Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D7AA24CE636211F0A9E80EAADAE4EC9C.roa
File: D7AA24CE636211F0A9E80EAADAE4EC9C.roa (raw, json)
Hash identifier: xRPuNu06/Utw6iO9bet308/4wBr2B8ZTWNbrjrBXQe8=
Subject key identifier: 77:27:CF:1F:6B:F1:E5:82:7A:BC:2A:5F:7A:4E:74:2C:2E:0C:DE:31
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0165F6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D7AA24CE636211F0A9E80EAADAE4EC9C.roa
Signing time: Thu 17 Jul 2025 23:07:43 +0000
ROA not before: Fri 18 Jul 2025 23:07:37 +0000
ROA not after: Tue 12 Aug 2025 23:07:37 +0000
asID: 52468
IP address blocks: 45.195.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91638 (0x165f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 18 23:07:37 2025 GMT
Not After : Aug 12 23:07:37 2025 GMT
Subject: CN=6879823f-b31d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:5e:18:81:a1:1d:1f:32:5c:8b:19:1f:ef:c2:
95:f0:c9:29:f5:6c:2c:bb:3a:6a:24:50:b6:2c:4d:
4f:c6:61:ae:3e:35:fd:08:1e:9f:db:34:90:43:f2:
7b:3f:d9:b5:46:78:7d:5b:33:39:6d:47:7c:29:12:
3a:e6:a3:1b:dc:54:81:50:c4:8b:5b:a4:0e:12:19:
4f:48:7f:ff:f3:2b:80:bc:4a:0a:68:46:f5:41:92:
16:c2:52:86:08:8a:ab:19:93:9d:d2:98:af:35:98:
bc:b1:55:77:68:7f:be:74:22:b8:5e:c2:c8:eb:2f:
c4:20:4d:63:df:8f:ae:3c:d2:7c:0c:1d:c8:4e:8b:
c6:e1:13:42:67:63:ca:2c:ac:ea:f3:2e:30:aa:86:
3b:45:79:97:ee:40:36:e4:ce:c5:5e:04:01:06:6a:
5d:57:c5:a6:02:66:10:8a:3c:dd:58:69:e3:19:4b:
2d:b2:17:4d:de:98:fd:9c:0d:3b:ab:07:f0:e4:7a:
b6:eb:33:06:bd:8a:e8:18:e1:c1:0e:bc:1f:73:76:
32:a9:34:cc:47:70:85:d9:00:aa:1f:35:f0:c5:75:
23:c8:95:6c:47:c6:e3:12:b2:22:5f:8b:7c:9c:fa:
b0:c7:cb:69:14:ca:a2:00:1f:78:fe:37:e1:45:4b:
23:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:27:CF:1F:6B:F1:E5:82:7A:BC:2A:5F:7A:4E:74:2C:2E:0C:DE:31
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D7AA24CE636211F0A9E80EAADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.95.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:e4:be:c8:d4:a7:3b:a6:8f:b5:06:d7:3f:26:3d:d3:fa:46:
34:9c:24:02:eb:a0:3d:71:f9:4e:ca:b1:1e:95:68:ec:51:3d:
61:34:16:ea:6f:04:55:2f:00:59:42:b4:79:f7:df:ee:77:9c:
9b:12:aa:fa:8a:18:66:8e:16:60:d1:dc:e6:86:df:eb:f2:bf:
ca:0c:36:c4:cf:32:72:42:ad:00:86:b9:9a:e8:9f:c7:13:bd:
5e:c0:ed:85:f9:97:c1:a8:17:b0:af:f0:ff:57:45:0e:51:00:
ab:1d:05:c3:b7:99:de:15:be:6b:ab:1e:fa:c7:44:23:9e:5e:
95:1f:28:62:6a:22:19:77:97:27:4e:f6:75:34:96:e9:d0:5b:
cd:4b:88:cc:46:a8:6f:4c:78:37:0c:c1:d7:31:55:53:7b:04:
74:7e:0f:66:2d:bd:80:89:c9:e9:83:f3:9b:ae:3e:78:3c:df:
30:70:99:b2:fd:f4:68:eb:c8:01:6c:a4:56:18:69:5e:b5:25:
65:d8:a7:dc:fa:96:6b:44:b3:40:40:b8:66:3d:35:32:6d:29:
04:f1:db:a2:34:aa:46:6c:99:0f:30:c3:dd:9e:88:4f:8e:06:
30:b8:78:0e:54:8e:88:bc:be:b0:43:c0:9d:82:f8:ce:8f:5c:
df:bb:ab:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:51:20 2025 by rpki-client