Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7A193616598911F08C89FCB5DAE4EC9C.roa
File: 7A193616598911F08C89FCB5DAE4EC9C.roa (raw, json)
Hash identifier: sela/EOx41TApnVaOKpywhYrLcBsVGyGQwFUdPnR/xw=
Subject key identifier: 7C:9C:5B:DB:E1:DD:C5:54:96:FD:C1:A7:8A:D2:4D:31:42:79:50:2B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016193
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7A193616598911F08C89FCB5DAE4EC9C.roa
Signing time: Sat 05 Jul 2025 10:19:05 +0000
ROA not before: Sat 05 Jul 2025 10:19:00 +0000
ROA not after: Sun 10 Aug 2025 10:19:00 +0000
asID: 20473
IP address blocks: 45.196.200.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 09 Jul 2025 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90515 (0x16193)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 5 10:19:00 2025 GMT
Not After : Aug 10 10:19:00 2025 GMT
Subject: CN=6868fc18-08e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c9:c2:7d:79:3d:ea:4f:a9:20:14:fa:3f:80:
2f:ce:5e:88:15:75:a5:3c:c6:69:0c:cb:57:7a:f1:
b3:5d:ef:1e:a0:ca:61:be:d1:1c:a7:41:40:9b:d4:
f8:39:92:60:10:08:95:94:a6:56:cf:ae:d2:4f:25:
bf:92:7c:d0:db:c4:77:11:04:25:9c:28:3f:78:ec:
05:be:11:79:52:08:a0:44:79:d8:61:54:96:87:c1:
b2:c1:ac:db:e1:3f:e2:66:28:11:02:77:e9:16:23:
89:cb:7b:44:a0:28:df:f1:ea:78:7b:a3:24:49:52:
ee:ed:9f:9a:b7:21:03:f6:f6:cd:95:92:a4:4e:4c:
eb:9b:47:54:56:f9:4b:63:ed:71:ba:9f:28:48:a1:
58:10:d3:ed:cc:68:f0:66:4d:77:a3:a4:a5:c4:22:
e2:a3:3a:a8:a8:cf:2b:d1:98:1c:99:7d:c4:1a:64:
99:06:08:4f:23:52:e2:50:31:a3:c4:98:a7:0e:7d:
ee:48:5f:74:fa:09:5f:69:67:ae:00:6a:31:51:bd:
d0:8e:5e:52:a5:4c:f2:a2:7a:d1:cb:c6:25:c5:c1:
ab:ea:cf:53:3d:0b:f1:8a:b1:83:47:e0:20:e4:a9:
5d:2f:83:fc:3a:f3:18:13:01:e6:ba:78:b7:e2:64:
a9:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:9C:5B:DB:E1:DD:C5:54:96:FD:C1:A7:8A:D2:4D:31:42:79:50:2B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7A193616598911F08C89FCB5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.200.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:eb:fa:98:8f:5a:6a:e6:72:44:16:6c:6f:76:48:7b:34:b6:
72:35:35:43:0d:09:f9:66:65:4b:d9:be:2d:f8:b6:a6:e7:ee:
72:57:19:45:e7:06:97:23:0b:dc:3c:12:26:b7:4b:ad:ed:a3:
40:6b:ef:2a:66:7a:6b:ac:0d:70:82:17:be:a3:4b:1c:6a:9a:
01:d2:06:a3:af:20:fc:f7:db:fb:2f:d9:27:d6:73:47:23:28:
2b:71:53:7e:db:6f:f9:65:fa:10:fd:da:31:2a:5e:ae:8b:69:
9c:bb:cc:d1:da:af:ac:76:0c:88:e3:56:38:14:5d:be:f5:60:
b5:7a:fc:14:a7:91:1b:dd:61:b8:b3:8b:c2:c5:e9:43:03:ca:
22:9d:29:ac:94:09:4b:f1:ca:b8:06:2d:28:5a:b2:c1:1b:dd:
25:01:f1:d3:8c:20:07:6e:dd:0a:80:2a:1e:3f:19:90:7f:2e:
8f:66:23:18:c8:33:f1:a6:fb:a6:b7:a2:83:17:ad:dc:a0:ad:
a1:63:b6:68:5b:07:72:25:24:fe:08:95:77:4f:f8:37:21:83:
65:ad:34:6c:fd:3a:3e:0b:cf:a1:55:cd:a0:f0:a8:f5:5c:9f:
ea:9d:b4:6d:64:18:49:c2:a3:67:d5:81:79:b9:da:c6:ce:49:
63:4f:fd:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 7 03:38:59 2025 by rpki-client