Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/87D359203B8A11F08B53CC84DAE4EC9C.roa
File: 87D359203B8A11F08B53CC84DAE4EC9C.roa (raw, json)
Hash identifier: fL/ayRf5aO4wDdfMsmHyZRSPuDEnrWbu1RYd+V4ipeQ=
Subject key identifier: B0:C4:FE:37:E1:CF:4F:5D:5D:6B:14:0D:4B:2D:AA:C1:A1:8C:5C:F5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01580F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/87D359203B8A11F08B53CC84DAE4EC9C.roa
Signing time: Wed 28 May 2025 06:11:02 +0000
ROA not before: Wed 28 May 2025 06:10:57 +0000
ROA not after: Tue 17 Jun 2025 06:10:57 +0000
asID: 207901
IP address blocks: 45.197.131.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88079 (0x1580f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 28 06:10:57 2025 GMT
Not After : Jun 17 06:10:57 2025 GMT
Subject: CN=6836a8f6-8ba5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e6:e2:2a:ec:27:ff:32:cb:f8:b0:18:81:0e:
2c:4e:c7:92:b4:69:b6:25:08:6c:89:d9:c8:77:dd:
90:e6:c9:b0:79:c6:c2:33:6e:d1:7b:e0:4f:74:ed:
46:87:21:5f:a2:bc:ca:9f:74:86:23:b0:58:dc:aa:
53:08:01:48:eb:da:9d:df:db:5b:1f:2b:1d:1e:43:
6f:be:35:a2:e5:7d:d1:8d:a6:40:90:6a:80:30:34:
f3:14:4a:3b:1c:c6:3d:95:31:17:ae:60:25:41:7e:
ce:ce:3d:9d:42:e5:5b:cd:53:1b:d0:f1:eb:b6:03:
b5:20:91:90:87:03:f9:36:c0:ad:db:e4:b1:df:60:
9c:1f:4e:04:bb:15:01:0c:71:57:79:46:0b:23:fd:
48:5c:f0:58:ac:e5:95:d2:ee:22:4f:ec:16:72:ba:
40:93:55:e2:d5:11:4a:fa:1c:ce:1b:5b:cc:ee:2a:
b0:c6:01:71:ad:37:75:0a:6f:92:82:d8:b7:26:72:
b2:ba:11:9b:0d:95:e8:2c:8d:b5:41:52:89:22:0e:
28:78:ba:76:91:25:b7:dd:5c:c8:39:75:4f:9c:a9:
4c:ed:f2:3b:37:67:3f:32:fd:cf:d5:ad:53:0d:63:
be:d9:ca:51:51:34:a8:c1:f8:b1:15:f6:ac:0b:77:
79:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:C4:FE:37:E1:CF:4F:5D:5D:6B:14:0D:4B:2D:AA:C1:A1:8C:5C:F5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/87D359203B8A11F08B53CC84DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.131.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:cd:aa:bd:23:ff:08:7e:54:b1:02:ab:93:13:2d:ff:4b:13:
f9:4c:c4:f9:1c:c2:9b:a5:b1:42:06:bb:23:f7:cd:8b:a1:2c:
d7:25:c7:2d:fe:f6:86:99:64:ac:33:c1:8e:53:ca:c6:9e:3c:
41:a8:fc:74:4c:a7:8a:8d:15:51:29:90:38:59:1c:8f:61:0c:
88:b4:c1:34:80:3c:f2:1f:6f:51:dd:27:c1:54:e3:f3:6a:e0:
91:37:09:95:91:ed:fe:92:12:d2:1b:41:f9:d8:c1:0c:4b:09:
53:c0:ce:bb:50:8c:5d:55:4b:5f:af:cc:df:09:e1:48:26:a1:
2f:45:4c:6e:a0:63:4a:10:44:29:af:2a:78:45:75:2e:ee:20:
1d:0c:92:c7:6d:e2:c2:8d:16:78:ac:be:c2:aa:3c:3e:7b:09:
cb:93:67:d9:b5:f6:83:10:fb:c1:8b:94:08:4f:7c:19:09:79:
c0:01:9f:28:d6:83:f7:0f:02:b8:50:0e:6e:a7:e7:a3:c9:a7:
cb:6e:7b:1b:fc:3f:77:60:4d:5c:56:e6:f9:81:06:21:ea:d4:
c5:17:39:d3:9f:bf:46:e9:7e:00:10:d5:12:f1:0b:d8:06:2c:
fa:c4:9d:d5:96:bc:1f:43:c1:b6:0a:0f:fc:ae:c6:d8:df:70:
f7:e3:4a:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:36:26 2025 by rpki-client