Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1178D3FE380B11F09D3189AFDAE4EC9C.roa
File: 1178D3FE380B11F09D3189AFDAE4EC9C.roa (raw, json)
Hash identifier: vo11NmBbqeFtBSnECcDD7f3UP663LgqKzWPHMH02ZnY=
Subject key identifier: B0:2A:53:32:44:4F:D5:A8:01:B8:D9:16:D2:79:2D:65:5B:3A:CA:53
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015715
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1178D3FE380B11F09D3189AFDAE4EC9C.roa
Signing time: Fri 23 May 2025 19:21:04 +0000
ROA not before: Fri 23 May 2025 19:20:59 +0000
ROA not after: Wed 17 Jun 2026 19:20:59 +0000
asID: 400619
IP address blocks: 45.204.4.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87829 (0x15715)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 23 19:20:59 2025 GMT
Not After : Jun 17 19:20:59 2026 GMT
Subject: CN=6830caa0-2249
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:2c:7d:bf:49:55:ac:26:d7:f4:4f:6c:b6:51:
47:84:23:fa:66:53:c0:a7:9c:75:f6:8c:9d:44:e3:
6f:c0:0b:95:fc:2f:47:b4:78:56:c6:ab:8e:ef:03:
df:04:26:cf:ce:8c:87:df:ca:f3:cc:7c:f6:be:bf:
5b:98:64:c3:82:9b:50:c6:97:6c:75:1e:b8:84:8d:
a5:bd:b3:60:69:ff:50:3c:fb:af:01:39:4f:6c:a1:
45:2b:9f:0a:ea:f6:11:f9:e5:ed:9b:6c:0a:e7:0c:
fd:e5:02:bb:67:f9:d6:f4:ca:c8:2c:8f:0e:1f:d3:
d8:91:00:57:3a:28:06:b1:7d:54:48:9e:1f:d0:a1:
25:61:73:70:a3:56:1b:1d:19:f4:05:25:dd:f3:bd:
84:61:e1:b0:4a:a8:a0:0a:fb:10:6d:0e:1f:ee:27:
74:4a:d9:c9:fc:83:90:97:fe:4f:18:49:e7:24:78:
08:fc:4b:85:f9:af:c4:1b:b2:70:0b:7d:6c:ee:ad:
22:95:9a:ea:ab:d4:f0:5b:76:4b:80:77:36:fd:50:
40:36:36:24:8f:e2:db:f2:52:25:0d:b5:f1:47:75:
cc:88:3c:a6:36:91:d7:0b:ed:b7:21:ad:f0:69:5d:
c4:fa:bb:bb:fb:ef:a4:6b:9c:35:fa:8f:10:8c:9e:
a8:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:2A:53:32:44:4F:D5:A8:01:B8:D9:16:D2:79:2D:65:5B:3A:CA:53
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1178D3FE380B11F09D3189AFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.4.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:3b:12:8a:a1:80:35:d3:c7:16:00:86:71:0f:fb:ab:d6:88:
90:a2:67:9c:0c:64:6e:47:25:a5:3c:53:a6:91:ae:de:87:9f:
0c:17:96:df:e8:75:cd:26:93:21:11:2d:34:01:3c:b9:61:a8:
29:df:99:4e:db:35:58:20:b5:a2:de:77:f0:fc:d0:ec:45:04:
ff:d7:e3:5b:56:76:c4:c2:35:d9:4f:c0:01:75:fa:b2:9c:e1:
34:f6:dd:ca:9c:a3:9e:12:47:7c:1f:62:5b:ba:71:93:7c:f6:
07:1f:8f:29:02:9c:e8:25:9a:1f:78:e1:60:c0:ab:99:30:11:
dc:22:eb:65:cf:39:be:90:2d:dd:01:ac:56:f4:49:f4:e4:4d:
61:ce:27:40:be:60:3f:53:62:d8:1d:78:67:85:82:18:09:81:
46:aa:29:c2:a9:4d:5a:60:18:c3:68:81:5e:7a:3d:20:cc:3c:
b3:ec:2b:b6:8f:53:60:9a:b5:49:4e:da:1e:8c:ff:10:9b:f5:
39:ae:8a:1c:db:69:f8:79:f6:3a:87:a2:ad:83:d8:a4:46:cf:
ef:d4:25:0f:66:84:3c:05:47:21:cc:4c:05:0e:08:a8:27:50:
5b:aa:95:26:cb:49:58:f6:2a:b9:b8:e9:fa:be:d7:b2:0c:49:
e5:e3:71:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:25:51 2025 by rpki-client