Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/BAB31C4220F311F08673E7E8DAE4EC9C.roa
File: BAB31C4220F311F08673E7E8DAE4EC9C.roa (raw, json)
Hash identifier: +HKITFloyE7GxzPDlraaEu9vlkWawOWRn+oSXZ8OuoQ=
Subject key identifier: 61:A0:A5:38:CF:7F:9A:97:EF:3A:4A:4C:A4:B9:C6:34:A9:0D:C4:75
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0964
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/BAB31C4220F311F08673E7E8DAE4EC9C.roa
Signing time: Thu 24 Apr 2025 10:06:03 +0000
ROA not before: Thu 24 Apr 2025 10:05:59 +0000
ROA not after: Thu 01 Jan 2026 10:05:59 +0000
asID: 9009
IP address blocks: 102.135.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2404 (0x964)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Apr 24 10:05:59 2025 GMT
Not After : Jan 1 10:05:59 2026 GMT
Subject: CN=680a0d0b-4ab7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8e:35:54:de:e8:f9:b3:f3:e7:ff:bc:fe:34:
38:c2:5f:55:f8:97:da:80:1f:84:46:50:77:5d:c4:
6c:8e:58:13:e3:9b:0a:dc:c7:75:ca:38:df:87:d4:
1d:34:f0:f3:6e:41:75:b9:ce:1f:60:33:5c:7e:9f:
98:87:b5:a3:6a:f6:72:87:ac:d3:8e:d9:0d:6b:7f:
63:82:90:b3:5b:4a:26:f5:27:87:9f:6d:3a:5e:70:
db:be:f5:5b:c0:ae:23:d1:fc:a3:e3:02:9b:f3:12:
86:12:59:c4:6c:04:9d:ca:71:68:3c:22:fb:c9:8a:
1f:56:54:2f:fb:76:8a:56:df:e3:93:8f:e3:47:b5:
32:ab:d4:60:cc:df:21:55:a2:9d:e9:80:0b:b7:a1:
f1:1b:e6:fa:54:52:c1:7e:7c:29:78:c8:dd:24:02:
a1:2b:a9:7f:d5:d4:41:cf:9c:43:fc:65:a4:c0:76:
40:00:bc:5f:38:66:ac:0d:49:09:5d:c3:e0:f6:28:
60:ad:18:14:57:d9:09:1c:2b:a6:58:c3:24:b0:97:
08:e3:c0:90:50:df:45:36:c6:ab:30:1a:11:f1:a7:
b7:0e:ff:91:51:70:81:92:68:2c:28:9a:d7:fe:0c:
29:06:be:78:c0:37:90:b0:70:b8:fd:d2:b5:e0:67:
8a:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:A0:A5:38:CF:7F:9A:97:EF:3A:4A:4C:A4:B9:C6:34:A9:0D:C4:75
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/BAB31C4220F311F08673E7E8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.114.0/24
Signature Algorithm: sha256WithRSAEncryption
23:4f:d9:02:be:21:1a:08:b7:59:87:58:86:9b:51:c5:9a:c4:
01:83:c7:ae:f6:b4:e4:be:7f:b4:d1:1c:cf:d1:f8:0d:c0:de:
de:e8:01:c3:4e:29:9b:c5:43:c1:aa:5f:55:17:31:f3:8b:14:
86:5c:b6:9b:90:e0:9b:05:da:8d:4f:cb:b7:8c:29:6c:dd:e3:
59:bc:59:b8:a2:d9:35:a2:e2:9f:81:5e:6f:2e:23:4f:66:0d:
be:21:57:da:67:1f:7e:f7:85:3f:24:b2:0f:11:ab:2e:21:c7:
d2:87:3a:11:03:a0:9a:74:40:eb:7e:2f:7e:43:82:ea:2e:49:
7c:de:89:1b:a5:d9:62:53:b7:b9:83:01:3d:a3:06:04:7f:0b:
65:7d:28:10:40:a8:9f:95:52:5c:8b:15:7d:b8:09:30:74:02:
26:1c:9d:88:4c:9e:0d:75:ab:47:13:a8:41:d3:a0:60:c8:ab:
4e:c0:74:f5:e8:5e:ac:89:d4:6f:12:29:31:ea:5f:fa:21:93:
5b:de:01:c8:37:85:fd:de:a0:9b:18:d1:99:72:99:c7:dc:7b:
1d:46:ab:98:53:dc:62:ec:af:db:81:11:53:12:49:ff:ef:9c:
8a:04:0e:b3:1e:6b:fa:1f:54:54:8a:28:c9:92:10:1a:93:ef:
13:ba:5a:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 13:40:35 2025 by rpki-client on console.sobornost.net