Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73A0A21C617F11F09D2036D9DAE4EC9C.roa
File: 73A0A21C617F11F09D2036D9DAE4EC9C.roa (raw, json)
Hash identifier: YMC+1dquV5TmSY9tgDSVrQG4PWQrTf/ahP/pCyJ8KpA=
Subject key identifier: 15:24:89:90:FA:D0:CB:16:FD:1A:98:72:6F:C1:52:53:EB:0D:68:CA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016559
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73A0A21C617F11F09D2036D9DAE4EC9C.roa
Signing time: Tue 15 Jul 2025 13:27:28 +0000
ROA not before: Tue 15 Jul 2025 13:27:23 +0000
ROA not after: Fri 22 Aug 2025 13:27:23 +0000
asID: 19318
IP address blocks: 45.202.120.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91481 (0x16559)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 15 13:27:23 2025 GMT
Not After : Aug 22 13:27:23 2025 GMT
Subject: CN=68765740-b455
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:af:8b:49:c3:64:b7:bf:15:a8:5c:a3:0e:2a:
70:2a:01:65:e3:5c:ab:06:3a:32:61:4b:a8:5f:d3:
31:14:61:c0:8e:df:e4:7e:4b:27:c4:f8:63:d6:f6:
47:d2:24:3c:bf:5d:cf:60:14:22:be:cf:41:f2:ff:
b0:12:1a:ea:f9:84:a1:26:03:4e:77:a8:00:21:5a:
cf:85:30:66:88:7c:6f:44:20:7d:10:7b:97:30:a6:
74:e7:8c:7a:c8:10:38:34:24:f3:66:46:3d:35:c0:
cc:f6:af:7e:7b:bb:e3:e7:d7:e2:91:39:63:c8:4c:
a5:fb:38:36:3f:99:65:5d:5e:eb:a6:fa:0b:21:d8:
ba:b0:2b:8b:ee:ad:19:5b:7f:25:57:d8:18:9a:51:
e4:68:9b:42:a3:4f:03:a3:59:b1:2e:f7:21:3d:f3:
ca:02:f3:36:40:f9:9c:aa:e4:cc:55:50:55:8e:81:
f8:8e:64:fd:67:8e:99:c0:c5:f4:ff:82:63:78:91:
82:64:cf:9a:40:16:91:d9:ce:43:8d:97:c5:d3:87:
0b:ac:86:32:22:95:7d:55:3c:f7:67:ed:02:39:75:
96:52:8a:6c:46:2a:72:67:23:79:48:6e:df:09:6d:
61:b4:5d:02:ad:85:fc:a1:bf:0b:26:c6:6e:12:89:
d9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:24:89:90:FA:D0:CB:16:FD:1A:98:72:6F:C1:52:53:EB:0D:68:CA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73A0A21C617F11F09D2036D9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.120.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:b2:8d:d0:5d:b4:da:bf:dd:52:ff:f7:1d:5e:15:84:55:02:
00:36:27:b4:5e:7a:e6:4c:33:e1:91:2b:82:29:93:76:63:04:
81:39:b6:25:e9:42:49:a4:fe:1c:bc:26:89:2c:20:f5:7d:78:
09:89:fc:75:82:3b:51:94:85:21:08:fa:d5:f2:97:ee:db:19:
77:1c:2b:fe:c0:bb:e4:bc:05:ea:85:44:05:1f:b8:0e:dd:5e:
91:20:bc:cb:71:61:f5:88:20:74:cd:3a:7b:9c:62:2f:19:24:
7c:96:e5:43:41:5b:77:2c:39:f7:d1:c2:d2:ef:a9:95:3c:6e:
7c:b7:ac:8f:73:5c:c7:b7:f9:56:c3:08:13:87:a8:99:61:10:
dc:12:36:50:d5:54:43:da:05:b7:d7:9b:9d:41:0a:06:62:66:
f2:d0:f9:75:4c:53:4d:11:f9:e7:e7:c9:25:4b:34:c3:93:20:
ca:8a:bd:0d:01:71:61:bf:a0:33:7d:40:c0:a7:a9:53:54:47:
a8:f2:dc:1f:64:17:dc:69:c3:0c:ff:16:3e:55:8b:1c:aa:c8:
dc:5d:8e:a6:dc:8a:9c:cb:f0:5e:05:ad:f5:98:20:b1:8d:47:
e0:34:1f:ab:37:f2:83:bf:06:05:01:b0:43:15:e2:3f:65:60:
c4:cd:e7:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:35:47 2025 by rpki-client