Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2D41CB240CD511F098B89EAB762E951A.roa
File: 2D41CB240CD511F098B89EAB762E951A.roa (raw, json)
Hash identifier: rkhO27I6FYH/N/au7G6aQAjRNP8ZwQ8qQLMb7vPG1aw=
Subject key identifier: 93:12:A5:1B:A1:DE:D2:79:E6:30:3D:3D:29:7F:26:CB:6E:52:EC:46
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014908
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2D41CB240CD511F098B89EAB762E951A.roa
Signing time: Sat 29 Mar 2025 19:36:57 +0000
ROA not before: Sat 29 Mar 2025 19:36:54 +0000
ROA not after: Sat 03 May 2025 19:36:54 +0000
asID: 401366
IP address blocks: 45.202.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84232 (0x14908)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 29 19:36:54 2025 GMT
Not After : May 3 19:36:54 2025 GMT
Subject: CN=67e84bd9-eb26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:08:63:1f:f9:ee:57:be:e7:d3:f7:66:40:cc:
09:6d:06:d2:12:c5:53:db:35:2f:11:05:9d:7b:ff:
97:b1:70:2a:6f:7c:16:8f:c8:5d:58:f7:a6:96:ff:
f3:be:ff:d2:51:a9:2e:50:d2:73:f5:4f:06:b2:89:
01:15:e7:00:63:d6:1b:c6:b7:f3:72:2a:4f:aa:d3:
22:74:5f:31:63:1d:99:f3:6f:c9:45:26:6a:6f:27:
98:3d:52:32:93:d6:37:2f:3f:38:87:0f:e1:4d:11:
6a:1b:9f:5e:d7:c8:68:44:06:9e:26:1c:c8:c1:e3:
58:4f:da:2f:b5:67:d3:94:19:6c:9d:9e:6a:83:0b:
23:c4:fc:f3:37:8e:29:0c:d3:b9:a0:0e:d0:58:f6:
15:fb:fb:09:3b:97:50:31:57:30:dd:18:c1:69:f6:
29:4f:eb:0f:f2:fe:af:65:e1:d2:02:34:6b:14:2a:
c1:c9:95:e0:99:23:b3:d2:bb:6c:eb:90:fd:0c:8d:
4c:5b:43:53:01:75:cc:62:17:c2:21:a0:43:1d:b6:
7a:b7:0b:d8:25:fb:6f:82:0f:5e:a3:5c:71:f9:8d:
12:f5:77:4f:b3:00:d8:fa:8e:94:e6:1d:90:91:1b:
31:99:c0:f8:9e:b2:40:2d:3b:ca:6c:45:b0:88:9a:
81:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:12:A5:1B:A1:DE:D2:79:E6:30:3D:3D:29:7F:26:CB:6E:52:EC:46
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2D41CB240CD511F098B89EAB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.75.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:b0:b5:f2:fb:a0:34:62:67:d6:40:74:0d:18:dc:ad:1c:ce:
90:20:0f:b8:8e:b6:2d:85:c3:23:10:05:63:34:4b:a5:82:de:
ea:61:83:87:54:2b:b9:ba:72:ba:13:87:72:7b:4f:dc:b8:6c:
2d:ac:63:49:46:18:44:c5:a5:43:fd:c3:b3:f0:78:e3:fb:8e:
3b:13:32:ef:95:a2:3b:78:89:c1:da:19:e3:a4:b3:cd:42:d8:
02:32:7b:e4:4d:96:96:ec:ff:d2:3f:7c:fc:57:f1:11:f5:e8:
4f:4c:c0:ba:5e:cf:35:f7:9b:01:3f:cc:7d:7f:55:d5:04:2f:
f4:34:7a:27:93:74:5d:9d:f4:22:2f:37:43:69:f6:ca:a4:73:
be:26:2c:22:66:ef:eb:2e:e8:4b:76:80:e1:71:15:5b:fb:ce:
fd:37:ab:32:79:82:db:f8:f3:89:85:6b:f7:32:98:7e:3c:34:
6d:4b:0a:64:18:69:86:55:59:62:07:8e:b7:14:3a:0e:71:c1:
83:a3:58:78:7e:77:26:1b:e0:b7:a2:ce:4c:f3:dc:eb:78:c0:
e9:b1:1b:65:79:e0:d4:69:9b:c8:fa:28:a4:42:f1:0a:f9:31:
0b:ad:fd:49:f2:61:0e:db:d4:f3:09:a7:de:b4:d7:5f:e9:fc:
ee:9d:d8:9d
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAUkIMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMzI5MTkzNjU0WhcNMjUwNTAzMTkzNjU0WjAYMRYw
FAYDVQQDEw02N2U4NGJkOS1lYjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtQhjH/nuV77n0/dmQMwJbQbSEsVT2zUvEQWde/+XsXAqb3wWj8hdWPem
lv/zvv/SUakuUNJz9U8GsokBFecAY9YbxrfzcipPqtMidF8xYx2Z82/JRSZqbyeY
PVIyk9Y3Lz84hw/hTRFqG59e18hoRAaeJhzIweNYT9ovtWfTlBlsnZ5qgwsjxPzz
N44pDNO5oA7QWPYV+/sJO5dQMVcw3RjBafYpT+sP8v6vZeHSAjRrFCrByZXgmSOz
0rts65D9DI1MW0NTAXXMYhfCIaBDHbZ6twvYJftvgg9eo1xx+Y0S9XdPswDY+o6U
5h2QkRsxmcD4nrJALTvKbEWwiJqBBwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFJMS
pRuh3tJ55jA9PSl/JstuUuxGMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8yRDQxQ0IyNDBDRDUxMUYwOThCODlFQUI3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcpLMA0GCSqGSIb3DQEBCwUA
A4IBAQCMsLXy+6A0YmfWQHQNGNytHM6QIA+4jrYthcMjEAVjNEulgt7qYYOHVCu5
unK6E4dye0/cuGwtrGNJRhhExaVD/cOz8Hjj+447EzLvlaI7eInB2hnjpLPNQtgC
MnvkTZaW7P/SP3z8V/ER9ehPTMC6Xs8195sBP8x9f1XVBC/0NHonk3RdnfQiLzdD
afbKpHO+JiwiZu/rLuhLdoDhcRVb+879N6syeYLb+POJhWv3Mph+PDRtSwpkGGmG
VVliB463FDoOccGDo1h4fncmG+C3os5M89zreMDpsRtleeDUaZvI+iikQvEK+TEL
rf1J8mEO29TzCafetNdf6fzundid
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:01:17 2025 by rpki-client