Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99E086A6F47C11EFBE4FD66D762E951A.roa
File: 99E086A6F47C11EFBE4FD66D762E951A.roa (raw, json)
Hash identifier: f2hQ0zS15EFJbd2d2fsmznfiBA3OY+0m8gob/0H4Ry0=
Subject key identifier: 5C:AD:21:D5:47:87:F1:78:66:FF:C1:C7:70:7C:33:48:82:F0:FA:F9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013755
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99E086A6F47C11EFBE4FD66D762E951A.roa
Signing time: Wed 26 Feb 2025 20:02:27 +0000
ROA not before: Wed 26 Feb 2025 20:02:23 +0000
ROA not after: Thu 19 Feb 2026 20:02:23 +0000
asID: 984
IP address blocks: 45.201.110.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79701 (0x13755)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 26 20:02:23 2025 GMT
Not After : Feb 19 20:02:23 2026 GMT
Subject: CN=67bf7353-9c81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a2:84:ba:c9:27:52:d3:bc:0c:d8:72:c6:72:
6c:72:78:4b:e6:b4:74:16:3d:41:b9:fc:90:70:08:
aa:47:de:19:53:58:a1:d0:67:d9:5d:95:51:e3:1e:
96:90:04:87:14:03:f0:82:35:38:42:11:18:ae:2a:
61:e3:8d:d5:f3:37:7c:af:1c:1b:e9:8b:a2:12:f3:
45:dd:72:70:7b:cc:46:79:46:92:50:77:1e:15:1c:
6f:1f:f7:21:33:2b:88:9d:19:98:8d:61:4a:d2:52:
8c:f4:24:cd:bc:ac:ed:0c:3d:53:eb:ad:d2:4c:4f:
3c:59:69:77:9a:7c:62:9e:61:e2:db:e9:07:af:92:
aa:9e:da:04:d0:26:a1:8f:bb:20:5c:98:85:47:d4:
ca:b6:2f:62:61:49:b1:67:0c:8c:de:ae:49:da:f7:
bd:e1:03:ed:15:ac:83:a0:2a:cf:15:0b:45:59:45:
d2:2a:bb:f1:f7:ec:ca:4f:aa:5d:75:45:1b:c5:14:
74:d0:f5:b5:29:61:af:47:50:fc:2d:8b:5a:d7:e6:
d3:28:24:e7:2e:2b:43:a6:01:c3:80:3b:b5:34:e7:
e0:60:3d:a4:7d:b6:4e:c6:8d:4d:d0:ab:3d:38:f5:
ad:8c:da:3e:a6:8a:91:e7:bb:ef:c8:b7:7e:eb:5d:
b4:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:AD:21:D5:47:87:F1:78:66:FF:C1:C7:70:7C:33:48:82:F0:FA:F9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99E086A6F47C11EFBE4FD66D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.110.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:3b:c6:95:ca:37:31:49:2c:c9:19:ef:9a:c0:8b:97:0d:7b:
8d:f0:0b:7f:87:42:7d:57:ce:25:56:96:37:4b:f7:15:be:0b:
6a:80:97:33:17:a8:f0:18:e3:e7:9e:a0:b5:33:f6:ca:a0:7f:
c1:1d:0a:11:a5:9d:b1:60:9b:33:ce:cf:7f:a9:d2:54:5a:17:
7d:1f:f1:00:9f:4e:61:09:01:47:1e:c0:aa:22:4e:16:a3:75:
2e:4d:f2:5e:7e:f7:e8:c7:15:40:eb:09:96:29:b4:54:89:d2:
c2:5d:df:3c:b2:5d:29:3c:00:2d:6c:bb:96:88:dc:05:a7:ef:
09:00:fb:f6:b1:2e:e9:38:75:eb:24:dc:bf:23:df:3f:57:77:
40:8c:dd:21:97:03:e6:79:8a:64:c3:e8:da:8c:e4:d0:39:13:
f9:68:07:06:fc:a5:dd:db:11:da:9c:f2:8f:97:ab:ca:08:f3:
84:af:73:ec:70:dd:86:00:3e:e2:e7:ba:cf:ff:12:ff:58:db:
10:59:50:9d:e8:70:68:40:5f:1f:8a:ea:d1:34:7d:f6:64:4c:
60:b1:46:f7:16:f7:17:6e:77:b3:5b:69:5b:c1:a1:b3:44:c3:
e3:9a:b6:4a:87:76:e0:7d:25:3b:91:f6:3f:12:58:de:2c:2b:
2d:1d:a0:82
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDATdVMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMjI2MjAwMjIzWhcNMjYwMjE5MjAwMjIzWjAYMRYw
FAYDVQQDEw02N2JmNzM1My05YzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzKKEusknUtO8DNhyxnJscnhL5rR0Fj1BufyQcAiqR94ZU1ih0GfZXZVR
4x6WkASHFAPwgjU4QhEYriph443V8zd8rxwb6YuiEvNF3XJwe8xGeUaSUHceFRxv
H/chMyuInRmYjWFK0lKM9CTNvKztDD1T663STE88WWl3mnxinmHi2+kHr5KqntoE
0Cahj7sgXJiFR9TKti9iYUmxZwyM3q5J2ve94QPtFayDoCrPFQtFWUXSKrvx9+zK
T6pddUUbxRR00PW1KWGvR1D8LYta1+bTKCTnLitDpgHDgDu1NOfgYD2kfbZOxo1N
0Ks9OPWtjNo+poqR57vvyLd+6120qQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFFyt
IdVHh/F4Zv/Bx3B8M0iC8Pr5MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC85OUUwODZBNkY0N0MxMUVGQkU0RkQ2NkQ3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcluMA0GCSqGSIb3DQEBCwUA
A4IBAQBPO8aVyjcxSSzJGe+awIuXDXuN8At/h0J9V84lVpY3S/cVvgtqgJczF6jw
GOPnnqC1M/bKoH/BHQoRpZ2xYJszzs9/qdJUWhd9H/EAn05hCQFHHsCqIk4Wo3Uu
TfJefvfoxxVA6wmWKbRUidLCXd88sl0pPAAtbLuWiNwFp+8JAPv2sS7pOHXrJNy/
I98/V3dAjN0hlwPmeYpkw+jajOTQORP5aAcG/KXd2xHanPKPl6vKCPOEr3PscN2G
AD7i57rP/xL/WNsQWVCd6HBoQF8fiurRNH32ZExgsUb3FvcXbnezW2lbwaGzRMPj
mrZKh3bgfSU7kfY/EljeLCstHaCC
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:19:51 2025 by rpki-client