Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/27188F66300D11F092AAD7EEDAE4EC9C.roa
File: 27188F66300D11F092AAD7EEDAE4EC9C.roa (raw, json)
Hash identifier: tc30rZ8yQj68sW9r2XryDi0VlpoNqIg4Upz5g0Xc1io=
Subject key identifier: FC:80:89:E2:43:C6:92:55:4B:16:EF:48:C5:F8:2D:87:DD:9B:3E:D6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01540E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/27188F66300D11F092AAD7EEDAE4EC9C.roa
Signing time: Tue 13 May 2025 15:15:50 +0000
ROA not before: Tue 13 May 2025 15:15:45 +0000
ROA not after: Thu 12 Jun 2025 15:15:45 +0000
asID: 395839
IP address blocks: 45.198.123.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87054 (0x1540e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 13 15:15:45 2025 GMT
Not After : Jun 12 15:15:45 2025 GMT
Subject: CN=68236226-43a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:7e:58:6e:89:44:ba:c9:50:a5:88:40:0b:72:
2c:12:31:b3:0d:fd:33:a2:af:1c:e9:1c:1a:97:4a:
78:98:e1:be:ec:75:8b:57:05:9d:7b:a8:1d:30:bb:
ad:92:22:f3:33:e9:f1:77:c8:f5:02:86:9f:50:6e:
eb:3f:5e:7a:e2:f9:d7:e5:f7:76:6b:e2:03:4a:20:
d5:d7:01:21:26:a3:c9:a3:71:5f:60:a0:30:a2:2f:
f6:37:d9:f5:b0:90:a4:2a:5e:5e:ae:b2:fa:e0:cf:
e1:f1:44:e1:91:6b:0d:02:ae:38:11:37:b5:f9:8e:
4e:8b:d0:83:01:bf:be:95:17:22:ca:e3:72:61:b0:
93:82:eb:9b:97:31:ba:02:a8:a3:bb:7d:ac:9f:21:
1f:7d:44:ad:3e:ad:e7:b9:a4:a3:72:48:90:60:0a:
e3:b3:5b:42:fa:ad:7a:ad:12:2a:2d:2b:68:69:cb:
46:74:99:d5:11:3f:b7:72:5b:2c:6b:f4:dd:64:1c:
b5:8f:7f:44:3a:e9:03:71:2e:13:cc:c3:37:77:9d:
2d:ae:76:6a:e8:b7:c1:23:7f:12:b2:fa:4a:7d:24:
6c:e5:c9:89:d4:5b:08:1e:46:70:8c:02:3f:07:10:
49:8b:40:2c:f5:7c:45:2a:4b:0d:fa:1d:37:6a:a3:
2c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:80:89:E2:43:C6:92:55:4B:16:EF:48:C5:F8:2D:87:DD:9B:3E:D6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/27188F66300D11F092AAD7EEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.123.0/24
Signature Algorithm: sha256WithRSAEncryption
31:8d:fb:e9:e9:be:d4:fe:3c:55:c8:9a:eb:71:6a:b4:87:a2:
82:bb:4c:b0:93:b0:c7:ef:70:2b:6f:b6:64:dc:b6:e4:47:d2:
16:5d:ef:4c:63:43:8e:50:be:92:f9:96:d0:72:b8:be:90:e6:
80:f1:b6:64:96:ea:05:fa:96:8c:be:5c:a2:fc:9e:30:8f:d9:
df:11:be:5d:85:af:14:ae:96:d3:51:48:cd:e5:8c:7f:c6:0e:
64:32:43:ab:95:ac:7d:61:f9:4b:f8:38:7f:f5:71:18:fe:89:
a5:89:b4:57:56:19:3f:6a:06:a3:8d:14:3c:58:e6:1b:42:ae:
d5:87:14:04:d2:4a:3e:d9:b4:aa:08:2a:79:dd:fc:c9:b4:54:
48:05:74:9a:dc:e8:77:aa:9d:0c:c1:16:a9:93:4c:5e:bc:60:
35:da:cc:6b:b6:31:c8:f9:14:1c:6d:b3:06:16:4b:c8:21:a6:
5c:27:4e:f1:8e:7b:be:2a:66:1a:35:2c:36:6c:1c:f5:aa:02:
c2:21:16:e3:d6:67:15:a9:88:37:f4:cd:70:8e:59:c2:c6:60:
5f:e0:7d:2e:e0:de:27:55:2e:ca:70:e4:e1:8a:3c:49:b5:ba:
e4:3a:dd:96:94:f3:3c:3b:47:d2:a9:c0:30:31:33:90:4c:4e:
a0:c7:74:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 09:10:47 2025 by rpki-client