Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/748D3F4C58C311F0929918ACDAE4EC9C.roa
File: 748D3F4C58C311F0929918ACDAE4EC9C.roa (raw, json)
Hash identifier: uczAgxFe+wse44JxGU9+o0aJc9hTLIcglrm2K4n5LFE=
Subject key identifier: 40:3F:49:C2:3C:97:F8:97:E4:AD:C9:ED:87:52:9E:7D:F6:7C:57:09
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0160DC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/748D3F4C58C311F0929918ACDAE4EC9C.roa
Signing time: Fri 04 Jul 2025 10:41:35 +0000
ROA not before: Fri 04 Jul 2025 10:41:30 +0000
ROA not after: Thu 07 Aug 2025 10:41:30 +0000
asID: 214808
IP address blocks: 45.192.242.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90332 (0x160dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 4 10:41:30 2025 GMT
Not After : Aug 7 10:41:30 2025 GMT
Subject: CN=6867afdf-5d0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:43:8c:a9:b9:f8:0a:f9:5b:6b:36:b3:63:c0:
c3:e9:26:ee:2c:8c:dc:0e:1c:51:8f:ea:df:d5:f4:
75:db:ae:23:6f:17:2d:ca:54:20:56:31:d4:00:ee:
97:bc:c6:83:0e:a1:7e:de:f2:be:29:69:55:26:40:
79:a1:9f:e6:7f:2f:6a:7e:77:af:9a:35:c4:73:59:
15:fc:4f:c3:85:70:f4:c7:8f:7a:44:3e:db:95:ba:
38:6e:b8:77:e7:15:d9:d4:0d:e6:59:f1:e5:90:de:
be:17:fd:30:b1:a1:8f:a4:ae:ce:d9:ef:82:b8:4b:
3e:94:52:fb:6d:96:55:71:99:de:44:e2:c4:c4:d2:
e6:dd:35:c3:ed:c0:e8:4f:8b:88:eb:77:25:14:5e:
de:e1:8e:11:6c:27:3e:84:08:d9:43:da:7d:a9:e4:
b0:e5:8a:7f:c5:d7:4d:ac:ba:0e:0a:3d:a4:88:1c:
4c:59:74:1f:be:71:1c:3d:b6:b1:56:9a:93:8f:6d:
8c:3d:4e:4f:77:b1:7e:5f:2f:76:9b:da:16:0b:d7:
2a:1e:d7:9e:7d:23:58:dc:b7:27:38:98:ce:e2:33:
57:ba:ea:df:3c:99:74:c6:8d:75:6c:a5:55:65:87:
a7:bb:e8:0d:fb:07:e4:ae:6e:db:9d:ea:3a:94:d7:
2a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:3F:49:C2:3C:97:F8:97:E4:AD:C9:ED:87:52:9E:7D:F6:7C:57:09
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/748D3F4C58C311F0929918ACDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.242.0/23
Signature Algorithm: sha256WithRSAEncryption
19:59:43:8b:48:06:25:78:20:d7:f4:a9:a8:80:86:88:3c:5a:
ad:1a:c3:3b:9b:c9:b8:59:74:14:c4:44:b6:9c:c3:0c:7c:ba:
c1:a8:3a:61:b1:cf:9e:b2:c4:75:ba:a3:ff:a0:7d:f0:43:b9:
ea:68:cf:8f:bc:a2:41:ae:d2:0c:f5:9c:c2:0c:f7:4c:d7:5d:
b6:70:9b:34:5b:66:45:e6:08:76:42:11:88:d9:cb:81:35:b5:
20:40:d7:2a:01:f8:de:5a:9e:22:4f:ea:7d:5b:f9:b7:b4:a7:
fd:c4:92:30:c4:c0:f8:83:95:b3:a3:75:3d:e0:9b:90:e8:08:
90:7a:06:ec:3e:8e:c2:61:d9:0d:b3:58:35:0b:79:41:fc:4f:
d0:b7:da:fd:17:c6:43:33:31:b2:b6:df:dc:fd:7f:0b:6f:4c:
90:dd:5c:87:78:e4:04:47:56:3a:85:d0:15:91:07:76:3e:a3:
fe:a4:bf:a3:2d:1c:fe:d1:ca:37:39:7d:14:a2:18:5b:56:78:
a5:fd:a4:5e:34:03:2d:e5:d2:c5:1c:1e:75:f5:4e:e5:50:67:
09:c1:73:f9:1f:26:5e:9d:54:2d:f2:85:e9:c6:09:00:84:62:
a5:00:24:88:28:40:80:01:3d:c3:32:0e:a9:78:37:20:61:51:
99:f3:bc:6f
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAWDcMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNzA0MTA0MTMwWhcNMjUwODA3MTA0MTMwWjAYMRYw
FAYDVQQDEw02ODY3YWZkZi01ZDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0kOMqbn4CvlbazazY8DD6SbuLIzcDhxRj+rf1fR1264jbxctylQgVjHU
AO6XvMaDDqF+3vK+KWlVJkB5oZ/mfy9qfnevmjXEc1kV/E/DhXD0x496RD7blbo4
brh35xXZ1A3mWfHlkN6+F/0wsaGPpK7O2e+CuEs+lFL7bZZVcZneROLExNLm3TXD
7cDoT4uI63clFF7e4Y4RbCc+hAjZQ9p9qeSw5Yp/xddNrLoOCj2kiBxMWXQfvnEc
PbaxVpqTj22MPU5Pd7F+Xy92m9oWC9cqHteefSNY3LcnOJjO4jNXuurfPJl0xo11
bKVVZYenu+gN+wfkrm7bneo6lNcq0QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFEA/
ScI8l/iX5K3J7YdSnn32fFcJMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC83NDhEM0Y0QzU4QzMxMUYwOTI5OTE4QUNEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLcDyMA0GCSqGSIb3DQEBCwUA
A4IBAQAZWUOLSAYleCDX9KmogIaIPFqtGsM7m8m4WXQUxES2nMMMfLrBqDphsc+e
ssR1uqP/oH3wQ7nqaM+PvKJBrtIM9ZzCDPdM1122cJs0W2ZF5gh2QhGI2cuBNbUg
QNcqAfjeWp4iT+p9W/m3tKf9xJIwxMD4g5Wzo3U94JuQ6AiQegbsPo7CYdkNs1g1
C3lB/E/Qt9r9F8ZDMzGytt/c/X8Lb0yQ3VyHeOQER1Y6hdAVkQd2PqP+pL+jLRz+
0co3OX0UohhbVnil/aReNAMt5dLFHB519U7lUGcJwXP5HyZenVQt8oXpxgkAhGKl
ACSIKECAAT3DMg6peDcgYVGZ87xv
-----END CERTIFICATE-----
Generated at Sun Jul 20 13:35:45 2025 by rpki-client