Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A82AB65A5CA511F081B6CE79DAE4EC9C.roa
File: A82AB65A5CA511F081B6CE79DAE4EC9C.roa (raw, json)
Hash identifier: r5kuh3tFrjkaLfWAsgjKC2IIA23jk4gZdY9B3ZKwQhs=
Subject key identifier: 73:EF:68:75:DF:78:D6:29:E9:13:C5:C5:89:94:A9:56:EA:AB:1D:7F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01638B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A82AB65A5CA511F081B6CE79DAE4EC9C.roa
Signing time: Wed 09 Jul 2025 09:18:21 +0000
ROA not before: Wed 09 Jul 2025 09:18:16 +0000
ROA not after: Mon 04 Aug 2025 09:18:16 +0000
asID: 204741
IP address blocks: 45.194.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91019 (0x1638b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 9 09:18:16 2025 GMT
Not After : Aug 4 09:18:16 2025 GMT
Subject: CN=686e33dd-eacf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:49:c4:8b:a5:9f:3b:aa:0c:42:7d:8f:7f:13:
31:6f:44:dd:6c:4f:ec:b6:37:35:88:0f:c0:31:f5:
98:1a:0c:65:82:2d:cb:00:10:75:3c:f0:3d:48:86:
81:6a:19:90:73:18:e0:6c:cf:29:dc:cc:b7:ab:60:
5f:81:40:78:09:82:69:c2:a9:44:97:7e:81:97:71:
d2:00:08:13:e4:55:13:3d:9e:c6:af:38:ab:1c:ef:
2d:dc:21:31:3a:fb:06:19:e0:b7:2f:b1:c5:8f:e6:
c7:b3:55:e8:c9:da:85:cc:b8:25:06:a0:03:06:55:
63:d1:87:fb:8a:e9:a0:15:63:78:da:e6:ff:07:36:
eb:9c:b3:77:aa:24:2f:b9:35:37:74:e2:aa:9c:2f:
4c:e0:e1:5f:85:03:87:03:67:08:95:7d:51:e3:80:
77:a6:75:7c:e5:25:0e:3b:d9:b4:6c:20:39:51:8a:
47:fb:cd:37:49:53:58:6c:33:0f:32:e6:12:09:67:
c1:8e:e7:32:5b:63:f2:36:96:dd:11:e3:a9:02:cc:
0f:06:97:47:64:a6:a2:b8:41:bd:d4:ed:28:90:e1:
84:84:36:20:eb:5b:a5:45:92:40:0f:75:ee:e9:79:
68:18:07:dd:fd:ec:50:3c:86:62:68:74:66:f9:34:
21:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:EF:68:75:DF:78:D6:29:E9:13:C5:C5:89:94:A9:56:EA:AB:1D:7F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A82AB65A5CA511F081B6CE79DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.65.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:f8:00:74:09:d6:ce:40:6a:81:04:22:ca:32:3d:35:bb:98:
29:bf:dd:ec:9b:06:6c:77:93:56:31:d2:8d:83:20:04:c2:e9:
b0:db:d7:fb:af:c2:ef:2d:5b:81:0c:2c:a7:55:e2:d0:f4:ee:
4f:87:a2:2c:cf:42:b9:b8:86:51:d5:de:dd:ee:6d:84:2c:da:
c4:86:a6:af:1c:7d:da:54:ca:2a:13:af:ad:fa:26:80:56:46:
20:fa:64:0a:ce:38:1a:76:1a:71:ad:fb:22:8e:c1:c3:c0:4a:
a9:64:90:cc:4b:ec:4f:fa:8d:0a:9c:3b:a0:c3:5d:6e:95:cc:
28:62:06:58:0c:77:5b:ee:37:44:93:ad:ca:ac:d6:ff:36:82:
69:85:06:39:ef:37:a5:25:2e:31:cd:b6:bd:00:7a:79:22:55:
6e:01:42:76:32:1d:f2:56:c4:82:31:0f:ef:46:7d:7f:1e:5f:
7c:ff:6a:03:60:3b:2c:76:91:77:ab:f3:3a:26:0b:59:2f:8d:
19:8b:42:77:1d:8f:de:eb:01:c5:ae:65:83:8b:db:18:b6:6c:
9f:3e:e8:49:c7:2b:d2:fb:8a:9e:94:d7:bf:e4:69:33:11:9a:
47:24:ea:8c:a5:2f:f3:00:7f:c2:d8:e6:9b:5a:84:cb:99:4c:
15:4a:1c:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:31:35 2025 by rpki-client