Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7797FFC03C7011F0A6DE10D9DAE4EC9C.roa
File: 7797FFC03C7011F0A6DE10D9DAE4EC9C.roa (raw, json)
Hash identifier: vejdutOjrWGSpSbDanHiomDbQLm8L4m9qn7lP2LYr90=
Subject key identifier: D4:B5:FA:75:20:F9:D5:17:48:29:3E:52:64:2E:A7:A5:47:C2:74:24
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0158A4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7797FFC03C7011F0A6DE10D9DAE4EC9C.roa
Signing time: Thu 29 May 2025 09:36:59 +0000
ROA not before: Thu 29 May 2025 09:36:54 +0000
ROA not after: Wed 03 Jun 2026 09:36:54 +0000
asID: 19970
IP address blocks: 45.195.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88228 (0x158a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 29 09:36:54 2025 GMT
Not After : Jun 3 09:36:54 2026 GMT
Subject: CN=68382abb-b52f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3b:f4:04:6a:fd:8e:00:9b:95:00:94:aa:d2:
6b:79:0f:01:2a:2e:65:dc:17:15:f6:16:95:d2:e6:
ab:4f:9e:5d:57:6e:24:4a:0e:b3:dd:76:8f:0b:5b:
8a:1d:2b:8f:44:27:92:23:a5:09:e4:cb:39:56:77:
a7:5c:1f:d5:26:9f:cc:d0:80:cd:d0:ca:88:d1:2a:
b9:66:25:e7:ab:49:a0:77:65:a1:a6:e2:9e:3a:cd:
e0:64:63:8a:de:f3:f4:a8:da:56:2b:c7:e2:a5:63:
12:24:0c:c9:a8:47:4f:50:46:5a:e4:b9:3c:52:9f:
f7:d1:26:bd:6d:26:f5:69:f2:24:61:a1:6d:3f:e8:
d8:f7:43:f5:65:8a:e7:d3:87:b1:e3:c5:1d:66:8f:
8b:67:3d:69:4f:9b:e9:52:30:bf:f2:ea:a5:ef:db:
75:98:0b:9e:c4:4e:d6:18:5f:90:90:89:ac:ab:1a:
fd:5a:76:b7:eb:57:22:fa:ab:60:af:62:cb:e0:21:
41:a3:da:ef:72:18:0d:f6:8a:f7:b3:e6:52:47:78:
83:36:09:62:60:c7:b6:ab:55:e6:30:1d:ca:21:9c:
f4:73:04:32:c5:89:c2:cb:3d:a4:9c:03:d6:18:ef:
8b:84:f0:e9:aa:13:19:14:a5:ab:fa:31:8a:30:7e:
91:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:B5:FA:75:20:F9:D5:17:48:29:3E:52:64:2E:A7:A5:47:C2:74:24
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7797FFC03C7011F0A6DE10D9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.2.0/24
Signature Algorithm: sha256WithRSAEncryption
29:ef:a9:b1:63:28:d1:65:8d:d2:e6:e0:36:30:16:99:39:78:
04:4c:18:d6:c3:2b:7b:64:42:2a:1f:5a:da:18:d9:05:55:ac:
c4:c2:3f:4a:99:53:66:99:86:1a:b8:eb:84:2b:ae:fb:6f:f1:
36:53:1c:4a:9d:15:8f:c4:02:88:16:43:1b:a2:4f:92:19:b0:
23:72:b1:37:34:1f:b8:68:97:2f:2e:a5:52:78:76:fb:68:9b:
14:f9:8f:17:cd:94:26:71:dc:d8:e2:8d:9c:3c:68:c2:16:b0:
5e:08:b0:c1:22:32:2d:f7:c3:95:75:17:3f:6f:a1:6c:80:9e:
e6:81:8a:42:6f:1e:b5:79:89:5a:c3:f8:77:77:e0:e9:e1:49:
b5:ba:ca:e7:18:4c:b0:f5:09:cf:e6:28:1d:66:3b:3c:df:28:
a3:db:81:65:2e:56:8e:51:ed:72:af:2c:fa:af:f1:b1:c8:32:
7b:a6:84:66:7a:f6:26:ab:78:d5:ec:e4:bf:b0:93:5a:6e:09:
54:4d:ab:7c:c9:67:3d:a5:12:97:6a:38:96:4f:5b:5a:b9:07:
7c:02:08:9e:b0:5b:7e:f5:f6:6a:e8:99:df:cc:65:cf:eb:94:
c4:57:87:3e:fa:82:e4:a5:e3:f1:c7:ad:7c:e8:9a:ba:db:57:
24:ce:41:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:29:54 2025 by rpki-client