Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D2503C5A5E5511F0864D8FBFDAE4EC9C.roa
File: D2503C5A5E5511F0864D8FBFDAE4EC9C.roa (raw, json)
Hash identifier: YiCYCra9RMjf1p7U2UFei01SZBK/LL5h2ddgKKHW+Ww=
Subject key identifier: 26:24:99:37:EE:6A:21:52:70:1A:50:16:15:E6:84:74:B5:89:0E:9E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0164A5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D2503C5A5E5511F0864D8FBFDAE4EC9C.roa
Signing time: Fri 11 Jul 2025 12:51:54 +0000
ROA not before: Fri 11 Jul 2025 12:51:50 +0000
ROA not after: Thu 14 Aug 2025 12:51:50 +0000
asID: 54252
IP address blocks: 45.199.142.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91301 (0x164a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 11 12:51:50 2025 GMT
Not After : Aug 14 12:51:50 2025 GMT
Subject: CN=687108ea-aad9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:20:7b:b5:e6:c1:d3:61:69:fe:b6:11:3b:12:
8b:35:b9:0a:5d:41:e3:f3:da:9e:96:89:33:6b:b0:
32:8d:9f:fc:fd:a2:2b:4d:72:2c:70:97:c5:5b:d1:
73:37:41:c5:af:08:58:b7:6c:fe:0e:31:80:eb:7d:
23:b8:d2:94:42:71:1e:b2:33:73:d0:a1:3c:ff:18:
99:4f:35:c6:71:75:9d:ff:2f:92:5b:9c:29:20:99:
2b:69:7f:11:46:0e:29:61:3c:ac:32:bc:e0:e4:3f:
5d:2a:8d:38:f2:ab:3e:0e:83:c8:15:2f:2c:89:2b:
73:12:58:b0:7a:31:c6:42:66:37:15:fb:1f:b6:18:
14:ed:d6:f3:d1:48:e7:72:cd:62:40:e1:89:22:c0:
b0:bb:12:46:3e:6c:4e:80:25:94:eb:29:8e:95:71:
19:0b:c5:59:74:a5:11:46:af:5f:84:d6:54:10:24:
95:06:ad:23:2f:4a:e5:78:63:65:c2:d3:f5:39:1c:
d4:b3:1e:ea:76:9f:e2:4a:2f:8f:1b:1b:b3:37:e6:
93:86:8d:1d:7b:70:71:ad:e6:59:b2:ae:ef:fb:2d:
d6:90:e7:c6:57:af:13:ec:29:3d:bc:0c:40:fb:0c:
b5:c9:b3:18:fd:92:fb:80:70:bb:08:db:88:40:07:
2b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:24:99:37:EE:6A:21:52:70:1A:50:16:15:E6:84:74:B5:89:0E:9E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D2503C5A5E5511F0864D8FBFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.142.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:3c:71:26:cc:04:59:09:e8:6a:56:52:e0:8d:60:25:fe:13:
46:3a:e6:4c:a1:76:b5:ce:72:b2:43:fa:ef:3e:ee:bc:95:0e:
6c:49:ff:01:5d:38:aa:fe:7f:b4:70:33:bb:76:8c:9e:b4:1b:
22:89:7a:df:5c:18:10:d5:b4:dc:f5:9e:48:f9:77:4a:38:70:
8f:db:49:26:81:bc:1f:65:c7:5b:26:4d:17:99:06:92:6c:76:
d8:ea:0f:53:84:60:7b:24:b1:74:a6:7b:f1:44:fd:a3:ac:3a:
8a:5c:e9:d2:11:13:51:cd:ae:ac:b9:07:2a:fe:aa:4e:95:c7:
ed:e1:40:b0:36:a8:76:82:22:8b:4c:bd:19:79:d9:85:b1:67:
55:d4:6f:a9:72:9a:47:81:12:c1:47:4d:73:9e:45:0f:b1:f4:
b6:f4:82:8a:fd:a8:f2:5e:15:4b:21:78:cc:3b:10:30:08:1c:
9f:d3:e1:3f:69:7d:14:c8:cb:0d:32:5f:ae:3b:aa:a1:08:12:
0b:33:22:a2:bc:19:01:8b:d9:c9:84:38:cd:6e:8a:95:0a:84:
21:77:cb:4a:7c:a9:d3:9b:46:b7:78:b9:4b:ec:32:79:94:4d:
8f:2b:8e:ad:43:b5:6a:62:e2:53:c1:10:22:74:01:ae:af:a3:
0f:a7:6b:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 17:26:38 2025 by rpki-client