Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/90E352E2598311F09078D792DAE4EC9C.roa
File: 90E352E2598311F09078D792DAE4EC9C.roa (raw, json)
Hash identifier: 6vex+WlbYyvgBOm3TOyEtWihQMH+iyVgDg9ITC2+Syw=
Subject key identifier: 31:26:57:05:DC:39:5B:EC:8D:9D:0F:00:6C:BE:D0:5A:02:B6:AA:C2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016185
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/90E352E2598311F09078D792DAE4EC9C.roa
Signing time: Sat 05 Jul 2025 09:36:46 +0000
ROA not before: Sat 05 Jul 2025 09:36:41 +0000
ROA not after: Sat 09 Aug 2025 09:36:41 +0000
asID: 211241
IP address blocks: 45.192.19.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90501 (0x16185)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 5 09:36:41 2025 GMT
Not After : Aug 9 09:36:41 2025 GMT
Subject: CN=6868f22e-742a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a0:13:1a:51:7d:76:d4:2c:b5:c5:c8:61:76:
c0:90:53:75:9c:5a:d0:05:da:eb:1c:79:e2:cb:09:
d9:e2:57:21:a2:95:3a:f6:5a:ce:af:02:7e:36:3c:
bc:27:20:74:ca:44:8b:1f:d4:97:10:03:37:e9:ba:
79:5d:21:3a:6c:34:7d:9c:7e:82:a4:33:a8:52:66:
90:48:2a:98:59:f7:b7:75:c7:7d:f9:4b:b2:10:4f:
5f:52:26:99:24:35:16:a4:19:ee:0d:da:be:29:7e:
cf:bc:b0:03:01:1f:e7:3d:51:70:5a:4a:f2:7b:ea:
94:b3:53:60:b1:e4:be:f0:1a:57:1e:b5:01:72:36:
61:1f:36:8f:84:9f:ba:b3:b2:d0:7f:4a:20:86:f0:
2f:f1:01:cb:4c:11:56:f1:49:2d:38:69:e0:53:07:
ae:eb:46:bb:4a:a4:5d:b2:bf:08:5c:cb:45:63:54:
b7:db:a7:91:da:86:cb:95:11:f3:6d:2b:26:46:cb:
95:29:ee:5f:86:7a:5b:7f:7e:0e:8c:8c:1b:17:db:
7e:41:6f:7d:94:55:d5:d7:ff:f6:4b:20:0b:20:8e:
09:5f:7b:2d:9d:f3:9e:30:33:23:80:be:61:30:e3:
c3:40:bb:6d:b5:b8:94:dc:d3:31:c1:48:ef:ae:52:
8a:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:26:57:05:DC:39:5B:EC:8D:9D:0F:00:6C:BE:D0:5A:02:B6:AA:C2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/90E352E2598311F09078D792DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.19.0/24
Signature Algorithm: sha256WithRSAEncryption
94:6d:a4:1a:03:4d:62:90:d5:ee:b8:9c:39:8d:e7:4e:48:1e:
eb:7f:2a:5c:37:89:50:89:46:0f:e1:4f:c0:46:81:b8:95:4b:
cb:9f:7f:f5:81:48:cb:3d:c4:05:12:1f:c7:0f:f9:d8:16:f7:
2c:97:13:59:d5:b8:9f:08:08:92:05:9d:f6:c9:22:25:e3:68:
ea:6b:1d:9a:fc:2c:c2:4e:86:91:28:35:8e:6d:77:04:88:fc:
05:ef:bf:f2:1c:cf:c4:1e:7b:a2:78:f5:1d:fe:21:c5:f5:36:
8c:51:45:9a:bf:09:ad:fc:68:7e:90:eb:a0:9e:d4:ec:4d:02:
8f:b4:76:00:6d:31:c2:0f:9a:89:42:76:27:a9:49:3f:3b:af:
cf:e8:20:06:56:29:f5:49:8d:6c:65:c0:0a:f7:39:0d:a5:49:
e6:63:a6:25:9e:56:35:c4:f5:05:7b:41:ff:3a:d0:d4:28:ca:
c6:fa:48:51:b8:5c:a8:30:54:31:46:f2:ac:e1:85:aa:28:a7:
2e:f3:e1:49:3f:72:12:ec:57:c7:3b:41:ca:d2:b2:59:69:38:
25:51:67:90:c6:8b:94:da:af:3d:6d:b4:8e:f2:8d:f9:e5:90:
3d:d6:9a:42:ff:50:b3:77:97:b9:2f:57:0d:e6:71:01:c7:04:
46:d8:df:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:38:28 2025 by rpki-client