Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/98C0B5F6210011F08E1630BEDAE4EC9C.roa
File: 98C0B5F6210011F08E1630BEDAE4EC9C.roa (raw, json)
Hash identifier: uIGXQ+QdsosNTzSzTYfnMh56iM+cGQYXAhTNhnJx5BM=
Subject key identifier: 4C:CE:4D:2B:F8:F9:87:C0:9B:E0:41:77:72:A0:2C:17:00:BC:63:88
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 096A
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/98C0B5F6210011F08E1630BEDAE4EC9C.roa
Signing time: Thu 24 Apr 2025 11:38:10 +0000
ROA not before: Thu 24 Apr 2025 11:38:02 +0000
ROA not after: Tue 13 Jan 2026 11:38:02 +0000
asID: 215224
IP address blocks: 196.251.104.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2410 (0x96a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Apr 24 11:38:02 2025 GMT
Not After : Jan 13 11:38:02 2026 GMT
Subject: CN=680a22a2-1a7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:91:bb:10:45:8f:ad:8c:a1:21:7e:87:0a:7a:
8b:a0:f2:09:b8:c5:1a:c2:20:8a:f1:5d:b0:2f:34:
9f:a8:85:a3:92:a3:53:77:1f:33:f2:dc:82:7d:e0:
c5:b5:f6:ae:13:a6:64:74:1a:c8:d3:01:09:bd:61:
93:5d:c8:8e:c1:25:38:6a:cd:50:5a:f1:b0:d8:07:
b6:1c:86:87:a6:5a:c8:53:4b:ca:a8:a2:8a:f4:b5:
15:18:54:0a:4e:cd:3d:e4:79:eb:9d:13:38:48:d4:
76:02:1b:73:c1:c7:fc:56:85:cc:aa:35:9b:6a:1b:
3b:40:1c:5a:a8:b7:1e:b1:94:06:de:55:89:c5:9c:
79:3f:95:e0:37:08:a3:2e:88:67:ca:8b:47:35:98:
ed:86:96:4c:cd:2d:15:d5:e1:51:00:e4:66:23:44:
e3:d4:ea:95:25:4a:37:46:68:ab:6c:49:0c:af:13:
f0:ca:0d:05:f0:c8:4a:cf:49:2c:1d:4d:b8:90:7b:
c2:2e:fc:dc:5f:56:08:3a:6d:d0:18:6c:83:e9:96:
c0:ca:82:14:19:9e:2a:22:42:bf:6f:f0:7f:0c:00:
1c:83:83:7c:6d:07:47:55:c6:a8:ec:f6:33:9f:30:
53:c7:bd:21:5b:02:08:60:9d:86:34:36:39:93:c2:
c3:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:CE:4D:2B:F8:F9:87:C0:9B:E0:41:77:72:A0:2C:17:00:BC:63:88
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/98C0B5F6210011F08E1630BEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.104.0/24
Signature Algorithm: sha256WithRSAEncryption
40:6f:48:56:eb:82:1e:3c:94:e2:75:37:bb:dd:99:bb:62:2a:
74:2d:4b:46:39:5b:c7:46:c6:95:16:ea:8d:08:7b:64:04:04:
8b:06:85:2d:b4:34:9d:d5:8c:7f:64:2a:a5:aa:72:c4:ac:db:
2d:91:83:e4:06:77:99:b7:52:04:ff:23:dc:aa:5c:05:da:bd:
ca:11:a5:f9:53:20:98:62:71:88:c3:44:2f:0d:65:da:d6:1b:
4b:d7:a8:48:e2:4b:50:d8:42:1a:df:01:5a:19:a3:85:cf:e0:
0b:13:b9:11:5b:76:2b:da:3e:bd:3c:7e:53:f4:a7:33:3b:b3:
d7:d0:ea:7d:fd:4f:41:a8:19:1f:d9:a3:73:9b:8e:8e:2c:fc:
0f:ba:8d:1e:c4:10:aa:34:9e:38:63:a4:d0:aa:11:b0:36:90:
fd:ad:00:ef:8f:11:0d:45:24:8d:2f:67:b7:d4:ff:6d:ec:19:
2d:fc:9f:06:05:4a:a3:52:a0:6f:d9:df:bd:e2:fd:9e:e2:e6:
b6:df:1b:80:e6:33:af:18:a9:1f:4a:eb:bf:74:4a:2b:7c:0b:
9f:5b:78:6a:f8:c7:55:32:5d:cb:a5:fd:9b:b0:b2:f2:c3:13:
37:33:b0:55:e3:9c:77:8b:9a:ed:b9:b1:85:c9:77:ad:d3:87:
e7:37:f7:16
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICCWowDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
M0JBMTlBRjExMC8GA1UEBRMoNkFFQTI0QjA5OUMzMkIyMkU0RTQ4QkI5RjI2Q0Y1
NzhCRUY2QkZGMzAeFw0yNTA0MjQxMTM4MDJaFw0yNjAxMTMxMTM4MDJaMBgxFjAU
BgNVBAMTDTY4MGEyMmEyLTFhN2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDKkbsQRY+tjKEhfocKeoug8gm4xRrCIIrxXbAvNJ+ohaOSo1N3HzPy3IJ9
4MW19q4TpmR0GsjTAQm9YZNdyI7BJThqzVBa8bDYB7YchoemWshTS8qooor0tRUY
VApOzT3keeudEzhI1HYCG3PBx/xWhcyqNZtqGztAHFqotx6xlAbeVYnFnHk/leA3
CKMuiGfKi0c1mO2GlkzNLRXV4VEA5GYjROPU6pUlSjdGaKtsSQyvE/DKDQXwyErP
SSwdTbiQe8Iu/NxfVgg6bdAYbIPplsDKghQZnioiQr9v8H8MAByDg3xtB0dVxqjs
9jOfMFPHvSFbAghgnYY0NjmTwsM5AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUTM5N
K/j5h8Cb4EF3cqAsFwC8Y4gwHwYDVR0jBBgwFoAUauoksJnDKyLk5Iu58mz1eL72
v/MwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVBNDBENTc3L2F1b2tz
Sm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2F1b2tzSm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVB
NDBENTc3Lzk4QzBCNUY2MjEwMDExRjA4RTE2MzBCRURBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADE+2gwDQYJKoZIhvcNAQEL
BQADggEBAEBvSFbrgh48lOJ1N7vdmbtiKnQtS0Y5W8dGxpUW6o0Ie2QEBIsGhS20
NJ3VjH9kKqWqcsSs2y2Rg+QGd5m3UgT/I9yqXAXavcoRpflTIJhicYjDRC8NZdrW
G0vXqEjiS1DYQhrfAVoZo4XP4AsTuRFbdivaPr08flP0pzM7s9fQ6n39T0GoGR/Z
o3Objo4s/A+6jR7EEKo0njhjpNCqEbA2kP2tAO+PEQ1FJI0vZ7fU/23sGS38nwYF
SqNSoG/Z373i/Z7i5rbfG4DmM68YqR9K6790Sit8C59beGr4x1UyXcul/ZuwsvLD
EzczsFXjnHeLmu25sYXJd63Th+c39xY=
-----END CERTIFICATE-----
Generated at Thu Apr 24 13:40:35 2025 by rpki-client on console.sobornost.net