Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/59B620445CBF11F0B487669DDAE4EC9C.roa
File: 59B620445CBF11F0B487669DDAE4EC9C.roa (raw, json)
Hash identifier: RC3Nf94rWSvcn2QomVzyWINZmeoAHlAMjhgFABICuws=
Subject key identifier: BE:AD:15:7C:56:8B:3E:33:1A:D8:7B:A8:72:C6:B1:4B:4A:93:0F:8D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0163D3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/59B620445CBF11F0B487669DDAE4EC9C.roa
Signing time: Wed 09 Jul 2025 12:22:17 +0000
ROA not before: Wed 09 Jul 2025 12:22:12 +0000
ROA not after: Sun 10 Aug 2025 12:22:12 +0000
asID: 61112
IP address blocks: 45.192.240.0/24 maxlen: 24
45.192.241.0/24 maxlen: 24
45.192.246.0/24 maxlen: 24
45.192.247.0/24 maxlen: 24
45.192.248.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 23 Jul 2025 00:26:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91091 (0x163d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 9 12:22:12 2025 GMT
Not After : Aug 10 12:22:12 2025 GMT
Subject: CN=686e5ef9-5618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ed:44:fb:4c:9c:e8:11:1e:6a:de:06:3f:af:
b1:23:4e:23:cb:09:ea:fb:ea:a7:02:8f:a8:21:cd:
6e:1e:1e:bf:8c:86:eb:37:5f:62:c9:8a:f7:cd:39:
ed:c4:73:68:08:d6:13:bd:00:a1:59:44:b6:69:e9:
88:66:f2:6d:ee:ad:98:0d:f4:d3:ba:d5:88:f5:d0:
26:13:bd:ed:60:fb:67:47:87:a5:7a:81:74:dd:d7:
dd:5a:ab:df:31:80:d1:ef:ab:b1:16:8b:6d:06:40:
7c:2f:3f:2e:1d:25:0c:92:83:2e:e6:0f:10:0c:9f:
b6:14:32:fd:5d:b2:28:de:ee:31:d2:80:bd:1f:a0:
0d:23:73:45:09:1c:dd:33:cd:c3:b4:66:28:e8:8f:
ee:0e:1d:22:f7:1e:af:f9:f7:0b:60:84:cd:51:24:
e0:a1:a8:2c:7a:7e:32:b6:62:72:c0:7b:ac:bb:9b:
ae:5c:2e:f3:8b:2c:77:cd:b2:4d:76:7b:5a:60:b8:
e9:86:30:1a:cc:f9:36:00:42:08:28:ec:dc:6b:7b:
71:32:7b:b2:60:10:f2:03:aa:39:6f:f8:64:5f:25:
f6:49:eb:5c:9a:73:e7:f7:b0:3e:19:af:03:c0:f6:
18:28:38:8f:c3:c3:d3:e8:4d:8e:2e:64:b1:c7:47:
b8:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:AD:15:7C:56:8B:3E:33:1A:D8:7B:A8:72:C6:B1:4B:4A:93:0F:8D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/59B620445CBF11F0B487669DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.240.0/23
45.192.246.0-45.192.249.255
Signature Algorithm: sha256WithRSAEncryption
b5:49:72:14:c5:81:4d:3a:15:32:49:a4:aa:d6:da:3b:bb:cb:
85:eb:3b:af:3e:f2:af:92:6b:2e:7f:1e:75:57:2e:60:a3:aa:
52:20:62:0d:61:2d:7a:f7:97:cf:68:14:fd:ea:5a:de:a3:5e:
95:21:de:85:1b:dc:cf:1f:6c:0c:39:ef:e4:b9:e2:91:5e:f6:
63:3b:2d:0f:c8:b3:33:df:04:01:b8:85:d9:32:82:0e:15:95:
8d:ff:26:52:b1:52:db:58:0e:34:57:38:af:68:1d:d1:2c:84:
70:18:9d:30:8a:01:aa:a9:98:55:14:fc:e5:12:88:66:02:63:
f4:a7:5c:5d:e4:8b:31:0a:93:8e:01:94:6a:d0:87:c3:b7:3a:
87:d5:f3:09:24:49:20:df:42:57:90:61:9e:74:5a:e6:72:30:
33:1b:ed:d3:89:30:6a:b8:77:1a:e0:e7:d4:14:85:bc:42:53:
e0:6c:90:27:6c:2c:53:6b:71:2b:c4:93:99:7d:ee:7c:af:4d:
5d:a5:14:06:59:62:01:0d:46:51:34:10:54:75:30:e5:88:ca:
e8:08:29:f9:9a:ba:1c:c5:58:3f:69:97:3e:46:7c:33:20:64:
c9:0c:84:31:96:87:22:64:1c:50:6d:19:9d:79:d8:48:55:8a:
13:47:39:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 02:41:33 2025 by rpki-client