Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/010132AA1E8E11F096F295E1DAE4EC9C.roa
File: 010132AA1E8E11F096F295E1DAE4EC9C.roa (raw, json)
Hash identifier: BZjLfj71M1WBJeY9ZjEwnMOCJq8zvlBC5vKwUde5AQQ=
Subject key identifier: 83:EF:2F:34:22:94:01:A1:B8:F7:E2:9F:5C:02:16:FB:D4:9C:87:79
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0944
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/010132AA1E8E11F096F295E1DAE4EC9C.roa
Signing time: Mon 21 Apr 2025 08:52:50 +0000
ROA not before: Mon 21 Apr 2025 08:52:46 +0000
ROA not after: Tue 21 Apr 2026 08:52:46 +0000
asID: 18811
IP address blocks: 196.251.124.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2372 (0x944)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Apr 21 08:52:46 2025 GMT
Not After : Apr 21 08:52:46 2026 GMT
Subject: CN=68060762-dc5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2c:f3:60:96:d9:f9:dd:28:95:d8:36:5c:4e:
52:ad:03:2e:13:77:90:4b:6f:2e:e6:ec:0b:7a:bb:
79:4c:d8:5d:82:03:b2:72:33:1b:2a:c3:a7:cc:a5:
b7:34:dd:a6:8d:2d:e0:f8:39:7a:41:27:78:78:f6:
52:6b:cc:dc:5d:d3:1e:b3:56:82:61:5b:a0:28:c1:
72:c4:29:dd:6f:91:5c:f8:23:1f:4c:4c:2f:d5:d7:
b7:c2:64:05:ec:b9:03:e8:20:f8:d8:4f:af:5f:bd:
4c:a8:de:12:db:3f:0b:9d:a0:f0:f7:26:d7:c0:ce:
08:33:41:f7:25:fa:86:96:57:17:2a:1b:4f:06:f9:
70:7a:7f:09:88:b8:ae:fa:3e:4f:e7:a3:7f:62:14:
06:0c:34:74:94:f7:b4:92:7b:ec:ab:2a:23:d5:b8:
8d:cd:62:40:12:41:6d:80:3d:c4:37:07:10:7a:c9:
14:fd:60:e7:e5:9c:b1:db:aa:fb:0c:5f:5b:d4:61:
02:1b:9d:85:1b:55:f5:d9:01:24:72:7f:cb:52:b9:
56:f5:18:76:a4:cc:66:d4:b0:46:4a:77:2d:ce:7f:
06:29:83:d9:50:95:17:72:67:38:6c:d1:44:c2:24:
b9:e2:2e:52:14:1c:3b:74:ca:53:c5:89:7d:a0:86:
a9:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:EF:2F:34:22:94:01:A1:B8:F7:E2:9F:5C:02:16:FB:D4:9C:87:79
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/010132AA1E8E11F096F295E1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.124.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:47:8d:47:c5:bd:3a:ba:b6:4c:20:61:15:00:4a:2e:34:18:
a9:eb:dd:4e:15:7b:6f:3d:ac:fd:a1:73:5c:3d:84:8a:dc:00:
4a:d9:92:b7:72:be:1c:6d:3f:0f:81:a2:ff:9d:bf:4c:eb:f0:
cd:2e:1a:ea:f8:90:ac:b3:89:eb:b6:0b:32:25:41:04:98:6e:
e7:0a:e6:7d:3d:05:49:2d:5b:9a:82:a1:23:89:8b:aa:c2:c5:
87:4d:70:02:7a:15:76:69:23:e7:15:3d:ed:ab:8b:6f:a0:8a:
fd:eb:55:88:eb:ef:5b:7f:31:31:18:25:87:ca:b1:c7:10:2a:
e6:ec:4f:77:fb:46:46:65:bb:11:7d:6f:7a:04:39:a6:fa:41:
18:9d:9d:8e:66:31:9c:00:a0:3d:3c:5a:e9:99:da:b5:f8:06:
3b:ef:93:35:ae:5f:7b:73:97:f6:64:fb:f7:24:0f:e9:b5:6c:
45:1f:81:c9:29:7c:fc:95:96:dd:91:01:e9:8f:a4:73:b7:99:
e9:0c:66:5f:72:40:2e:c4:39:d1:71:2a:f0:0f:8b:26:ad:69:
68:b6:ae:91:96:9a:ff:fe:7c:29:1c:df:d1:34:49:64:df:48:
97:8f:e0:07:d4:b5:c7:0d:20:d0:46:55:f6:de:5b:1f:7d:78:
06:f6:fa:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:03:07 2025 by rpki-client on console.sobornost.net