Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BB7E260EF47E11EF8714517D762E951A.roa
File: BB7E260EF47E11EF8714517D762E951A.roa (raw, json)
Hash identifier: tn4Rr2WOLFK3y7tokjgH7BJNyty96Q5xLesM9RDdH14=
Subject key identifier: 71:0F:C4:16:35:DD:B8:28:45:31:99:53:77:0E:3B:31:64:D6:5B:D3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013778
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BB7E260EF47E11EF8714517D762E951A.roa
Signing time: Wed 26 Feb 2025 20:17:42 +0000
ROA not before: Wed 26 Feb 2025 20:17:38 +0000
ROA not after: Thu 19 Feb 2026 20:17:38 +0000
asID: 984
IP address blocks: 45.201.116.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79736 (0x13778)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 26 20:17:38 2025 GMT
Not After : Feb 19 20:17:38 2026 GMT
Subject: CN=67bf76e6-c5bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:cd:7f:2e:6d:2f:e0:53:e3:29:cf:c4:6a:a2:
4b:90:02:33:53:c1:0f:f1:35:7e:65:78:cd:ac:09:
ea:0b:58:c7:74:e3:ab:e4:39:b0:b4:a4:a8:59:15:
91:e7:26:8b:95:27:5a:a2:8e:3c:dd:b7:13:37:ed:
49:7b:d7:53:d2:d4:0f:58:b7:13:a2:83:02:bd:3f:
de:5c:f3:09:bd:2d:1f:bc:b0:a8:13:77:36:f3:8a:
8f:f5:c2:aa:34:33:2a:54:a5:8c:41:8b:51:5f:6c:
90:eb:db:dc:a4:bd:77:e0:f4:7b:1c:a5:51:1a:1e:
ba:2b:86:c0:5e:bd:88:e0:9b:1a:1f:a5:3a:6b:54:
d3:42:b2:90:8d:e9:0b:2e:3a:bb:1d:37:f5:07:f6:
8a:1b:54:58:17:5b:57:5c:7c:8b:0d:2b:da:01:ea:
f7:53:c3:7f:10:4d:d0:8b:28:0f:6b:bd:08:1b:2a:
10:9b:0d:cc:45:91:4c:5f:2e:2b:9c:08:f9:8c:09:
47:b1:9b:92:5f:1e:04:1c:6b:85:c2:23:45:f4:f5:
27:d8:62:5c:91:ba:eb:97:f3:ff:92:75:f2:79:63:
f9:f7:21:d9:e1:ec:c9:4d:d2:07:8b:ef:e7:b1:9b:
90:10:b3:1c:53:93:82:a4:aa:96:1b:17:5d:3a:59:
ff:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:0F:C4:16:35:DD:B8:28:45:31:99:53:77:0E:3B:31:64:D6:5B:D3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BB7E260EF47E11EF8714517D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.116.0/24
Signature Algorithm: sha256WithRSAEncryption
40:64:c1:05:7f:92:06:83:60:8d:1e:b7:8d:db:98:78:96:ff:
fc:cc:39:e0:34:bf:08:07:46:66:c8:dc:68:1c:d2:47:0e:fb:
ae:6f:3b:4a:1d:f3:d2:78:3b:5f:87:28:53:98:e7:eb:3a:68:
49:d8:ba:b2:61:f7:cc:aa:5b:1f:9e:74:41:4c:56:3c:36:40:
a4:4c:fb:b3:54:cb:88:fb:8d:98:28:44:33:5f:39:78:9c:ec:
fe:18:1a:04:3d:20:8d:78:64:84:e6:ec:a1:f2:ce:dc:4c:e7:
13:5e:b7:32:52:6a:f8:0c:29:df:93:75:71:5c:96:c6:a0:2b:
41:7e:a5:56:da:9a:c4:91:e3:73:93:f7:83:e2:12:cc:16:76:
2e:26:a6:ec:a5:0d:47:a9:c0:8a:2f:5b:33:34:9c:96:87:c0:
58:a5:7e:d9:d8:69:a2:4f:a3:11:09:2d:f8:de:2d:5c:cf:84:
ee:67:11:d3:cf:d3:a3:b4:ef:85:94:62:83:a6:59:3d:dc:7f:
7e:d1:42:fc:ed:02:60:88:eb:2b:f6:ce:9f:18:1c:68:d9:12:
8c:eb:7f:8d:89:c5:0e:cd:ff:85:5f:be:58:86:a7:b6:33:9a:
0a:f0:f4:96:b1:47:45:8c:a9:70:2b:35:66:21:4c:1d:b3:eb:
cd:00:f0:36
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDATd4MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMjI2MjAxNzM4WhcNMjYwMjE5MjAxNzM4WjAYMRYw
FAYDVQQDEw02N2JmNzZlNi1jNWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAu81/Lm0v4FPjKc/EaqJLkAIzU8EP8TV+ZXjNrAnqC1jHdOOr5DmwtKSo
WRWR5yaLlSdaoo483bcTN+1Je9dT0tQPWLcTooMCvT/eXPMJvS0fvLCoE3c284qP
9cKqNDMqVKWMQYtRX2yQ69vcpL134PR7HKVRGh66K4bAXr2I4JsaH6U6a1TTQrKQ
jekLLjq7HTf1B/aKG1RYF1tXXHyLDSvaAer3U8N/EE3QiygPa70IGyoQmw3MRZFM
Xy4rnAj5jAlHsZuSXx4EHGuFwiNF9PUn2GJckbrrl/P/knXyeWP59yHZ4ezJTdIH
i+/nsZuQELMcU5OCpKqWGxddOln/LwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFHEP
xBY13bgoRTGZU3cOOzFk1lvTMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9CQjdFMjYwRUY0N0UxMUVGODcxNDUxN0Q3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcl0MA0GCSqGSIb3DQEBCwUA
A4IBAQBAZMEFf5IGg2CNHreN25h4lv/8zDngNL8IB0ZmyNxoHNJHDvuubztKHfPS
eDtfhyhTmOfrOmhJ2LqyYffMqlsfnnRBTFY8NkCkTPuzVMuI+42YKEQzXzl4nOz+
GBoEPSCNeGSE5uyh8s7cTOcTXrcyUmr4DCnfk3VxXJbGoCtBfqVW2prEkeNzk/eD
4hLMFnYuJqbspQ1HqcCKL1szNJyWh8BYpX7Z2GmiT6MRCS343i1cz4TuZxHTz9Oj
tO+FlGKDplk93H9+0UL87QJgiOsr9s6fGBxo2RKM63+NicUOzf+FX75Yhqe2M5oK
8PSWsUdFjKlwKzVmIUwds+vNAPA2
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:22:23 2025 by rpki-client