Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B264ACE4301211F0B1F68C94DAE4EC9C.roa
File: B264ACE4301211F0B1F68C94DAE4EC9C.roa (raw, json)
Hash identifier: 2z0l5TUVbQMvBR82hZozc1aqB3TkZl0r2I7LOygJy7E=
Subject key identifier: 71:A8:A8:B8:AE:52:8C:1A:67:8A:95:DA:59:C0:0D:06:4D:F1:04:86
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015412
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B264ACE4301211F0B1F68C94DAE4EC9C.roa
Signing time: Tue 13 May 2025 15:55:31 +0000
ROA not before: Tue 13 May 2025 15:55:26 +0000
ROA not after: Mon 09 Jun 2025 15:55:26 +0000
asID: 214311
IP address blocks: 45.192.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87058 (0x15412)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 13 15:55:26 2025 GMT
Not After : Jun 9 15:55:26 2025 GMT
Subject: CN=68236b73-b065
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4c:aa:cf:da:82:6e:06:a9:0d:5e:95:6c:12:
75:b9:8e:f9:46:62:54:32:e0:30:57:ce:4c:db:f2:
14:5b:78:d5:81:32:ea:53:ab:92:84:5c:d2:71:ef:
1d:4f:46:ad:0e:47:7c:41:73:bd:37:33:6a:9b:6a:
49:68:5e:a6:8d:91:2d:0a:c0:2d:e4:cb:e9:42:17:
75:e4:b2:ca:ee:4c:7f:11:3f:56:b9:78:89:3b:3b:
1b:27:c2:d3:9e:37:3e:4b:60:8e:b5:e2:ab:37:9f:
9b:03:49:b8:0c:2f:fb:b8:72:b3:79:dd:9c:32:f9:
bd:e6:f7:72:4a:74:2a:01:21:7e:ac:d6:66:5e:86:
e4:c1:65:a0:63:87:7d:47:8c:c0:27:0d:b4:11:08:
06:de:f1:3e:d8:fc:6b:47:dc:09:89:c8:ef:05:b9:
a8:be:4b:7b:d5:07:48:3e:60:af:78:9f:e6:51:e4:
dc:60:4c:93:ab:71:74:9f:d5:cd:81:0c:a4:80:ae:
7f:58:33:8b:49:99:36:73:aa:d6:b5:9c:6c:d6:42:
bc:47:2f:be:a1:c1:fa:bb:69:a7:5d:eb:17:d2:c2:
e0:e2:72:51:40:5e:75:9e:f7:27:14:af:3c:51:49:
c2:6b:b6:3a:17:8b:44:fc:2b:6b:c9:fe:23:5f:41:
17:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:A8:A8:B8:AE:52:8C:1A:67:8A:95:DA:59:C0:0D:06:4D:F1:04:86
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B264ACE4301211F0B1F68C94DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.1.0/24
Signature Algorithm: sha256WithRSAEncryption
74:82:16:ed:c9:4e:65:21:5c:84:f3:a8:b9:7a:f7:47:80:c2:
c6:c4:6b:c7:35:01:db:be:00:70:90:f7:7e:c0:86:7b:e7:7e:
55:77:bf:bb:ff:8b:9a:70:a4:4b:99:a3:2a:9c:41:18:7d:58:
ce:0d:b0:71:dd:2e:39:4f:65:0a:73:07:9a:d0:24:2d:c3:f2:
f6:ae:7e:18:86:bf:63:06:1b:23:51:4d:99:f9:88:36:a5:c3:
58:a9:f6:9b:96:40:90:a3:96:6a:31:9b:7c:ae:3d:d8:c9:2a:
d9:45:78:9a:a8:b1:8e:04:3d:aa:e2:52:1e:32:a1:70:1c:88:
9f:ba:78:08:5d:f7:f9:40:cf:52:f4:51:1d:98:e1:af:9b:ca:
57:47:d9:df:93:1f:e0:7b:ac:07:3b:0e:e2:8a:ec:21:9b:c2:
ed:c6:04:de:c1:1e:92:64:d8:27:22:da:82:b3:8e:cb:9b:f7:
80:27:ef:d5:f2:12:cb:85:cf:fc:32:87:60:32:61:40:51:fb:
dc:44:d3:7f:fc:45:a6:29:60:64:3e:47:ce:33:6b:f9:d6:e1:
e6:4e:96:aa:e2:16:9e:66:b6:3a:70:9a:04:0b:83:49:72:3a:
66:1a:4d:6f:ee:13:db:3f:32:cd:fa:93:83:72:87:12:b9:f8:
35:af:ae:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:31:47 2025 by rpki-client