Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/457B752C88AF11F0A39A63E6DAE4EC9C.roa
File: 457B752C88AF11F0A39A63E6DAE4EC9C.roa (raw, json)
Hash identifier: s7cnJ+wyApJPI4rBY4+UIwGRc8vCCLGZPfXDAwxVDos=
Subject key identifier: 8C:69:AF:4A:9D:8A:AF:EF:F4:06:76:D6:C9:8E:58:08:48:09:D8:8C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01777C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/457B752C88AF11F0A39A63E6DAE4EC9C.roa
Signing time: Wed 03 Sep 2025 10:18:02 +0000
ROA not before: Wed 03 Sep 2025 10:17:57 +0000
ROA not after: Thu 09 Oct 2025 10:17:57 +0000
asID: 6079
IP address blocks: 45.202.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96124 (0x1777c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 3 10:17:57 2025 GMT
Not After : Oct 9 10:17:57 2025 GMT
Subject: CN=68b815da-e8c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6a:e9:18:7d:4b:da:5e:ba:6d:3a:5a:dd:a9:
28:51:46:1a:21:24:0e:37:8b:69:d5:66:17:eb:fe:
83:c8:9d:af:36:3d:7c:e0:a2:fa:14:e3:6a:62:fa:
c5:bf:a9:74:b4:fe:bd:7c:6a:2a:db:62:d1:ab:d9:
8b:43:1b:14:ea:8e:a4:01:26:de:fc:4c:9c:0a:22:
85:23:b7:71:f5:d3:8a:bd:15:b7:8e:18:f9:1a:49:
1b:17:ae:90:e5:42:a3:fe:f0:a4:c6:9b:b0:dc:5c:
48:e1:b6:c4:b5:46:7f:ba:f8:20:d6:9b:99:df:ef:
21:59:58:6f:4d:6e:6b:b2:62:b4:92:7b:72:a3:8a:
e7:8d:f3:ff:e3:57:84:8e:ec:5d:ae:77:e0:f2:a1:
ca:bf:fc:ef:22:47:26:02:3d:6e:14:95:7a:9b:14:
aa:b8:78:95:ae:af:ba:74:7d:ac:8c:4f:6c:62:8d:
39:04:2d:a0:3e:01:16:31:13:a0:e9:db:8b:92:f1:
e6:38:bc:62:ff:d0:62:c5:16:b2:7c:c5:14:20:d2:
74:28:26:37:d0:76:d2:15:43:8a:53:1d:d1:ea:2b:
b5:c1:e8:54:4f:66:17:63:03:b1:84:90:ea:2d:2e:
d5:e8:30:7d:10:59:87:9d:46:89:1d:65:2d:7f:34:
21:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:69:AF:4A:9D:8A:AF:EF:F4:06:76:D6:C9:8E:58:08:48:09:D8:8C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/457B752C88AF11F0A39A63E6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.114.0/24
Signature Algorithm: sha256WithRSAEncryption
59:3c:e8:13:fe:5b:1a:2c:aa:8d:65:ca:25:41:5b:5f:1f:3e:
7f:b7:ac:3f:14:17:3c:81:75:12:57:ec:08:f1:d5:35:c8:16:
1f:03:4f:2c:e0:4b:8c:7d:c8:0e:36:24:28:7b:a8:f7:a0:84:
84:ca:db:24:06:52:18:8c:e4:e3:17:f9:04:4f:ef:b7:d5:33:
d4:04:87:2c:35:16:51:5c:fb:39:f6:23:55:9a:62:e3:39:1d:
bf:09:9c:df:7e:69:df:f6:b0:55:e9:f7:30:1b:29:9f:f3:73:
8b:2e:f9:7d:7d:40:ec:e3:a3:2a:63:8f:fd:f9:ac:ae:e3:1d:
39:ec:1d:cc:9a:7b:c8:7b:54:d7:e1:56:8e:92:d0:3d:9d:f2:
bf:ba:06:4b:48:f6:8e:41:e2:e9:6a:a2:0a:29:0b:53:03:81:
56:83:14:b0:06:9d:89:8d:2f:c3:da:2e:ed:ff:f8:5e:73:eb:
b6:d0:26:f8:55:af:09:86:e2:dd:b5:1c:8d:50:d8:61:c1:08:
42:9a:73:88:2c:b9:7a:33:26:81:d6:0a:36:e4:ba:fb:04:e0:
79:c3:94:da:51:35:90:8d:42:a2:54:72:ea:30:41:4a:75:c1:
0e:00:0f:5e:4a:53:a4:9a:11:03:29:e8:3d:ad:3a:da:9e:79:
7e:a4:ca:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 20:25:30 2025 by rpki-client