Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36580B0/0AC199A441CE11EEBCA91D114AD9E6FC/E9200F1437BD11F0BD0B81C1DAE4EC9C.roa
File: E9200F1437BD11F0BD0B81C1DAE4EC9C.roa (raw, json)
Hash identifier: 1c3GThWv8g2r9qs7UzZVBaLErWyY4OZNe1fIMcoY0ww=
Subject key identifier: 85:5B:40:EB:D8:CF:94:8F:F1:11:D8:14:2B:EE:E6:4F:E3:CB:21:BF
Certificate issuer: /CN=F36580B0AR/serialNumber=E8A285E7A9119CC130CA29F73579DB06824F83B5
Certificate serial: 0296
Authority key identifier: E8:A2:85:E7:A9:11:9C:C1:30:CA:29:F7:35:79:DB:06:82:4F:83:B5
Authority info access: rsync://rpki.afrinic.net/repository/arin/6KKF56kRnMEwyin3NXnbBoJPg7U.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36580B0/0AC199A441CE11EEBCA91D114AD9E6FC/E9200F1437BD11F0BD0B81C1DAE4EC9C.roa
Signing time: Fri 23 May 2025 10:08:45 +0000
ROA not before: Fri 23 May 2025 10:08:40 +0000
ROA not after: Wed 23 May 2035 10:08:40 +0000
asID: 327992
IP address blocks: 169.239.248.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36580B0/0AC199A441CE11EEBCA91D114AD9E6FC/6KKF56kRnMEwyin3NXnbBoJPg7U.crl
rsync://rpki.afrinic.net/repository/member_repository/F36580B0/0AC199A441CE11EEBCA91D114AD9E6FC/6KKF56kRnMEwyin3NXnbBoJPg7U.mft
rsync://rpki.afrinic.net/repository/arin/6KKF56kRnMEwyin3NXnbBoJPg7U.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 10 Jun 2025 00:26:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 662 (0x296)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36580B0AR, serialNumber=E8A285E7A9119CC130CA29F73579DB06824F83B5
Validity
Not Before: May 23 10:08:40 2025 GMT
Not After : May 23 10:08:40 2035 GMT
Subject: CN=6830492d-0179
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2f:b8:d4:7a:e1:09:ef:89:44:39:e3:f8:03:
bd:94:26:56:89:dd:5f:06:3e:6e:6f:91:6c:3b:ec:
a9:ab:a4:74:26:c6:e9:41:c6:ec:ee:25:61:b7:46:
13:0e:a9:6f:6d:86:61:d4:05:ed:9d:92:a5:0f:4f:
8d:ea:0c:c7:02:eb:87:ef:08:ae:fc:03:0b:34:1c:
d3:44:a5:19:92:2f:20:61:f0:6e:84:e6:34:b3:45:
cc:68:51:07:5f:40:56:95:32:2f:fc:bd:45:03:52:
88:1e:df:7a:33:ba:be:2d:a3:4f:f7:cb:31:09:9e:
50:fd:cd:19:9d:a5:8e:d5:18:52:9b:64:b5:a9:e8:
12:95:05:67:4e:d7:f3:ef:86:ec:af:be:a1:a9:25:
30:ea:db:0b:14:da:97:ac:bb:4b:30:5e:64:ca:98:
b1:16:52:58:c9:11:1b:4b:3d:68:d9:52:21:0d:2d:
db:9d:f2:9b:5e:2d:ba:77:5b:5b:e4:ea:07:85:9b:
18:22:13:05:1e:4f:46:e9:6b:36:92:ce:58:18:8e:
a4:48:f3:5a:f8:1a:c0:01:89:62:bc:0a:5a:b0:ca:
a5:f3:07:90:fb:7a:bd:5e:58:b7:2a:96:fb:05:f3:
07:50:11:87:d7:20:4f:6a:f1:fd:62:66:51:6f:40:
7c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:5B:40:EB:D8:CF:94:8F:F1:11:D8:14:2B:EE:E6:4F:E3:CB:21:BF
X509v3 Authority Key Identifier:
keyid:E8:A2:85:E7:A9:11:9C:C1:30:CA:29:F7:35:79:DB:06:82:4F:83:B5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36580B0/0AC199A441CE11EEBCA91D114AD9E6FC/6KKF56kRnMEwyin3NXnbBoJPg7U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/6KKF56kRnMEwyin3NXnbBoJPg7U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36580B0/0AC199A441CE11EEBCA91D114AD9E6FC/E9200F1437BD11F0BD0B81C1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.239.248.0/24
Signature Algorithm: sha256WithRSAEncryption
38:79:dd:b1:be:7f:35:cd:d0:10:17:30:ce:2a:35:c4:26:de:
06:77:e6:a2:a3:86:9c:fe:72:cc:5f:20:dc:8b:f0:a2:6a:05:
c3:66:5d:ee:fa:12:29:c5:73:48:c8:26:6d:1e:1d:da:26:77:
08:54:4a:40:b9:5e:96:5e:16:39:4f:27:6f:a8:41:c5:4a:6f:
e7:1d:4c:91:1f:7c:8c:7e:cb:16:40:ea:dc:29:58:87:f8:63:
4c:1b:35:f1:3f:72:b2:7b:be:6d:75:0a:51:b2:df:bc:c6:a1:
48:40:28:c0:ed:97:07:f5:db:40:7d:b0:f3:20:79:3f:33:b5:
a0:1e:a6:06:b6:e9:a3:ab:2b:42:21:2b:63:c6:5b:75:3f:6e:
65:38:a7:7f:be:a9:ba:08:fe:72:58:74:f4:e4:ab:06:af:63:
25:5c:3b:af:1b:d2:90:f1:40:f8:37:91:66:3a:bc:1a:7b:c5:
b7:a5:02:1d:64:ca:83:2a:2c:2c:38:a5:97:6a:8a:e4:f9:dc:
fd:69:6c:85:17:29:86:35:a5:94:00:b8:bf:61:d9:3c:6c:92:
d6:3f:ca:40:a2:8f:bb:29:7b:5f:ea:aa:8e:4e:3f:7f:7d:0e:
df:5b:90:32:2a:9d:b1:8d:7f:fb:2c:2d:51:d0:85:38:6d:8e:
7f:27:1c:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:48:32 2025 by rpki-client