Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0C0C187A3A5B11F0BE94DEC0DAE4EC9C.roa
File: 0C0C187A3A5B11F0BE94DEC0DAE4EC9C.roa (raw, json)
Hash identifier: chRoSnJFbFBLS09IScuA4q9C92LL+B3YcUuQdei2hNI=
Subject key identifier: F3:A9:1F:05:7B:D2:A3:40:D1:45:EB:B4:18:F3:AC:91:15:DD:F0:7E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0157AA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0C0C187A3A5B11F0BE94DEC0DAE4EC9C.roa
Signing time: Mon 26 May 2025 17:58:37 +0000
ROA not before: Mon 26 May 2025 17:58:32 +0000
ROA not after: Tue 26 Aug 2025 17:58:32 +0000
asID: 328608
IP address blocks: 45.197.188.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87978 (0x157aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 26 17:58:32 2025 GMT
Not After : Aug 26 17:58:32 2025 GMT
Subject: CN=6834abcd-4aaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:9d:54:70:76:ad:a4:8f:d2:66:68:ae:ef:70:
34:9e:4e:33:9e:7c:5d:9e:d5:5b:82:7e:f6:7b:73:
41:fd:8d:2d:c7:87:fc:4c:1d:25:a0:ad:32:1a:3a:
c8:bb:e2:5a:0f:23:60:12:05:b9:2c:40:04:dc:5f:
b1:66:7c:18:60:39:97:45:9b:1e:42:83:b4:2f:ec:
ad:12:e3:5f:8d:47:8b:b5:ac:94:05:13:f8:b1:5b:
a6:8f:74:9c:af:98:12:55:f2:f2:ac:65:9c:13:14:
6c:1c:e1:6b:57:11:c8:3a:aa:47:87:6c:d6:e9:5b:
73:6e:61:e2:f1:c7:c5:fa:d4:b9:4a:47:ce:de:f8:
f2:e9:92:f7:33:2e:c9:17:d0:ef:32:fc:0e:b3:45:
5f:c5:31:80:07:c8:9b:20:e8:17:63:65:c9:88:9b:
22:9f:97:0a:af:af:61:56:b7:aa:fa:7d:4a:97:8e:
7d:15:e1:31:d9:ab:a8:97:54:f9:20:26:53:af:7c:
f6:11:23:f8:cc:3d:ba:0a:d8:f0:7e:70:e6:b6:29:
ae:ae:ed:af:c5:16:c0:5a:93:94:d1:2f:83:ee:49:
06:66:f3:5d:0e:49:7f:52:69:a1:e5:38:c9:2e:69:
ec:7c:7a:1d:e5:1b:88:c7:e5:a3:c3:b3:ba:44:61:
ae:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:A9:1F:05:7B:D2:A3:40:D1:45:EB:B4:18:F3:AC:91:15:DD:F0:7E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0C0C187A3A5B11F0BE94DEC0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.188.0/22
Signature Algorithm: sha256WithRSAEncryption
27:32:39:5b:e1:0e:c7:35:88:b7:ad:4d:ca:cd:ad:92:f0:a8:
34:08:d9:22:c8:ac:f9:d5:a5:0c:b2:54:6c:ac:90:48:81:65:
be:c6:cc:39:b9:39:ec:43:8a:f0:c3:c1:f0:a2:24:a2:e2:d9:
c0:15:76:50:5c:93:56:8a:a8:4d:61:b7:6f:28:72:1c:12:35:
21:72:e4:7f:a2:a0:b1:f1:fe:7c:68:10:dd:7b:d4:b2:15:27:
88:7b:ee:b8:73:97:c8:b3:ea:4b:49:d3:3f:10:c6:74:9d:15:
76:62:e5:ca:0a:c5:c9:30:18:41:8e:60:cf:9c:21:cc:e4:62:
6a:07:e9:98:a3:47:79:b8:ce:db:20:13:71:74:a1:6b:30:2b:
9e:e3:93:e1:9c:8c:59:0c:54:1f:e6:54:ab:47:12:ba:fa:f8:
39:f1:3b:8c:05:90:2c:53:67:0c:9f:65:cf:cb:34:8b:6c:cb:
39:03:cc:3f:b5:8e:ed:0f:12:c1:45:6f:5b:2d:38:0b:21:df:
bb:c9:29:09:5a:b2:62:e2:9f:69:99:66:06:34:9c:1b:9f:ba:
02:d2:27:c2:94:5f:5f:4d:0f:4c:e8:16:59:3c:0d:80:fa:c0:
a1:08:c6:24:5c:d4:c2:56:82:23:52:fc:84:82:05:52:2f:81:
f4:f2:26:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 09:13:45 2025 by rpki-client