Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3663954/B2FDE4A22A2611EE864DCA484AD9E6FC/92455510355511F09A3F8ED0DAE4EC9C.roa
File: 92455510355511F09A3F8ED0DAE4EC9C.roa (raw, json)
Hash identifier: EzKU6CQxGZwi822liJZKhnE2Wswv1oKziheTE/2ZwuU=
Subject key identifier: E3:14:44:24:4F:E2:AB:63:DD:12:57:1E:F5:0B:F9:2F:29:7F:C7:F3
Certificate issuer: /CN=F3663954AF/serialNumber=DDE405A3B9E32CBD199087597D6F290B6C341BCD
Certificate serial: 02AF
Authority key identifier: DD:E4:05:A3:B9:E3:2C:BD:19:90:87:59:7D:6F:29:0B:6C:34:1B:CD
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/3eQFo7njLL0ZkIdZfW8pC2w0G80.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3663954/B2FDE4A22A2611EE864DCA484AD9E6FC/92455510355511F09A3F8ED0DAE4EC9C.roa
Signing time: Tue 20 May 2025 08:36:49 +0000
ROA not before: Tue 20 May 2025 08:36:45 +0000
ROA not after: Tue 18 May 2027 08:36:45 +0000
asID: 37266
IP address blocks: 196.45.16.0/24 maxlen: 24
196.45.19.0/24 maxlen: 24
196.45.21.0/24 maxlen: 24
196.45.22.0/24 maxlen: 24
196.45.23.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3663954/B2FDE4A22A2611EE864DCA484AD9E6FC/3eQFo7njLL0ZkIdZfW8pC2w0G80.crl
rsync://rpki.afrinic.net/repository/member_repository/F3663954/B2FDE4A22A2611EE864DCA484AD9E6FC/3eQFo7njLL0ZkIdZfW8pC2w0G80.mft
rsync://rpki.afrinic.net/repository/afrinic/3eQFo7njLL0ZkIdZfW8pC2w0G80.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Jun 2025 00:06:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 687 (0x2af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3663954AF, serialNumber=DDE405A3B9E32CBD199087597D6F290B6C341BCD
Validity
Not Before: May 20 08:36:45 2025 GMT
Not After : May 18 08:36:45 2027 GMT
Subject: CN=682c3f21-e27b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a1:db:83:c3:76:46:b2:cc:c4:a8:4b:ed:65:
83:28:c4:fb:39:82:e0:24:fa:fd:e0:c6:d1:d0:07:
02:9d:ad:3b:7b:35:e5:c0:43:23:e5:dd:23:14:65:
97:ac:80:4d:f3:82:56:d5:88:bb:f0:49:54:f1:ab:
1e:fd:d2:b4:96:c7:45:5d:35:f6:1f:45:85:f3:77:
3f:31:a1:ab:69:af:fe:0b:be:15:41:2e:25:f6:e1:
7a:d2:ac:82:2c:45:3c:45:0a:51:54:d8:3f:b0:7e:
d0:6c:f2:95:09:30:69:07:9b:04:5d:3c:42:86:c3:
00:c3:66:cd:9f:f9:1e:8c:a2:4b:76:39:28:80:4e:
4e:2f:08:79:1c:48:0f:63:cf:ac:25:1d:24:9d:9f:
60:c2:e3:0b:11:98:0a:69:37:46:0b:7e:55:84:44:
65:ca:62:55:b2:1f:30:21:79:30:11:e9:d3:8e:6d:
22:b5:d7:d0:49:45:bf:10:b2:fd:eb:d8:31:db:06:
26:a3:ed:53:f2:e0:86:c2:e8:28:8d:d1:22:62:38:
0c:df:8a:52:75:dc:25:02:ac:1a:78:2a:89:b1:e2:
50:f5:f0:8d:6e:2f:6d:8d:23:9a:51:c4:54:4a:a2:
b8:a7:eb:b3:fe:fc:8d:4e:19:c0:5a:bb:ca:60:ec:
90:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:14:44:24:4F:E2:AB:63:DD:12:57:1E:F5:0B:F9:2F:29:7F:C7:F3
X509v3 Authority Key Identifier:
