Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/452D5EFE50ED11F08677D1AEDAE4EC9C.roa
File: 452D5EFE50ED11F08677D1AEDAE4EC9C.roa (raw, json)
Hash identifier: l/BsEf08bfRmfxtQjYKDP8KPCGJre0czIRjwjz2upmA=
Subject key identifier: F7:53:10:5F:57:92:6F:F3:4D:64:08:03:5A:B4:C1:D1:5C:0B:BD:C8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015E62
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/452D5EFE50ED11F08677D1AEDAE4EC9C.roa
Signing time: Tue 24 Jun 2025 11:20:45 +0000
ROA not before: Tue 24 Jun 2025 11:20:40 +0000
ROA not after: Wed 23 Jul 2025 11:20:40 +0000
asID: 64013
IP address blocks: 156.247.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89698 (0x15e62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 24 11:20:40 2025 GMT
Not After : Jul 23 11:20:40 2025 GMT
Subject: CN=685a8a0d-b55c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:bb:62:76:87:37:d9:ee:de:16:f5:1e:1c:f4:
25:c7:67:2a:f7:21:fa:5d:74:3f:ed:ce:b8:31:2b:
99:58:be:a4:5f:70:6a:a5:e2:23:07:28:f4:8b:b7:
e9:30:49:2c:2f:37:21:6b:5a:08:9a:3f:e4:ac:25:
54:e3:b6:23:c6:ff:de:2d:d0:73:a9:b0:5a:5c:14:
2f:0d:9e:ff:8b:60:b8:66:f4:3b:01:c1:61:f1:ed:
8f:24:64:e0:1b:b3:d3:7a:0b:59:f4:17:e6:5f:a7:
80:38:8f:03:32:10:9f:20:89:61:c0:db:60:de:ec:
ea:11:94:26:48:fa:02:20:2c:78:ec:30:14:97:ed:
42:79:0a:86:86:fa:c3:0d:59:63:a0:d6:78:8e:f8:
d3:c7:be:02:a7:e3:17:3b:c5:7e:02:db:76:46:ac:
65:78:a2:98:8e:f4:1d:6c:60:54:36:bd:e9:ce:c5:
ef:cc:91:26:5b:8b:1c:81:78:89:28:86:c7:fe:3c:
10:c1:07:03:bb:76:3e:34:8e:1d:f5:bb:8d:99:27:
46:6a:14:96:b9:5a:a2:be:9c:b8:62:8d:e1:eb:be:
07:af:4e:a5:a6:76:6d:ec:d2:d8:4c:0a:32:c6:0d:
67:6c:78:3b:c3:91:ec:4f:84:71:0f:a9:9c:f3:bd:
ea:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:53:10:5F:57:92:6F:F3:4D:64:08:03:5A:B4:C1:D1:5C:0B:BD:C8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/452D5EFE50ED11F08677D1AEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.32.0/19
Signature Algorithm: sha256WithRSAEncryption
20:2d:52:a2:41:80:a4:5c:68:81:8b:c5:ae:85:c8:00:c5:7b:
72:a0:7c:2b:c5:7a:69:3b:63:cc:8e:48:b5:79:28:f5:ff:4f:
78:c1:73:41:94:4d:85:14:ed:46:b1:c1:96:55:0c:78:07:45:
54:b2:f7:b0:37:b1:8b:08:e0:ea:c3:85:63:dc:c3:19:64:2e:
c4:ce:41:5f:46:d0:5a:6e:b8:7d:63:61:81:60:b6:99:7f:71:
8d:c3:68:f5:05:72:a0:c5:07:98:7f:aa:07:a5:03:ac:23:aa:
f4:be:1c:33:f0:d3:6b:59:42:12:72:63:e5:f8:c1:6a:02:62:
f4:98:b3:43:2b:f2:1c:30:57:00:05:60:b1:c3:f3:39:9c:6e:
88:b7:fd:83:f5:2c:8d:f3:40:ca:91:00:e3:ac:d4:e5:04:48:
02:e3:a9:04:23:9a:28:35:1c:9b:a8:15:34:bc:1f:ca:c7:f0:
6f:f7:f4:1c:2a:32:76:88:7c:d1:93:af:ff:7d:5a:42:71:cd:
97:8b:bc:ae:fb:93:81:66:cb:05:e0:f9:66:d7:24:1a:24:94:
a6:8d:d5:c2:e3:48:94:2b:b5:3b:d4:c7:80:23:b2:58:90:26:
c8:79:fd:8d:ad:d4:52:11:cf:66:c9:63:2f:59:7b:0b:31:be:
21:89:96:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 17:26:35 2025 by rpki-client