Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/851315EA3B7B11F0887F2E9FDAE4EC9C.roa
File: 851315EA3B7B11F0887F2E9FDAE4EC9C.roa (raw, json)
Hash identifier: rO4b4ZhAOtfr2G4ATd8hZh/XHEwIGaYoBnaZ56Qt/Y8=
Subject key identifier: BE:EF:FD:8C:BD:21:44:3E:38:97:64:E8:22:2F:AF:9E:39:32:DC:1A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01580D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/851315EA3B7B11F0887F2E9FDAE4EC9C.roa
Signing time: Wed 28 May 2025 04:23:35 +0000
ROA not before: Wed 28 May 2025 04:23:31 +0000
ROA not after: Tue 17 Jun 2025 04:23:31 +0000
asID: 137899
IP address blocks: 45.205.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88077 (0x1580d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 28 04:23:31 2025 GMT
Not After : Jun 17 04:23:31 2025 GMT
Subject: CN=68368fc7-f04a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:12:2d:fe:02:51:88:3a:50:23:b1:78:a0:36:
60:6f:95:7a:b5:56:42:f6:d4:e9:4a:13:de:26:ca:
1c:e2:f1:a7:50:89:0f:a4:7a:64:74:37:a5:ba:05:
4a:36:a8:0d:27:02:1b:fd:55:2f:c7:54:7a:5d:c7:
f1:b9:10:52:a7:c0:08:7a:b2:91:28:33:7e:db:e3:
49:45:94:3b:7d:10:47:e5:0c:47:4e:a1:3b:66:3f:
f5:09:b2:4d:a3:2d:5e:c4:5f:13:1b:0c:c6:fc:98:
55:40:ce:d0:23:b8:99:1b:b0:5e:f4:70:52:d4:63:
9d:91:6b:94:6f:f1:1a:85:4d:7e:11:80:23:c9:8b:
ca:9a:ff:be:d3:42:e5:a5:e9:42:d2:1d:d3:0c:78:
1f:56:f1:c8:39:8e:eb:fd:9c:96:94:a0:e8:43:80:
a2:c5:c1:95:57:b6:b4:92:6b:b1:b1:6e:03:05:0a:
7d:b8:f3:a8:8f:b3:a9:94:d2:5d:d8:f1:32:f8:11:
28:2f:95:fa:60:2a:c5:21:12:9a:d5:e5:c8:88:d1:
04:90:41:5d:57:24:6f:f6:ae:37:b9:e7:a4:a9:55:
39:5c:89:5f:be:1b:d3:0c:4d:dc:aa:84:0e:f4:d6:
19:08:c5:d1:a0:8e:b1:27:70:4d:82:9f:9c:e2:3d:
bd:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:EF:FD:8C:BD:21:44:3E:38:97:64:E8:22:2F:AF:9E:39:32:DC:1A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/851315EA3B7B11F0887F2E9FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.16.0/20
Signature Algorithm: sha256WithRSAEncryption
7e:09:ab:1d:71:b1:bb:7e:30:fc:9f:55:21:6e:52:9a:28:9b:
a9:c0:9d:c1:b5:18:e8:e1:29:11:d2:f9:e4:08:2e:db:49:ff:
fc:86:44:42:26:35:b6:80:ac:dd:6c:9b:ad:9a:6a:64:43:01:
3d:69:81:f0:f7:06:b7:c0:47:b6:87:b0:bb:4a:9c:82:f7:42:
65:34:ee:c8:bd:c7:dc:f9:57:11:f3:8b:7e:4d:96:b4:ee:57:
31:b9:5c:52:46:a3:36:c8:84:43:fa:f2:83:27:cd:b8:d6:b2:
34:ed:32:fb:d7:1a:a8:66:7b:94:98:b3:3b:4e:7a:4a:82:21:
d3:a6:20:3c:a0:ce:62:bf:b4:11:df:ec:f3:07:c7:7f:a0:af:
b6:40:2c:6d:e1:b1:a7:e3:6e:be:46:49:84:4f:d8:ff:b4:e9:
23:4f:22:08:1c:1c:dc:66:af:ce:91:7e:8a:42:f8:91:53:3f:
5d:00:c4:74:11:4b:ed:05:3e:95:8d:a0:17:c0:e3:82:63:a9:
e7:29:67:61:57:73:49:1a:42:55:e2:6a:c2:7a:da:d9:f4:c4:
07:e3:99:dd:79:49:46:74:be:ab:79:56:81:cb:09:b0:c9:42:
a7:c3:00:04:18:f7:3b:a8:e6:d6:5b:de:af:ef:7d:16:f3:fd:
f6:fb:5d:94
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAVgNMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNTI4MDQyMzMxWhcNMjUwNjE3MDQyMzMxWjAYMRYw
FAYDVQQDEw02ODM2OGZjNy1mMDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAnxIt/gJRiDpQI7F4oDZgb5V6tVZC9tTpShPeJsoc4vGnUIkPpHpkdDel
ugVKNqgNJwIb/VUvx1R6XcfxuRBSp8AIerKRKDN+2+NJRZQ7fRBH5QxHTqE7Zj/1
CbJNoy1exF8TGwzG/JhVQM7QI7iZG7Be9HBS1GOdkWuUb/EahU1+EYAjyYvKmv++
00LlpelC0h3TDHgfVvHIOY7r/ZyWlKDoQ4CixcGVV7a0kmuxsW4DBQp9uPOoj7Op
lNJd2PEy+BEoL5X6YCrFIRKa1eXIiNEEkEFdVyRv9q43ueekqVU5XIlfvhvTDE3c
qoQO9NYZCMXRoI6xJ3BNgp+c4j29OQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFL7v
/Yy9IUQ+OJdk6CIvr545MtwaMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC84NTEzMTVFQTNCN0IxMUYwODg3RjJFOUZEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQELc0QMA0GCSqGSIb3DQEBCwUA
A4IBAQB+CasdcbG7fjD8n1UhblKaKJupwJ3BtRjo4SkR0vnkCC7bSf/8hkRCJjW2
gKzdbJutmmpkQwE9aYHw9wa3wEe2h7C7SpyC90JlNO7Ivcfc+VcR84t+TZa07lcx
uVxSRqM2yIRD+vKDJ8241rI07TL71xqoZnuUmLM7TnpKgiHTpiA8oM5iv7QR3+zz
B8d/oK+2QCxt4bGn426+RkmET9j/tOkjTyIIHBzcZq/OkX6KQviRUz9dAMR0EUvt
BT6VjaAXwOOCY6nnKWdhV3NJGkJV4mrCetrZ9MQH45ndeUlGdL6reVaBywmwyUKn
wwAEGPc7qObWW96v730W8/32+12U
-----END CERTIFICATE-----
Generated at Tue Jun 3 08:42:35 2025 by rpki-client