Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B7CD95FE3E2911F0A72F3E8ADAE4EC9C.roa
File: B7CD95FE3E2911F0A72F3E8ADAE4EC9C.roa (raw, json)
Hash identifier: 1g+HIFAK0u191mdreJ0VJHMXuuFmsKDwFOUqmc1dUWw=
Subject key identifier: C5:82:93:50:68:40:FB:D1:5E:1A:16:24:3C:01:4A:F7:1C:4A:26:65
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01592C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B7CD95FE3E2911F0A72F3E8ADAE4EC9C.roa
Signing time: Sat 31 May 2025 14:15:35 +0000
ROA not before: Sat 31 May 2025 14:15:30 +0000
ROA not after: Mon 07 Jul 2025 14:15:30 +0000
asID: 54801
IP address blocks: 45.200.14.0/23 maxlen: 24
45.200.16.0/23 maxlen: 24
45.200.18.0/23 maxlen: 24
45.200.20.0/22 maxlen: 24
45.200.24.0/21 maxlen: 24
45.200.32.0/19 maxlen: 24
45.201.214.0/23 maxlen: 24
45.201.216.0/21 maxlen: 24
45.201.224.0/21 maxlen: 24
45.201.240.0/20 maxlen: 24
45.204.0.0/24 maxlen: 24
45.207.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 06 Jun 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88364 (0x1592c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 31 14:15:30 2025 GMT
Not After : Jul 7 14:15:30 2025 GMT
Subject: CN=683b0f07-733e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:f1:86:77:0c:c8:72:8c:15:5b:15:23:07:17:
9c:66:e2:2d:ee:23:7b:c6:bc:c2:92:ba:f3:a7:99:
66:c5:0f:83:d1:f4:b5:7c:86:3a:12:d2:dd:d3:40:
81:f0:b5:f8:33:32:12:48:93:e0:37:58:8c:29:ae:
6a:f9:30:98:50:10:79:f0:02:1f:74:a5:99:5d:04:
3d:d5:91:3f:23:09:60:e7:3b:e3:03:35:ed:f9:c6:
c2:e4:bb:e8:df:d8:99:54:88:d5:6c:43:13:5d:53:
bc:96:07:c9:46:b5:48:0d:33:f8:8f:1f:d9:80:bf:
e9:22:e7:eb:e3:9b:aa:53:9d:7a:51:e4:81:d4:24:
92:81:57:ac:94:5c:02:37:2f:f1:19:3f:8f:80:84:
64:e5:00:e4:2f:cd:91:b1:02:0e:27:cb:18:9a:04:
fb:84:05:d0:ca:da:c8:5b:81:23:4d:87:3a:9e:bd:
ae:43:b7:09:0a:7d:9f:d0:72:62:de:e5:36:14:40:
31:37:ca:db:db:8d:b4:4a:96:da:fc:dc:ce:ec:07:
a7:66:f3:67:30:2c:15:a3:93:66:d3:a9:d1:1d:35:
7a:d0:18:f1:a8:13:e2:c0:5d:04:ce:d8:fb:8f:07:
6b:fe:49:dc:34:2f:4a:0b:3a:e1:f2:1f:f1:72:de:
18:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:82:93:50:68:40:FB:D1:5E:1A:16:24:3C:01:4A:F7:1C:4A:26:65
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B7CD95FE3E2911F0A72F3E8ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.14.0-45.200.63.255
