Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99FA803A3C7D11F08D56EFACDAE4EC9C.roa
File: 99FA803A3C7D11F08D56EFACDAE4EC9C.roa (raw, json)
Hash identifier: bT/NYscReuecuz50IV0+NnWy1dC4JyAuXfQdAl/urcs=
Subject key identifier: 31:B6:3A:BB:5E:E1:18:B5:D0:DD:B5:2B:A4:8D:F5:19:1F:B1:02:08
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0158B8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99FA803A3C7D11F08D56EFACDAE4EC9C.roa
Signing time: Thu 29 May 2025 11:11:00 +0000
ROA not before: Thu 29 May 2025 11:10:56 +0000
ROA not after: Sun 06 Jul 2025 11:10:56 +0000
asID: 14315
IP address blocks: 45.202.197.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88248 (0x158b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 29 11:10:56 2025 GMT
Not After : Jul 6 11:10:56 2025 GMT
Subject: CN=683840c4-59a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:77:ba:f6:f5:0e:67:73:61:3b:66:71:75:87:
a1:58:66:4e:4d:5a:c6:ab:d4:5a:d4:92:2b:96:14:
9b:b2:30:74:63:63:e5:03:17:08:90:49:31:9a:2b:
b1:ea:3f:cc:e0:10:ee:7f:33:6a:86:1b:b2:62:40:
76:35:62:3e:b4:f7:a4:3d:36:59:92:48:26:26:c8:
73:cd:89:7c:e2:37:3f:58:89:62:95:60:73:2b:45:
e6:d4:32:0c:59:81:b4:16:52:e7:7f:d5:12:1a:66:
38:52:b5:5a:7c:76:66:72:c9:5c:4c:a5:c7:0c:28:
56:41:e2:57:cf:70:64:98:a8:b1:9f:f3:55:0a:ec:
60:1f:20:71:ba:79:ae:34:11:57:10:93:fd:6b:6b:
bc:b9:3b:67:ca:50:31:7c:4e:bc:8e:68:b0:e7:e4:
49:e1:9d:7a:5f:61:86:08:0b:18:cd:7a:8e:d9:cf:
7d:2f:8b:52:6b:31:80:fc:c1:18:fa:13:93:14:9b:
09:e9:67:9d:e3:49:df:f7:b9:00:6c:b9:7f:83:c6:
cf:a6:81:fe:53:cd:85:f6:fd:97:59:7c:e9:c5:b1:
f8:d3:d0:c4:e9:77:85:00:44:71:fc:8f:a1:52:e5:
a2:ca:01:5f:66:05:82:48:4a:54:8a:2d:bd:18:45:
e9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:B6:3A:BB:5E:E1:18:B5:D0:DD:B5:2B:A4:8D:F5:19:1F:B1:02:08
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99FA803A3C7D11F08D56EFACDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.197.0/24
Signature Algorithm: sha256WithRSAEncryption
48:02:cd:59:9f:de:f7:5a:4c:a5:30:81:6b:70:f3:cd:16:f4:
6e:e8:3d:27:0e:a2:74:d3:bf:55:0a:1d:cd:e3:51:83:f1:96:
d6:e4:3e:7d:43:6f:32:db:6b:0c:d7:5d:25:1b:3b:17:08:83:
e3:72:21:cd:7b:6a:84:3f:08:88:ba:36:75:21:02:88:b7:bb:
32:03:cc:6e:77:15:56:d3:fb:76:0e:9b:fc:05:91:bc:e3:7d:
b4:ff:36:c9:b5:38:b7:01:36:15:8a:5a:f9:5b:b2:a9:5f:fa:
bb:0c:57:29:a7:6d:fa:ba:8b:a4:a4:2c:c6:38:05:cd:58:90:
c1:2c:73:65:bd:9e:6f:2d:50:51:c5:a7:a7:d4:52:61:94:c5:
de:c3:38:95:6d:36:80:45:c9:40:2f:04:f8:ae:83:6d:3c:76:
c1:71:e3:44:62:69:f7:7b:9d:1f:03:fd:e8:ea:ce:4b:19:ad:
5b:55:23:43:9b:93:5a:0f:de:9e:b4:1a:c4:b2:e3:7e:23:c4:
e0:a5:5c:c3:66:0a:c0:c8:b7:9f:17:a5:32:e0:b9:46:d8:4f:
55:9c:7d:fc:74:72:94:a2:0b:9f:da:7c:7c:6f:e1:84:c4:71:
ba:36:49:47:87:0f:52:a9:0a:75:b4:e5:15:42:08:68:1b:51:
97:4b:ac:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:29:48 2025 by rpki-client