Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B7DF27E8300411F0B59FF0B7DAE4EC9C.roa
File: B7DF27E8300411F0B59FF0B7DAE4EC9C.roa (raw, json)
Hash identifier: 2FQCBQF5H2DrtqcDuDdp0dlOI8zvdVGuz9RGtu2f1xI=
Subject key identifier: 68:73:19:AD:D2:36:90:1B:45:DC:59:EF:7E:CF:12:F0:6B:30:AF:FF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015400
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B7DF27E8300411F0B59FF0B7DAE4EC9C.roa
Signing time: Tue 13 May 2025 14:15:27 +0000
ROA not before: Tue 13 May 2025 14:15:23 +0000
ROA not after: Sat 16 May 2026 14:15:23 +0000
asID: 41095
IP address blocks: 45.195.26.0/23 maxlen: 24
45.198.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87040 (0x15400)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 13 14:15:23 2025 GMT
Not After : May 16 14:15:23 2026 GMT
Subject: CN=682353ff-262c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9b:b9:f9:99:ed:ca:98:d0:43:9e:b6:df:f1:
a2:03:c3:86:3b:52:f4:0a:95:03:0d:ea:fb:5e:4c:
b7:78:99:9d:a0:74:7e:f5:5f:9a:a4:62:99:93:59:
cd:fc:a9:b8:5a:7d:6a:d1:21:c1:66:1e:2f:27:17:
9d:89:57:3f:2b:7e:c8:98:82:c0:35:2b:4c:36:8a:
dc:9d:1f:29:71:7a:49:2f:9e:9e:a1:16:9e:fd:70:
66:5d:8a:2b:b1:2b:b6:1f:fd:f7:07:ce:d5:76:93:
06:94:c2:37:43:7a:52:41:5a:95:11:d6:b4:0d:6d:
c4:31:ee:2c:cc:3b:0a:c9:07:31:e2:29:c7:3d:2d:
8c:45:5a:b0:56:55:04:2c:82:1c:ea:9a:c6:82:81:
cb:d4:ed:f7:9c:3b:2b:91:01:46:0b:27:91:29:fc:
d8:5b:b8:e2:76:a6:3e:7b:07:37:0e:db:08:8d:34:
45:15:9f:56:ac:fd:f9:86:08:2f:20:43:a8:75:98:
51:bc:68:82:33:4d:fd:35:84:9f:61:76:42:5f:6d:
10:08:51:fb:ab:0e:9c:23:f4:cd:a4:d1:64:e7:ff:
64:a4:d6:5a:46:69:4f:1a:62:ac:ae:e6:d0:c9:4d:
5e:c1:a2:d2:f7:97:46:78:86:80:c6:61:0f:cd:0c:
0d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:73:19:AD:D2:36:90:1B:45:DC:59:EF:7E:CF:12:F0:6B:30:AF:FF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B7DF27E8300411F0B59FF0B7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.26.0/23
45.198.2.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:21:8b:84:51:69:39:c6:13:a2:9e:a8:a9:26:06:5f:45:da:
64:0c:c3:fa:48:19:47:f6:02:e1:56:22:c8:76:24:c9:63:91:
d3:e8:59:11:2f:32:1e:c1:1d:98:e6:72:10:00:f9:da:fa:2f:
d4:6a:ff:a1:26:6f:db:ed:2b:c1:bf:56:8d:88:74:0e:0a:cd:
86:b3:6b:6a:64:74:46:86:f3:d0:90:85:16:45:01:1e:07:36:
40:2d:7e:10:c8:12:e2:d7:7c:bf:29:26:30:d8:62:45:30:5d:
5a:ce:d2:fc:3a:ae:f4:ac:93:76:5e:91:d0:6b:01:77:c0:48:
07:c3:ce:2b:18:83:fc:f4:b5:3e:b9:38:77:de:67:a4:67:9d:
13:05:ed:d7:c5:2e:e9:41:c4:64:4e:62:ce:0b:13:e2:c1:68:
5b:63:08:ce:29:4a:6b:c3:d3:cd:92:1e:31:0c:8f:ce:1c:8b:
aa:b2:95:a3:a8:0f:c8:b1:4c:48:37:fc:d9:b1:e4:0a:fe:71:
ad:12:f1:15:a5:d1:e0:6a:9e:c6:87:96:19:85:9a:1f:56:71:
81:67:1c:f4:7f:38:25:e0:0b:c6:12:4e:a5:db:56:e5:75:f0:
10:20:54:6d:34:3b:7e:13:17:a8:7a:af:e1:bf:8b:1d:00:18:
ff:3b:c0:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:37:52 2025 by rpki-client