Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DFFFB246566B11F0981025EBDAE4EC9C.roa
File: DFFFB246566B11F0981025EBDAE4EC9C.roa (raw, json)
Hash identifier: 5V6iieO9ZD9Kpr10oIHrivG4MZDc+zp3TAf+XtoPbKY=
Subject key identifier: C4:EC:C7:C5:CB:8E:85:65:7A:CA:91:89:23:5F:1D:0C:D0:C9:65:82
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015FD2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DFFFB246566B11F0981025EBDAE4EC9C.roa
Signing time: Tue 01 Jul 2025 11:09:40 +0000
ROA not before: Tue 01 Jul 2025 11:09:30 +0000
ROA not after: Sat 09 Aug 2025 11:09:30 +0000
asID: 200373
IP address blocks: 45.201.10.0/24 maxlen: 24
45.201.11.0/24 maxlen: 24
45.202.76.0/24 maxlen: 24
45.202.77.0/24 maxlen: 24
45.202.78.0/24 maxlen: 24
45.202.79.0/24 maxlen: 24
45.206.72.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90066 (0x15fd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 1 11:09:30 2025 GMT
Not After : Aug 9 11:09:30 2025 GMT
Subject: CN=6863c1f4-4c92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:14:c2:27:23:47:b7:5f:ac:aa:93:b1:0b:f2:
df:27:c1:31:72:c2:19:dc:72:73:65:13:35:00:45:
97:7e:a4:dc:63:a2:fb:e9:dc:e5:df:77:80:78:de:
1d:6c:a9:58:27:6d:32:a8:e6:68:d3:fd:cc:72:c9:
89:88:75:54:0e:61:0b:71:f8:eb:b6:b0:20:ef:30:
55:64:cf:d3:54:3b:86:90:2a:5a:e2:0b:00:f0:1c:
95:03:91:0a:91:9c:83:b2:8c:e0:9a:69:e9:a9:79:
9c:48:a9:bc:f3:f5:f1:e4:4b:60:07:ef:55:9f:04:
ac:30:72:5f:99:40:44:ed:55:7a:16:fc:9e:be:a1:
e8:84:b6:07:4b:eb:58:8a:24:7a:57:e3:26:e3:25:
38:a2:25:af:8a:14:66:d5:9a:4d:78:04:48:65:8f:
1c:70:a9:68:38:a6:f3:a0:c4:9c:11:42:45:56:c1:
93:2e:5b:94:f7:fa:58:00:12:fa:4b:03:cd:e9:b8:
5a:db:46:49:60:4b:76:a5:e2:93:88:2a:88:00:8e:
94:e5:33:fd:be:76:a3:bf:5e:d8:16:70:57:0b:b2:
30:53:7e:b5:8e:41:ef:06:f1:c7:ff:70:9e:aa:02:
a9:56:46:a7:d1:2a:81:16:12:2e:15:34:0a:16:94:
2b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:EC:C7:C5:CB:8E:85:65:7A:CA:91:89:23:5F:1D:0C:D0:C9:65:82
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DFFFB246566B11F0981025EBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.10.0/23
45.202.76.0/22
45.206.72.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:9e:61:8a:93:26:82:e3:c7:44:55:6b:3e:11:72:72:4d:8a:
34:17:00:47:22:af:7c:34:38:cd:8b:63:55:88:e2:6f:ee:92:
48:15:a5:8a:d5:70:dd:9e:65:9b:b8:ae:16:7b:40:ad:c3:87:
1f:9e:e7:45:e5:d3:f4:a9:e5:8a:67:e3:76:d4:ad:3d:dd:8b:
f2:f1:d2:77:e5:ad:11:c2:c9:36:84:cb:c3:19:f2:49:77:71:
81:59:5a:69:66:13:92:13:f4:4d:f4:a5:c4:9a:45:bd:d5:5c:
3c:1a:c1:a6:7a:ca:75:02:86:0b:9e:84:f3:a7:59:5d:13:36:
0f:ac:6c:78:12:5b:8d:b1:95:15:0d:f3:ac:61:b0:f0:c5:b1:
b8:06:80:4d:aa:c8:48:96:a5:24:08:42:48:df:83:9e:39:80:
28:34:2e:66:e4:e2:d4:1d:98:cc:90:6d:8f:7e:1f:1f:3b:74:
e5:62:0c:b5:13:10:26:ad:ac:8b:ff:80:ed:57:d2:9e:0e:de:
6c:6f:ce:31:50:05:67:de:1c:d4:c5:9e:28:59:fb:aa:9d:4b:
22:8c:6d:7d:bc:20:df:1b:c1:ad:f0:37:46:aa:9c:33:48:43:
a9:93:52:b1:8a:9e:0f:53:17:e9:1b:a9:80:59:f3:b8:1d:a1:
7c:8d:d9:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:30:44 2025 by rpki-client