Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73537BE85E4811F092CE1CE2DAE4EC9C.roa
File: 73537BE85E4811F092CE1CE2DAE4EC9C.roa (raw, json)
Hash identifier: FTCUGedePFy3sgEIgp0pHDmThhPryNrNvBs/yYZ6O0k=
Subject key identifier: 75:12:92:24:B2:E3:C9:AE:05:A7:79:85:0D:08:36:B5:DF:DB:84:98
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01648E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73537BE85E4811F092CE1CE2DAE4EC9C.roa
Signing time: Fri 11 Jul 2025 11:16:12 +0000
ROA not before: Fri 11 Jul 2025 11:16:07 +0000
ROA not after: Sat 16 Aug 2025 11:16:07 +0000
asID: 22773
IP address blocks: 45.202.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91278 (0x1648e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 11 11:16:07 2025 GMT
Not After : Aug 16 11:16:07 2025 GMT
Subject: CN=6870f27c-68d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:37:0b:eb:ae:2e:bb:db:e3:1b:5d:51:66:99:
dc:f2:75:e3:04:73:36:ea:9d:bc:d9:5b:d1:15:12:
70:ee:fd:23:fc:40:1c:1e:22:4e:d2:0e:d6:25:42:
2e:23:b1:c7:96:77:13:5c:96:a7:25:9c:25:29:4e:
03:da:d1:b0:a0:cc:2d:62:b0:7c:41:12:c6:8f:b1:
e7:9d:cf:ac:6c:be:23:cd:9c:b1:da:b1:32:78:f9:
42:34:aa:69:fa:23:11:0a:a5:92:63:15:fb:5d:8d:
70:c1:58:f1:97:76:8c:46:a2:65:c1:87:3d:9a:72:
c2:ca:de:90:a6:c0:bd:6a:ca:95:9e:a8:ba:ba:4b:
67:f9:97:08:63:02:74:00:cf:20:87:93:9a:4b:aa:
f2:41:da:30:eb:ce:5c:78:21:42:48:7b:12:52:5a:
3c:68:67:e8:9b:e0:5d:ad:5c:9a:ae:9b:e7:6f:15:
a5:63:39:6d:a3:4d:ab:49:a3:e9:ae:1e:cc:39:35:
a1:bc:37:e4:1b:3e:70:ba:20:3b:c4:f7:0d:90:2f:
ba:15:fd:04:f3:cf:37:56:df:59:0c:86:86:f6:8c:
28:bc:eb:1e:08:bf:cb:36:d8:45:8b:3f:ad:28:c2:
a1:e8:31:ea:a0:0d:3d:9f:18:44:ea:ef:8d:a5:c4:
5a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:12:92:24:B2:E3:C9:AE:05:A7:79:85:0D:08:36:B5:DF:DB:84:98
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73537BE85E4811F092CE1CE2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.106.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:e9:70:c9:5c:d6:17:44:42:49:38:f8:5f:af:fb:73:ef:38:
e1:c1:05:63:8b:10:64:1e:4b:5a:53:92:0a:fe:c2:0d:ea:7f:
ef:ac:fc:79:25:3f:9b:e3:63:38:78:db:03:ec:5c:00:85:69:
3e:3e:43:05:de:a0:9b:9e:bf:40:e6:12:10:b8:0d:d5:d4:7d:
71:09:e4:bc:ef:4c:2c:cf:f6:96:34:b3:a0:d5:5b:40:46:1e:
9f:87:fa:19:36:31:ff:c4:03:2d:4d:09:50:b8:3d:f5:99:ba:
53:3f:a2:bd:7c:33:e5:45:3b:44:8c:c4:7a:c9:04:d4:a6:36:
f4:c3:fb:71:e4:fb:50:1e:8d:d0:8d:a3:eb:e7:f5:b2:20:91:
6a:f6:ca:22:fd:cf:aa:27:40:fc:4d:83:57:17:e0:04:41:fc:
7b:42:34:65:3b:e8:cf:f4:8e:77:9f:19:08:e6:3b:01:06:56:
6f:e6:43:9e:4d:82:a7:18:f7:2a:c2:55:06:c3:52:92:6e:e9:
17:2b:bf:6b:9a:c3:c4:ed:9c:96:52:6c:dd:3a:60:cf:22:18:
f9:58:6b:70:77:5a:35:f0:b3:ac:b2:cd:24:e9:3e:64:51:ca:
eb:55:ae:d6:28:e6:0b:40:1e:49:bb:7f:ac:53:37:ba:d2:11:
de:8d:d5:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 22:31:50 2025 by rpki-client