Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E8EA4486575E11F087FC2E91DAE4EC9C.roa
File: E8EA4486575E11F087FC2E91DAE4EC9C.roa (raw, json)
Hash identifier: Aold3Lstt/zdg3xGofzElsEMkU5ob0of3/fEgcc6ftA=
Subject key identifier: 30:21:57:A1:48:1E:7D:11:8E:E8:41:23:D0:CA:9E:19:05:6E:55:CF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016038
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E8EA4486575E11F087FC2E91DAE4EC9C.roa
Signing time: Wed 02 Jul 2025 16:09:20 +0000
ROA not before: Wed 02 Jul 2025 16:09:15 +0000
ROA not after: Mon 08 Sep 2025 16:09:15 +0000
asID: 215691
IP address blocks: 45.198.54.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90168 (0x16038)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 2 16:09:15 2025 GMT
Not After : Sep 8 16:09:15 2025 GMT
Subject: CN=686559b0-6747
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:21:47:c1:b7:fc:07:f6:fe:4f:75:89:ef:7d:
0c:f5:a4:fb:38:0e:7b:bc:d9:32:0d:73:ca:19:68:
a5:77:07:a3:15:50:e3:16:32:11:67:c8:a4:79:fd:
38:ba:60:73:95:66:ed:69:cf:c8:c5:28:75:d2:5b:
94:a7:50:e2:46:3f:51:e3:e2:4b:05:4b:d9:ec:b6:
cf:68:66:ec:a3:31:57:5c:56:90:42:14:99:25:e0:
0e:9e:f9:ba:52:6a:0c:bb:f5:69:43:a9:2d:fb:8f:
49:89:52:f6:45:c0:d0:71:1f:75:b4:2e:ab:85:50:
61:d2:52:60:85:0d:be:a2:2b:2c:1a:8b:bc:e7:fc:
c3:78:24:ed:d2:f2:84:17:47:7c:23:d2:60:39:b6:
30:7a:2f:a8:34:2a:a6:e3:65:b7:d4:be:44:7a:ba:
7f:8d:8c:4a:13:67:cd:c7:2b:a4:6b:b0:c5:bd:43:
5c:d2:30:87:32:3d:2b:3e:24:20:b0:fb:5b:be:6e:
52:2a:d4:05:6a:fc:49:97:d3:29:7f:78:96:ee:96:
5b:96:d2:fe:29:6a:6d:16:ae:96:ba:6e:c7:bb:ea:
91:30:ec:96:6a:85:f0:02:38:57:df:93:f3:d6:e4:
1a:f9:ae:76:0a:b9:f4:64:6a:58:72:62:50:e1:91:
b5:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:21:57:A1:48:1E:7D:11:8E:E8:41:23:D0:CA:9E:19:05:6E:55:CF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E8EA4486575E11F087FC2E91DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.54.0/24
Signature Algorithm: sha256WithRSAEncryption
30:ec:12:be:c4:2e:3a:f8:5d:0e:eb:87:43:30:90:50:b8:2a:
6e:ff:4e:ac:b2:3e:12:cd:dd:0f:85:7c:b1:45:74:a9:3e:6d:
25:0c:d8:af:b4:74:dd:63:37:38:51:58:4a:97:8a:68:24:86:
aa:9d:28:a7:c3:9a:6f:58:f7:bc:d1:8e:ce:43:be:af:47:03:
25:8b:20:e2:9c:fa:4f:67:5a:e7:23:1c:bf:bf:0e:f4:43:ee:
3d:d1:11:c5:2d:6e:0d:73:de:2a:f8:de:8e:1f:0f:f5:cc:95:
b7:09:41:02:e7:f4:94:2b:7e:22:0e:53:8b:d1:74:76:00:45:
f8:40:f4:06:8a:57:73:85:0a:62:fd:ac:83:cc:81:ea:3c:75:
41:5e:b0:fb:e7:e6:e9:6a:d9:95:cf:99:b5:de:bc:a0:76:8d:
b8:df:bf:19:f2:e1:fa:97:cb:03:30:1d:95:83:56:c1:98:53:
32:35:8c:f1:2f:74:3b:42:99:93:88:f6:ce:f1:1d:52:b1:48:
34:88:25:03:2a:dc:e0:cc:ce:9c:9d:ed:48:46:b5:7d:76:bb:
ea:ca:85:0e:8b:7b:2c:6c:e9:09:73:c1:d0:8a:84:f2:f1:8b:
6b:20:80:6d:8b:d6:c9:ff:96:29:c5:32:2e:19:0c:45:50:1c:
b3:02:c0:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:32:55 2025 by rpki-client