Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/794F0C545B1111F0B7C435B0DAE4EC9C.roa
File: 794F0C545B1111F0B7C435B0DAE4EC9C.roa (raw, json)
Hash identifier: CBBHxzqhYSsBueb/pNmSdKVUHQbrp6c0zYvbOJHkZWg=
Subject key identifier: 63:F4:AE:C3:B5:17:F8:74:47:2D:52:CD:D5:AF:FD:28:99:2C:5A:C5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0162E0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/794F0C545B1111F0B7C435B0DAE4EC9C.roa
Signing time: Mon 07 Jul 2025 09:05:06 +0000
ROA not before: Mon 07 Jul 2025 09:05:01 +0000
ROA not after: Sat 09 Aug 2025 09:05:01 +0000
asID: 14315
IP address blocks: 45.197.137.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 23 Jul 2025 00:26:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90848 (0x162e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 7 09:05:01 2025 GMT
Not After : Aug 9 09:05:01 2025 GMT
Subject: CN=686b8dc2-4b32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:96:fa:63:49:4a:8d:72:66:66:f6:45:d9:e9:
e1:56:42:70:17:b0:59:21:88:5a:b4:43:ed:e4:9c:
e2:6f:fe:61:37:b5:a8:24:4a:ad:1f:ba:fc:c5:02:
22:f7:7a:90:ff:bd:6b:2b:b7:ff:4e:6d:bf:6d:00:
c5:5e:7e:c3:38:8e:7a:3f:5d:fa:26:d1:2e:dc:c0:
5f:66:2d:09:64:2d:91:ce:49:9d:80:a7:f1:7a:0c:
d1:0d:7e:a9:ac:82:77:b9:32:68:e0:cf:22:72:eb:
b3:69:11:dd:bc:a2:86:f6:f8:9e:aa:13:7a:32:f5:
af:98:65:30:b9:82:87:fb:48:29:05:0a:26:d9:f4:
11:9f:34:40:dc:8a:4a:33:7f:10:d7:ed:e9:ba:9a:
ab:5b:ee:99:98:42:1b:1c:36:21:44:9a:75:92:85:
f7:d7:51:77:fb:c1:a9:9b:43:ca:f5:48:54:eb:90:
44:67:47:96:04:89:c1:6e:c5:6d:4e:4c:46:64:98:
58:6f:27:b6:4f:b4:d9:58:48:90:69:9e:7b:e5:e4:
41:f4:e5:70:07:71:08:95:56:8d:0c:e2:75:86:f0:
c7:9e:43:65:15:3f:c2:0d:e9:34:80:1d:87:bd:2b:
89:40:cc:8d:c5:d4:b8:1d:d9:66:1c:ba:a4:4a:3a:
85:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:F4:AE:C3:B5:17:F8:74:47:2D:52:CD:D5:AF:FD:28:99:2C:5A:C5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/794F0C545B1111F0B7C435B0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.137.0/24
Signature Algorithm: sha256WithRSAEncryption
26:e7:2a:c7:5e:da:68:01:83:3b:17:4a:17:40:31:22:26:1a:
71:0d:11:31:e4:3b:e8:5d:a5:84:7c:37:72:44:64:d6:59:ea:
57:dc:51:e4:3c:bc:a6:ed:79:1b:2f:ac:3d:29:e5:32:f9:f3:
23:a7:54:a6:b2:88:39:7d:20:a7:c5:bf:86:64:a4:7e:8a:96:
26:b2:86:de:69:ba:cb:57:98:6b:81:54:eb:d8:33:ce:cc:2d:
85:f1:92:2e:e7:0c:8e:e4:fe:c6:3d:28:23:25:83:4e:f3:d3:
07:8c:63:dd:15:53:9f:51:62:bf:49:d4:c7:f1:4f:e7:c2:7e:
6e:86:70:ff:35:e8:09:8f:7f:b5:c8:28:e6:6e:8e:44:ff:92:
a0:48:15:3a:53:9e:f4:90:e8:b4:5e:3a:b5:25:b3:11:74:71:
b9:3e:0f:cb:2a:69:2b:27:bf:55:7b:a1:3e:9c:0d:40:8a:b5:
65:e9:a5:c0:fb:3b:a6:19:3d:a8:7f:e8:f0:af:7d:7d:bd:75:
8d:ee:3c:3c:0f:0d:bb:79:5d:07:94:d7:67:5f:12:5b:3c:06:
d9:74:38:14:e3:49:d7:49:8f:98:a8:ec:9f:a1:e8:38:5c:2c:
eb:7e:6e:b8:53:a5:d3:48:58:c0:c9:03:15:82:44:75:5c:51:
7d:26:a3:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 12:35:42 2025 by rpki-client