Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0A68BFEE3E2211F0975729D7DAE4EC9C.roa
File: 0A68BFEE3E2211F0975729D7DAE4EC9C.roa (raw, json)
Hash identifier: sX+tf+XemtSXIfQZkIOtG1g7bTc+61CVYzOJliUzJpw=
Subject key identifier: 00:AD:C8:CB:D5:54:09:76:DD:B7:36:C8:BF:BA:17:00:20:1E:5E:40
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015914
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0A68BFEE3E2211F0975729D7DAE4EC9C.roa
Signing time: Sat 31 May 2025 13:20:38 +0000
ROA not before: Sat 31 May 2025 13:20:33 +0000
ROA not after: Tue 08 Jul 2025 13:20:33 +0000
asID: 62084
IP address blocks: 45.204.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88340 (0x15914)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 31 13:20:33 2025 GMT
Not After : Jul 8 13:20:33 2025 GMT
Subject: CN=683b0226-6521
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e5:d2:21:b5:50:6a:1a:c3:da:59:9e:57:f9:
b7:c2:95:2b:58:3b:e8:98:92:42:d0:d5:7a:9f:a0:
4c:9a:32:ca:02:78:16:10:b5:94:cb:a3:4b:ac:ba:
25:58:8d:07:7c:14:7a:34:f2:5f:e4:e5:12:df:3e:
87:21:d8:6b:27:40:c1:cc:fb:34:d3:b6:1f:47:20:
6b:74:e2:a8:52:50:94:c6:37:c6:23:01:8d:e1:21:
f3:60:10:4b:ef:ad:42:83:db:9c:3a:d8:bb:da:27:
84:f4:95:57:1c:e0:65:79:27:97:cc:2e:d8:12:19:
2f:e3:3f:0e:1e:10:b7:c8:bc:df:a9:89:de:9d:dd:
6a:4e:52:14:91:0e:ac:2f:1f:41:47:23:c3:ac:c1:
b8:f9:a9:08:ae:15:ff:9d:8c:b8:5f:76:9e:a4:a7:
79:93:02:c1:06:2a:60:a0:6e:8b:a2:72:cd:bd:4a:
c0:c0:f6:f9:2a:61:cb:97:f5:a5:93:03:f9:17:43:
6c:60:a5:0f:99:d8:88:a2:b8:91:83:03:fa:12:39:
ce:c7:27:5e:82:17:ab:82:64:20:41:2b:74:4d:36:
2e:84:5b:22:38:b5:d6:fb:fd:0c:fa:8d:6b:23:4c:
a9:d4:65:42:c4:e6:d8:32:95:35:f5:ec:a3:07:e8:
2e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:AD:C8:CB:D5:54:09:76:DD:B7:36:C8:BF:BA:17:00:20:1E:5E:40
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0A68BFEE3E2211F0975729D7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.69.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:c2:b4:5b:c9:ac:52:98:36:f1:bf:2c:80:a2:0c:71:bb:2b:
04:56:05:73:6f:ea:5f:4d:32:1a:c8:72:b8:b0:b1:a6:d2:49:
cf:4e:5d:eb:8b:79:2f:45:52:b0:f5:8a:94:47:ab:96:db:c6:
d2:fd:09:69:ce:e3:1d:c1:98:26:16:94:cf:f5:6f:ce:41:5e:
79:f4:ae:30:c1:3d:ec:18:35:95:43:c6:dd:c6:8b:51:9b:1a:
d9:5b:31:28:3d:79:84:e8:30:30:40:9a:c2:46:48:3c:b0:c9:
1e:14:77:31:8a:7e:34:f5:00:fe:34:e6:01:d6:6b:af:99:58:
81:90:e1:64:55:a5:1c:e6:45:11:9e:d3:a4:1f:29:d4:45:95:
85:b2:24:3f:05:f7:bb:30:7b:34:08:84:d3:fd:09:6d:dc:3a:
61:0f:ed:5f:60:74:c3:b7:0c:44:b4:0b:4a:4d:17:b4:a1:7e:
9d:fc:f2:29:62:4f:ac:bf:88:ff:b8:35:f0:e5:df:ce:9d:21:
44:5c:5d:ea:10:54:39:c1:bc:b6:84:6e:b3:51:0c:81:41:24:
05:6e:54:23:af:93:37:74:fa:51:be:0d:ab:f2:01:82:99:f8:
88:32:4d:05:e4:64:f4:9d:c2:a9:01:42:a9:3b:1b:92:2b:36:
21:7c:0f:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:35:07 2025 by rpki-client