keyid:DD:E4:05:A3:B9:E3:2C:BD:19:90:87:59:7D:6F:29:0B:6C:34:1B:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3663954/B2FDE4A22A2611EE864DCA484AD9E6FC/3eQFo7njLL0ZkIdZfW8pC2w0G80.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/3eQFo7njLL0ZkIdZfW8pC2w0G80.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3663954/B2FDE4A22A2611EE864DCA484AD9E6FC/92455510355511F09A3F8ED0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.45.16.0/24
196.45.19.0/24
196.45.21.0-196.45.23.255
Signature Algorithm: sha256WithRSAEncryption
30:c1:9f:99:72:df:c4:6d:83:f4:66:d4:cb:48:6c:8a:03:f9:
93:ed:88:28:ac:87:62:81:cd:1c:d4:c2:0c:67:a2:76:d3:0d:
fe:2c:ab:91:0a:fd:92:d9:c2:43:66:49:15:2e:83:4c:23:3e:
86:cb:58:ae:c3:95:1a:36:39:6c:3d:46:d8:9c:b8:af:0f:d2:
8a:0f:d3:81:b1:b7:66:cb:09:6e:12:a6:a7:c4:90:98:7d:47:
5f:4b:18:c5:6b:84:a9:94:91:0c:be:d0:80:33:76:46:6b:8a:
c8:fa:18:89:0b:60:c4:3e:86:84:d8:c0:a8:68:d5:a4:de:08:
05:bb:20:f3:4a:83:77:09:17:f1:1e:3c:a6:c5:b1:a3:7b:6f:
7c:12:6a:bb:8f:58:7b:0f:c4:80:97:e2:b2:53:3f:4e:ff:66:
83:34:20:ce:2d:c1:d0:ae:9d:53:b5:8f:e4:0c:5c:c1:bb:e4:
a7:06:44:ab:b6:98:cb:20:31:21:48:18:de:55:ce:e7:5f:51:
58:6a:86:00:23:18:e0:31:6f:0d:35:d4:3d:2b:b9:15:27:41:
ac:80:85:5c:a6:f4:08:e1:92:2d:83:96:08:3e:b0:05:95:42:
d4:00:d1:56:6d:79:63:80:94:7c:b2:05:d2:e9:f0:8e:07:13:
dc:c9:cb:58
-----BEGIN CERTIFICATE-----
MIIFlzCCBH+gAwIBAgICAq8wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NjM5NTRBRjExMC8GA1UEBRMoRERFNDA1QTNCOUUzMkNCRDE5OTA4NzU5N0Q2RjI5
MEI2QzM0MUJDRDAeFw0yNTA1MjAwODM2NDVaFw0yNzA1MTgwODM2NDVaMBgxFjAU
BgNVBAMTDTY4MmMzZjIxLWUyN2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDDoduDw3ZGsszEqEvtZYMoxPs5guAk+v3gxtHQBwKdrTt7NeXAQyPl3SMU
ZZesgE3zglbViLvwSVTxqx790rSWx0VdNfYfRYXzdz8xoatpr/4LvhVBLiX24XrS
rIIsRTxFClFU2D+wftBs8pUJMGkHmwRdPEKGwwDDZs2f+R6Mokt2OSiATk4vCHkc
SA9jz6wlHSSdn2DC4wsRmAppN0YLflWERGXKYlWyHzAheTAR6dOObSK119BJRb8Q
sv3r2DHbBiaj7VPy4IbC6CiN0SJiOAzfilJ13CUCrBp4Komx4lD18I1uL22NI5pR
xFRKorin67P+/I1OGcBau8pg7JCtAgMBAAGjggK5MIICtTAdBgNVHQ4EFgQU4xRE
JE/iq2PdElce9Qv5Lyl/x/MwHwYDVR0jBBgwFoAU3eQFo7njLL0ZkIdZfW8pC2w0
G80wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjYzOTU0L0IyRkRFNEEyMkEyNjExRUU4NjREQ0E0ODRBRDlFNkZDLzNlUUZv
N25qTEwwWmtJZFpmVzhwQzJ3MEc4MC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljLzNlUUZvN25qTEwwWmtJZFpmVzhwQzJ3MEc4MC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjYzOTU0L0IyRkRFNEEyMkEyNjExRUU4NjREQ0E0ODRB
RDlFNkZDLzkyNDU1NTEwMzU1NTExRjA5QTNGOEVEMERBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwMwYIKwYBBQUHAQcBAf8EJDAiMCAEAgABMBoDBADELRADBADELRMwDAMEAMQt
FQMEA8QtEDANBgkqhkiG9w0BAQsFAAOCAQEAMMGfmXLfxG2D9GbUy0hsigP5k+2I
KKyHYoHNHNTCDGeidtMN/iyrkQr9ktnCQ2ZJFS6DTCM+hstYrsOVGjY5bD1G2Jy4
rw/Sig/TgbG3ZssJbhKmp8SQmH1HX0sYxWuEqZSRDL7QgDN2RmuKyPoYiQtgxD6G
hNjAqGjVpN4IBbsg80qDdwkX8R48psWxo3tvfBJqu49Yew/EgJfislM/Tv9mgzQg
zi3B0K6dU7WP5AxcwbvkpwZEq7aYyyAxIUgY3lXO519RWGqGACMY4DFvDTXUPSu5
FSdBrICFXKb0COGSLYOWCD6wBZVC1ADRVm15Y4CUfLIF0unwjgcT3MnLWA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 06:19:49 2025 by rpki-client