E1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.78.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:14:ab:0f:37:73:78:ea:13:fb:b5:8d:88:24:a8:9d:6f:50:
c7:0d:3a:4a:97:e5:10:57:a1:48:36:1f:38:37:73:a8:71:91:
21:bc:28:f3:83:07:98:ad:d0:10:4a:be:84:aa:31:51:75:ef:
07:12:e4:df:0c:77:25:7b:81:f5:82:1e:b2:24:02:43:ec:5e:
31:cc:98:a6:9d:b3:ae:86:81:da:ac:13:fc:27:f9:ab:ec:46:
3f:66:d0:eb:cb:25:5a:0b:10:1b:60:53:62:e6:91:15:c2:64:
2d:bf:e9:12:a5:94:06:0a:8f:67:bf:d3:99:60:4b:a7:20:36:
70:d1:a0:4b:ec:28:9f:60:25:d5:37:8e:a4:d1:ed:86:98:69:
cd:3c:ea:9b:ac:d7:45:1f:97:41:c7:37:df:d1:6c:12:58:02:
21:f9:f9:3a:7c:69:cc:b5:2e:fd:a4:4a:5e:fb:d9:3c:41:95:
6e:2a:2c:c0:f4:b9:a1:0c:47:60:de:38:13:a4:95:c2:fe:25:
6a:9b:c7:29:70:83:b5:d2:d1:df:d3:9f:91:1a:f6:f8:62:20:
cb:05:b8:ea:e9:0c:68:ed:7b:26:93:02:78:c6:71:f9:f2:83:
d2:ce:ed:f8:d2:7f:65:45:eb:f5:c3:05:f9:4f:75:46:31:dd:
62:04:ec:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 02:17:02 2025 by rpki-client