Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B45EA8E63A5911F0976E27B8DAE4EC9C.roa
File: B45EA8E63A5911F0976E27B8DAE4EC9C.roa (raw, json)
Hash identifier: gq+egdcGTVaUI+IEtYA2vPwnmXE5SYuhrzKRkyjQ3Tc=
Subject key identifier: 0A:2C:29:D8:E6:AB:D6:AB:8D:39:3F:1D:8A:C9:64:E5:67:91:63:13
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0157A6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B45EA8E63A5911F0976E27B8DAE4EC9C.roa
Signing time: Mon 26 May 2025 17:49:00 +0000
ROA not before: Mon 26 May 2025 17:48:55 +0000
ROA not after: Tue 26 Aug 2025 17:48:55 +0000
asID: 328608
IP address blocks: 45.197.160.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87974 (0x157a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 26 17:48:55 2025 GMT
Not After : Aug 26 17:48:55 2025 GMT
Subject: CN=6834a98c-243e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e3:69:39:1e:5f:3a:64:1d:a0:9d:5c:7a:c5:
86:29:99:d1:e3:13:2d:8f:2e:de:97:33:3e:42:fc:
ec:58:7d:3c:d8:98:2d:b7:dc:55:36:02:3c:31:84:
2a:2b:b2:48:e0:3f:85:71:ce:af:73:31:48:6b:67:
9b:25:fb:68:fe:49:f5:d1:ed:42:c7:68:b5:fd:64:
03:41:78:ec:23:f4:85:8f:32:31:8e:46:09:a5:2f:
dc:b4:48:60:15:f7:96:bd:89:45:00:c2:5a:dc:e1:
9a:6a:fd:72:d8:01:2a:be:76:f8:31:6f:75:e8:a5:
fd:8b:cf:42:b1:0d:97:ac:3a:c9:59:5a:23:48:9e:
12:bf:88:81:c9:ed:00:b8:12:04:2b:ba:c6:1e:a2:
af:70:d8:ba:22:42:9e:3c:3c:5a:5c:97:af:dd:2e:
3d:d6:17:db:2d:50:f9:cf:a6:59:ef:9a:89:ae:e7:
e2:8d:5a:42:76:64:c3:4c:b6:fa:06:fe:f6:a1:61:
19:5f:c3:ea:7b:a8:53:fd:25:a4:25:62:d3:43:1f:
57:e2:00:11:46:93:77:9c:3e:2e:32:4c:52:04:99:
da:dd:0f:20:e2:f1:d5:70:df:bf:90:e2:7d:d1:7c:
6f:3b:bf:ae:e6:46:7e:6b:96:77:5f:ed:1a:0f:b9:
f6:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:2C:29:D8:E6:AB:D6:AB:8D:39:3F:1D:8A:C9:64:E5:67:91:63:13
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B45EA8E63A5911F0976E27B8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.160.0/22
Signature Algorithm: sha256WithRSAEncryption
76:14:d9:49:04:ea:f4:9d:6a:1f:72:fa:cd:29:2e:21:ac:01:
0d:00:ac:93:07:52:9b:50:ad:14:70:e5:1c:af:69:59:f4:b9:
20:4a:c7:ab:f3:2a:a3:68:ec:38:fb:bc:e5:3f:13:2a:28:f9:
c3:7d:5a:0f:44:59:95:ff:aa:fe:87:cc:99:b6:cc:d2:14:e6:
bd:95:34:09:58:23:a6:d9:4d:a3:9f:37:0f:8f:c2:ba:6f:29:
99:9f:ce:47:a6:54:23:3b:b9:42:71:68:5a:72:2c:ee:73:0b:
07:91:98:be:84:8b:72:59:8a:a5:15:5c:3d:31:04:e7:e5:db:
19:7e:60:f2:0c:4f:1c:ef:27:4c:67:c0:d5:3d:ef:43:9e:5c:
c8:75:56:0d:b0:be:b7:05:df:1c:b0:8f:d3:28:f5:74:6a:d5:
39:c7:6c:39:41:5b:a6:c4:2a:d4:fb:c4:5b:6c:b0:56:3b:44:
d5:ce:59:78:c6:75:83:44:fd:c2:d5:5d:3b:30:b5:20:1d:45:
7e:42:ac:08:4d:7f:9f:c3:98:36:b6:21:dc:92:6f:85:82:52:
e7:9d:7b:56:f5:c3:11:b7:1c:a4:f9:00:4e:29:d1:f1:82:67:
4f:a5:e3:82:28:7c:4d:eb:69:ce:8d:63:2a:5b:6c:12:b8:d2:
e1:04:2e:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 09:04:51 2025 by rpki-client