Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/735D9DEA34BC11F0B2520CC8DAE4EC9C.roa
File: 735D9DEA34BC11F0B2520CC8DAE4EC9C.roa (raw, json)
Hash identifier: mnXhQy2AA6eLMgqFR6MIGAimXjBhv1V7X6sFZVvAnfM=
Subject key identifier: 3B:16:5B:75:32:66:C5:FF:FE:EC:73:5F:2E:64:AE:F6:BA:A5:3A:EC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0155C5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/735D9DEA34BC11F0B2520CC8DAE4EC9C.roa
Signing time: Mon 19 May 2025 14:20:45 +0000
ROA not before: Mon 19 May 2025 14:20:39 +0000
ROA not after: Wed 18 Jun 2025 14:20:39 +0000
asID: 57043
IP address blocks: 45.198.98.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87493 (0x155c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 19 14:20:39 2025 GMT
Not After : Jun 18 14:20:39 2025 GMT
Subject: CN=682b3e3c-b246
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:7a:f3:74:57:ac:8e:d9:86:3b:9a:94:35:07:
27:93:9f:c8:f0:ca:02:69:c6:b0:f9:ad:a7:0a:fe:
f4:e2:c9:34:4e:dd:3c:ae:ba:ae:b0:17:cb:6d:63:
fd:d8:c9:2f:44:91:ac:04:c2:14:d5:c2:7a:ad:36:
de:d4:6e:41:cf:68:0d:b6:91:75:81:71:63:13:a2:
8e:ba:b4:f5:19:c5:95:0a:6f:9a:52:e3:11:84:51:
f5:8a:af:d0:f7:cb:10:9b:6a:bd:99:8c:55:98:05:
6b:d1:d9:be:35:fd:5a:20:2a:de:34:24:fe:fa:66:
76:fa:12:10:dd:a9:f0:3f:7e:85:12:8a:e0:d6:0a:
03:e1:7a:a7:d7:e4:d1:24:46:a1:42:2d:a5:59:da:
b2:a3:aa:08:02:de:09:11:54:11:3d:a1:9b:d8:27:
12:9d:83:2a:26:e8:22:69:c6:38:d2:62:7f:ea:ad:
07:05:9e:64:a8:8d:a8:87:4d:ce:5e:fd:63:91:8f:
fb:e8:84:de:32:6d:fd:b1:f6:c0:2c:cf:b5:48:6f:
b0:51:d4:a6:95:0b:c4:98:be:32:07:f9:78:0e:88:
49:da:2e:d7:b1:a5:a5:39:46:20:ad:0b:e1:ce:47:
c8:40:6d:30:7c:0a:3b:f1:d8:42:a8:40:06:d1:a6:
14:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:16:5B:75:32:66:C5:FF:FE:EC:73:5F:2E:64:AE:F6:BA:A5:3A:EC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/735D9DEA34BC11F0B2520CC8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.98.0/24
Signature Algorithm: sha256WithRSAEncryption
88:88:93:93:ec:8f:59:f4:e7:fd:1a:18:c7:7d:35:ac:25:de:
fb:96:87:0f:61:ff:f8:ff:c0:a6:e9:a7:a0:bc:c5:e1:b5:82:
32:8f:b9:d8:ec:b4:d4:e3:7f:fa:de:11:54:dd:9d:65:f8:57:
66:8b:30:ff:b0:88:54:f2:ed:67:65:ed:14:7c:77:8c:01:aa:
b3:79:06:77:17:d6:68:df:74:53:df:54:2e:b1:3f:f3:42:74:
16:38:00:d1:ef:a8:6b:50:ab:42:d1:d5:c0:f6:7b:35:7e:28:
49:66:5e:5d:c5:9d:c7:06:85:4f:e8:81:07:2c:0c:0a:96:8f:
23:a4:b0:a9:72:7d:9c:eb:82:b5:8a:c0:ab:92:33:b2:f4:6a:
98:52:dd:57:07:24:ef:55:53:81:46:be:a1:6d:8e:1c:47:30:
d6:2b:7b:42:f1:d3:5e:e3:c8:49:68:fa:f0:d6:d7:34:dc:fa:
d6:b6:10:58:1a:7c:bf:8c:c8:22:5e:ba:43:ce:1f:d3:25:23:
5c:9a:92:aa:a6:09:25:d5:e3:b1:46:8d:5f:c0:0e:d9:20:d7:
b4:35:d9:80:cc:c8:9b:47:0d:9e:73:00:3a:40:a2:e1:bb:1f:
cc:f9:3a:ae:85:2a:8e:f5:7e:d8:c3:d7:31:b3:bc:22:ab:9d:
c5:75:37:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:34:59 2025 by rpki-client