Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/15E5B9125CBD11F0B34FF98FDAE4EC9C.roa
File: 15E5B9125CBD11F0B34FF98FDAE4EC9C.roa (raw, json)
Hash identifier: 4evZEwzTfXKhX9K4YckdjW5FV8ivVY49aKHJdBg53Cc=
Subject key identifier: E6:E4:5D:32:1B:84:17:C8:7E:6E:93:1D:4A:E1:2F:05:05:4D:6E:57
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0163CA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/15E5B9125CBD11F0B34FF98FDAE4EC9C.roa
Signing time: Wed 09 Jul 2025 12:06:04 +0000
ROA not before: Wed 09 Jul 2025 12:05:59 +0000
ROA not after: Sun 10 Aug 2025 12:05:59 +0000
asID: 20326
IP address blocks: 45.196.133.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91082 (0x163ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 9 12:05:59 2025 GMT
Not After : Aug 10 12:05:59 2025 GMT
Subject: CN=686e5b2c-1e5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:96:78:06:b5:1d:1e:48:b2:fa:54:50:1c:4e:
5a:e1:7d:b6:12:3c:49:3a:26:9d:d7:54:fe:7e:c5:
f3:7a:38:49:10:ea:2d:6f:55:82:ec:74:1f:ae:20:
56:6b:c6:12:7d:18:71:3f:e3:bc:09:15:bb:43:c8:
ce:7a:ea:b1:ff:e7:a8:47:6a:53:33:b7:a9:b3:91:
b2:4a:63:69:34:13:a8:b3:c7:de:08:98:6c:80:8a:
b6:26:19:83:29:f3:47:1a:ca:ee:c1:47:ef:1f:e9:
7e:38:66:8e:1a:ea:86:e0:a8:75:a0:43:bf:b6:11:
6a:c2:f8:2a:ae:1c:3d:9e:51:b5:b5:8a:b6:e5:c9:
50:f0:ce:5d:a5:87:88:08:78:c0:e3:b1:5d:a1:88:
43:c5:6b:33:2a:39:b5:4f:69:23:c0:84:1e:f7:86:
a1:b6:bc:53:03:e2:9c:c1:b7:9d:39:04:bc:ba:a9:
9c:6f:8c:f9:53:24:d2:fb:f7:d1:bb:d6:73:a6:c2:
4d:26:24:cd:53:dd:00:0f:b3:cf:12:05:e9:e3:b9:
4b:3c:c5:20:23:ae:aa:1f:c4:fc:d7:8b:f3:1b:e2:
44:1c:48:c2:4e:5e:88:87:98:65:dc:33:ae:56:20:
d8:68:fb:a6:a8:57:d0:12:20:62:00:04:6c:bb:83:
89:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:E4:5D:32:1B:84:17:C8:7E:6E:93:1D:4A:E1:2F:05:05:4D:6E:57
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/15E5B9125CBD11F0B34FF98FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.133.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:f4:e3:45:92:da:1a:4f:a0:ff:93:e9:1c:b0:e0:9c:fc:f2:
bb:7b:f0:0b:45:fc:8e:8d:c5:d3:e1:9a:3d:a3:33:f0:fe:20:
a9:9f:fa:67:f4:c4:bf:53:81:d7:11:90:00:f8:75:e3:92:79:
e9:8b:58:d5:c0:25:25:7f:6c:cf:3a:1b:26:4c:38:3d:65:54:
32:79:f0:d4:fd:75:02:04:af:17:02:40:ef:82:cd:af:e1:2b:
ef:8c:95:13:d2:76:74:83:22:32:59:e3:15:61:c7:b2:ed:d8:
48:91:27:80:22:81:d7:33:eb:ba:91:df:e8:87:d0:4c:5a:b0:
4f:d2:35:f3:f2:cb:d8:f6:f3:a0:92:06:0f:f5:d2:f4:be:84:
a5:f9:67:6d:3f:e3:aa:90:49:09:f9:f3:62:0e:14:52:c3:21:
f3:8c:83:82:f5:77:c1:49:8f:27:a5:72:5b:fc:08:f1:44:48:
2a:2f:77:70:38:97:3b:d7:69:0c:b5:a0:c4:b1:c8:1f:b6:51:
75:e4:25:dd:ee:3f:65:96:68:8e:de:26:03:7b:dc:f3:b1:fa:
31:48:72:8f:d0:ba:af:0e:b3:df:34:6b:5e:00:7d:41:ea:b6:
00:ac:9f:48:95:3a:24:d7:ba:6f:c5:8f:af:e8:c1:e6:a9:23:
7a:84:f9:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:40:21 2025 by rpki-client