45.201.214.0-45.201.231.255
45.201.240.0/20
45.204.0.0/24
45.207.224.0/19
Signature Algorithm: sha256WithRSAEncryption
39:f4:67:76:5e:70:78:4e:c1:22:4e:f7:3c:6e:0c:89:8b:fb:
e3:c0:12:97:de:85:d1:e9:54:59:22:fd:36:24:b0:13:ae:2a:
de:e6:66:6f:cb:9c:48:14:10:f8:05:9c:da:a2:6d:c7:6f:a5:
71:7e:de:12:cc:38:ce:b8:0b:c7:ea:84:4d:fd:4d:2a:f6:4b:
51:7e:ed:5b:ef:fd:bc:a7:14:0b:0b:54:4a:4e:2b:b8:c7:36:
76:5b:5e:85:b9:90:cc:39:50:e6:44:d3:ef:23:35:0d:71:07:
b2:bd:e4:2d:95:75:ff:0c:0a:e4:3e:56:21:24:29:34:10:eb:
7e:6f:e8:4c:8a:05:b9:32:8f:af:9a:53:e1:9f:fc:fa:79:61:
f3:e7:8e:1b:09:f4:69:35:6f:2a:b0:7f:bc:b4:94:19:f9:cd:
c1:be:4d:a9:52:24:12:56:ee:52:ae:a2:da:90:a2:6b:86:39:
fb:eb:d8:c7:f3:6c:96:af:c2:da:d1:1c:dd:82:5d:eb:4d:5f:
59:65:4f:2c:fd:a2:c1:61:6a:ca:a1:ad:48:d6:42:d4:a4:4e:
26:6f:52:f7:db:3b:f6:85:47:40:d3:ae:3d:fd:72:05:52:9e:
2c:c4:32:32:0a:d4:f4:94:a7:44:2c:b5:b6:f8:35:44:08:5e:
7f:1c:96:76
-----BEGIN CERTIFICATE-----
MIIFqTCCBJGgAwIBAgIDAVksMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNTMxMTQxNTMwWhcNMjUwNzA3MTQxNTMwWjAYMRYw
FAYDVQQDEw02ODNiMGYwNy03MzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA4vGGdwzIcowVWxUjBxecZuIt7iN7xrzCkrrzp5lmxQ+D0fS1fIY6EtLd
00CB8LX4MzISSJPgN1iMKa5q+TCYUBB58AIfdKWZXQQ91ZE/Iwlg5zvjAzXt+cbC
5Lvo39iZVIjVbEMTXVO8lgfJRrVIDTP4jx/ZgL/pIufr45uqU516UeSB1CSSgVes
lFwCNy/xGT+PgIRk5QDkL82RsQIOJ8sYmgT7hAXQytrIW4EjTYc6nr2uQ7cJCn2f
0HJi3uU2FEAxN8rb2420Spba/NzO7AenZvNnMCwVo5Nm06nRHTV60BjxqBPiwF0E
ztj7jwdr/kncNC9KCzrh8h/xct4Y0QIDAQABo4ICyjCCAsYwHQYDVR0OBBYEFMWC
k1BoQPvRXhoWJDwBSvccSiZlMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9CN0NEOTVGRTNFMjkxMUYwQTcyRjNFOEFEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MEcGCCsGAQUFBwEHAQH/BDgwNjA0BAIAATAuMAwDBAEtyA4DBAYtyAAwDAMEAS3J
1gMEAy3J4AMEBC3J8AMEAC3MAAMEBS3P4DANBgkqhkiG9w0BAQsFAAOCAQEAOfRn
dl5weE7BIk73PG4MiYv748ASl96F0elUWSL9NiSwE64q3uZmb8ucSBQQ+AWc2qJt
x2+lcX7eEsw4zrgLx+qETf1NKvZLUX7tW+/9vKcUCwtUSk4ruMc2dltehbmQzDlQ
5kTT7yM1DXEHsr3kLZV1/wwK5D5WISQpNBDrfm/oTIoFuTKPr5pT4Z/8+nlh8+eO
Gwn0aTVvKrB/vLSUGfnNwb5NqVIkElbuUq6i2pCia4Y5++vYx/Nslq/C2tEc3YJd
601fWWVPLP2iwWFqyqGtSNZC1KROJm9S99s79oVHQNOuPf1yBVKeLMQyMgrU9JSn
RCy1tvg1RAhefxyWdg==
-----END CERTIFICATE-----
Generated at Thu Jun 5 01:42:01 2025 by rpki-client