Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4AE1EDC059D411F0A78E1595DAE4EC9C.roa
File: 4AE1EDC059D411F0A78E1595DAE4EC9C.roa (raw, json)
Hash identifier: LSS9RmpYZIUP8glmr3saZd17QZEPCqdji+N2lFF0flc=
Subject key identifier: 43:9E:E7:E8:2C:B0:26:78:0B:75:69:55:FD:46:E4:60:A9:45:3E:63
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0161D9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4AE1EDC059D411F0A78E1595DAE4EC9C.roa
Signing time: Sat 05 Jul 2025 19:14:38 +0000
ROA not before: Sat 05 Jul 2025 19:14:33 +0000
ROA not after: Wed 10 Sep 2025 19:14:33 +0000
asID: 395793
IP address blocks: 45.192.244.0/24 maxlen: 24
45.195.133.0/24 maxlen: 24
45.201.28.0/24 maxlen: 24
45.201.29.0/24 maxlen: 24
45.201.30.0/24 maxlen: 24
45.201.31.0/24 maxlen: 24
45.201.32.0/24 maxlen: 24
45.204.149.0/24 maxlen: 24
45.204.150.0/24 maxlen: 24
45.204.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90585 (0x161d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 5 19:14:33 2025 GMT
Not After : Sep 10 19:14:33 2025 GMT
Subject: CN=6869799e-5184
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3c:45:0a:8c:9a:6f:93:d5:7d:05:71:c4:4b:
41:2e:7d:8c:84:08:aa:97:0c:0e:ff:66:22:57:e9:
d1:66:10:14:18:18:03:15:80:a7:33:2d:f2:35:dc:
1f:cc:45:5a:fd:ce:d3:a2:76:5e:2d:9e:8b:4c:2e:
00:6e:14:b5:61:27:d1:00:e0:c0:25:7c:74:91:f3:
21:bb:6a:57:2a:6a:ff:e1:e8:8e:67:be:bb:3b:d1:
77:c9:59:1a:49:8f:0e:b2:a7:1c:4b:38:0e:64:7b:
3c:5b:46:03:4f:2f:b4:a8:de:e4:3a:0d:90:eb:e7:
aa:1d:73:25:aa:a1:bd:aa:ff:14:2f:a3:ed:64:9f:
d9:b6:bb:f1:9d:d5:11:4a:1e:d0:d0:50:c8:27:7d:
4c:bf:dd:dd:c5:6b:b6:62:25:bc:9c:62:54:cf:f0:
7b:b0:89:04:63:cd:ab:9a:5c:80:60:b4:a3:aa:ff:
49:1f:59:06:ef:70:61:0f:3c:32:94:90:8d:ae:10:
14:09:7a:cd:c3:fd:21:8c:b5:bb:c4:fd:3b:9c:e6:
2a:42:f2:73:3d:e5:75:a4:9f:57:0b:13:4b:67:20:
b7:de:ee:ac:40:1a:5e:a7:5c:f3:47:ca:3b:93:8e:
2d:ff:6f:5d:4e:cb:fd:2a:d5:7a:42:2d:3d:c1:1f:
f5:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:9E:E7:E8:2C:B0:26:78:0B:75:69:55:FD:46:E4:60:A9:45:3E:63
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4AE1EDC059D411F0A78E1595DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.244.0/24
45.195.133.0/24
45.201.28.0-45.201.32.255
45.204.149.0-45.204.151.255
Signature Algorithm: sha256WithRSAEncryption
47:74:ae:11:b1:06:5c:31:ac:e7:44:c0:a4:a5:65:df:57:5c:
52:5e:2c:04:42:67:5a:d0:70:26:a6:28:58:54:e7:12:17:29:
da:67:31:09:80:ad:fa:94:4d:85:dd:d6:33:63:bf:9d:a4:7a:
1f:63:c6:26:51:46:8b:99:47:09:33:0b:aa:5c:59:ea:bd:15:
59:af:51:05:8a:6c:b9:46:19:29:fe:c2:43:78:96:ac:47:ab:
19:7a:f4:c3:75:f7:23:82:d6:0a:9b:fa:fa:33:7f:00:33:10:
54:63:57:2b:ff:6f:4e:5d:48:a8:e7:59:83:f3:90:2c:26:fb:
57:14:94:36:21:f7:2d:29:2a:e9:84:89:2a:49:44:91:c5:12:
90:a5:f0:3a:e0:14:3a:32:43:9d:09:0e:4b:87:04:7b:8a:53:
dd:a3:05:5d:62:bf:0f:be:ce:2c:30:ba:ef:3d:46:d4:66:cc:
73:05:d8:93:79:8f:09:ec:65:d5:5f:73:44:ec:16:69:a1:b2:
de:a7:0c:89:bb:c7:1c:82:58:99:6e:d1:26:19:38:9d:9b:08:
71:77:87:73:9a:a0:05:ad:77:55:d8:dd:d9:da:52:56:49:a1:
17:ac:bb:41:6c:63:68:b9:80:cd:8d:9c:13:ed:3f:14:99:6c:
22:f1:d5:47
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgIDAWHZMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNzA1MTkxNDMzWhcNMjUwOTEwMTkxNDMzWjAYMRYw
FAYDVQQDEw02ODY5Nzk5ZS01MTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArjxFCoyab5PVfQVxxEtBLn2MhAiqlwwO/2YiV+nRZhAUGBgDFYCnMy3y
NdwfzEVa/c7TonZeLZ6LTC4AbhS1YSfRAODAJXx0kfMhu2pXKmr/4eiOZ767O9F3
yVkaSY8OsqccSzgOZHs8W0YDTy+0qN7kOg2Q6+eqHXMlqqG9qv8UL6PtZJ/Ztrvx
ndURSh7Q0FDIJ31Mv93dxWu2YiW8nGJUz/B7sIkEY82rmlyAYLSjqv9JH1kG73Bh
DzwylJCNrhAUCXrNw/0hjLW7xP07nOYqQvJzPeV1pJ9XCxNLZyC33u6sQBpep1zz
R8o7k44t/29dTsv9KtV6Qi09wR/1xwIDAQABo4ICxDCCAsAwHQYDVR0OBBYEFEOe
5+gssCZ4C3VpVf1G5GCpRT5jMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC80QUUxRURDMDU5RDQxMUYwQTc4RTE1OTVEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MEEGCCsGAQUFBwEHAQH/BDIwMDAuBAIAATAoAwQALcD0AwQALcOFMAwDBAItyRwD
BAAtySAwDAMEAC3MlQMEAy3MkDANBgkqhkiG9w0BAQsFAAOCAQEAR3SuEbEGXDGs
50TApKVl31dcUl4sBEJnWtBwJqYoWFTnEhcp2mcxCYCt+pRNhd3WM2O/naR6H2PG
JlFGi5lHCTMLqlxZ6r0VWa9RBYpsuUYZKf7CQ3iWrEerGXr0w3X3I4LWCpv6+jN/
ADMQVGNXK/9vTl1IqOdZg/OQLCb7VxSUNiH3LSkq6YSJKklEkcUSkKXwOuAUOjJD
nQkOS4cEe4pT3aMFXWK/D77OLDC67z1G1GbMcwXYk3mPCexl1V9zROwWaaGy3qcM
ibvHHIJYmW7RJhk4nZsIcXeHc5qgBa13Vdjd2dpSVkmhF6y7QWxjaLmAzY2cE+0/
FJlsIvHVRw==
-----END CERTIFICATE-----
Generated at Sun Jul 20 11:20:40 2025 by rpki-client