Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4199DD6063AA11F0B497648FDAE4EC9C.roa
File: 4199DD6063AA11F0B497648FDAE4EC9C.roa (raw, json)
Hash identifier: rV3bs29UzCGbm82OPdB4Jox459cSLchvjyu/0SweRko=
Subject key identifier: 56:0E:B5:C9:23:C5:72:99:40:56:15:15:D2:5A:74:5C:79:46:50:BC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016603
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4199DD6063AA11F0B497648FDAE4EC9C.roa
Signing time: Fri 18 Jul 2025 07:38:55 +0000
ROA not before: Fri 18 Jul 2025 07:38:50 +0000
ROA not after: Mon 25 Aug 2025 07:38:50 +0000
asID: 2914
IP address blocks: 45.202.74.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91651 (0x16603)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 18 07:38:50 2025 GMT
Not After : Aug 25 07:38:50 2025 GMT
Subject: CN=6879fa0f-913c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:01:4d:72:2c:a2:b7:d0:23:c5:94:12:bf:03:
49:66:03:41:82:35:66:ba:d1:c5:7a:2a:0e:be:be:
29:15:ae:42:1e:cc:61:97:e3:ab:da:51:7e:fe:9a:
3a:d5:9b:c3:b8:0b:3b:ce:39:25:35:0b:bf:81:42:
5f:fb:27:a5:d3:46:af:79:cb:2e:f8:d7:02:0f:0d:
7b:61:1d:83:8f:90:73:4c:45:4d:35:2a:5f:15:c9:
21:3c:cf:94:3b:e4:58:fd:c6:e9:96:2f:5d:e6:00:
7c:cc:bf:4a:90:ed:f9:c1:d9:86:e3:cf:43:b9:d2:
61:4c:97:53:8c:e8:8c:ec:a9:76:67:64:ad:47:51:
5a:29:31:cb:8f:20:58:f9:0d:cc:22:4b:bd:b2:5c:
68:9e:dd:64:43:cd:7b:e0:78:a4:ee:c8:d2:13:95:
d1:33:a1:27:13:78:e8:2c:6a:b6:23:97:06:2f:ed:
a9:89:b1:ae:22:da:cc:24:12:81:25:8a:65:8c:ee:
9f:ba:5b:26:4d:18:14:6f:b0:43:d8:2e:8a:98:8e:
13:01:09:25:90:50:78:2e:f3:df:bf:d3:06:9c:ef:
5b:bd:65:21:89:20:73:a5:b6:f4:d0:25:f7:b0:dd:
39:80:ba:13:f6:5d:b4:65:41:3e:35:f3:66:55:40:
71:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:0E:B5:C9:23:C5:72:99:40:56:15:15:D2:5A:74:5C:79:46:50:BC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4199DD6063AA11F0B497648FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.74.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:fe:dc:60:a6:82:0d:f3:3b:98:95:92:9a:bb:6e:7a:64:fa:
4b:6e:2c:28:d4:fc:08:40:1a:8f:3f:90:73:e3:dd:68:94:ca:
6a:bf:aa:16:f6:3f:80:e7:aa:40:0d:89:6f:9a:b1:bf:67:9a:
28:a1:db:ee:97:03:ad:3f:88:98:d7:ab:34:98:e5:a4:71:b5:
d7:3c:ad:20:ba:bb:2a:7e:41:32:96:b9:5b:c0:8f:7e:af:49:
81:65:f4:05:57:1b:5d:76:e4:87:3f:81:cd:09:ec:e5:eb:ae:
b2:a9:0e:b9:5c:4e:93:df:21:38:6e:7a:b3:06:4d:d6:5d:f8:
0f:55:af:d4:d7:f4:04:ed:f8:69:87:33:5e:97:ce:b6:89:2f:
e6:7b:fb:f7:00:ce:5b:4e:92:76:39:33:11:c5:46:e2:50:13:
9d:95:49:07:68:40:67:f2:2b:17:de:72:1c:23:28:b1:66:30:
4d:14:46:60:c7:41:9d:e8:39:59:98:79:8f:3d:40:ec:cf:33:
5a:33:70:df:43:3d:b3:b7:d1:ef:18:bf:3c:0f:11:2f:00:16:
3c:1e:64:e1:f4:04:73:82:e0:7f:a8:cf:ca:02:6c:53:4e:a0:
73:27:0d:a7:fd:58:a0:e0:41:cd:0e:8f:1f:4c:2b:0f:1f:a0:
60:fa:70:c1
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAWYDMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNzE4MDczODUwWhcNMjUwODI1MDczODUwWjAYMRYw
FAYDVQQDEw02ODc5ZmEwZi05MTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsQFNciyit9AjxZQSvwNJZgNBgjVmutHFeioOvr4pFa5CHsxhl+Or2lF+
/po61ZvDuAs7zjklNQu/gUJf+yel00avecsu+NcCDw17YR2Dj5BzTEVNNSpfFckh
PM+UO+RY/cbpli9d5gB8zL9KkO35wdmG489DudJhTJdTjOiM7Kl2Z2StR1FaKTHL
jyBY+Q3MIku9slxont1kQ8174Hik7sjSE5XRM6EnE3joLGq2I5cGL+2pibGuItrM
JBKBJYpljO6fulsmTRgUb7BD2C6KmI4TAQklkFB4LvPfv9MGnO9bvWUhiSBzpbb0
0CX3sN05gLoT9l20ZUE+NfNmVUBxMwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFFYO
tckjxXKZQFYVFdJadFx5RlC8MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC80MTk5REQ2MDYzQUExMUYwQjQ5NzY0OEZEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcpKMA0GCSqGSIb3DQEBCwUA
A4IBAQBP/txgpoIN8zuYlZKau256ZPpLbiwo1PwIQBqPP5Bz491olMpqv6oW9j+A
56pADYlvmrG/Z5ooodvulwOtP4iY16s0mOWkcbXXPK0gursqfkEylrlbwI9+r0mB
ZfQFVxtdduSHP4HNCezl666yqQ65XE6T3yE4bnqzBk3WXfgPVa/U1/QE7fhphzNe
l862iS/me/v3AM5bTpJ2OTMRxUbiUBOdlUkHaEBn8isX3nIcIyixZjBNFEZgx0Gd
6DlZmHmPPUDszzNaM3DfQz2zt9HvGL88DxEvABY8HmTh9ARzguB/qM/KAmxTTqBz
Jw2n/Vig4EHNDo8fTCsPH6Bg+nDB
-----END CERTIFICATE-----
Generated at Sun Jul 20 13:40:12 2025 by rpki-client