Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BEB2F896355F11F086037993DAE4EC9C.roa
File: BEB2F896355F11F086037993DAE4EC9C.roa (raw, json)
Hash identifier: OSHRA5Cey+40CBwAvHvbfkK5ki0XRZh92AI0nMGpIio=
Subject key identifier: A3:98:2D:B2:83:BF:4F:C2:47:80:91:BA:6D:20:24:16:CE:69:F6:92
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015622
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BEB2F896355F11F086037993DAE4EC9C.roa
Signing time: Tue 20 May 2025 09:49:39 +0000
ROA not before: Tue 20 May 2025 09:49:34 +0000
ROA not after: Fri 27 Jun 2025 09:49:34 +0000
asID: 202656
IP address blocks: 45.192.50.0/24 maxlen: 24
45.192.54.0/24 maxlen: 24
45.192.55.0/24 maxlen: 24
45.192.63.0/24 maxlen: 24
45.195.160.0/24 maxlen: 24
45.199.192.0/24 maxlen: 24
45.199.194.0/24 maxlen: 24
45.199.195.0/24 maxlen: 24
45.199.198.0/24 maxlen: 24
45.199.199.0/24 maxlen: 24
45.199.200.0/24 maxlen: 24
45.199.201.0/24 maxlen: 24
45.199.202.0/24 maxlen: 24
45.199.203.0/24 maxlen: 24
45.199.204.0/24 maxlen: 24
45.199.205.0/24 maxlen: 24
45.199.248.0/24 maxlen: 24
45.199.252.0/24 maxlen: 24
45.199.254.0/24 maxlen: 24
45.200.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87586 (0x15622)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 20 09:49:34 2025 GMT
Not After : Jun 27 09:49:34 2025 GMT
Subject: CN=682c5033-c319
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:25:b8:60:e9:98:e0:f2:dd:bd:62:af:f2:36:
9b:1d:66:65:96:c2:18:63:d3:5e:3d:06:de:72:fb:
2f:46:69:66:0c:12:6f:90:69:d0:bd:bb:16:50:a3:
2e:17:a1:7c:d8:81:af:7f:53:51:e7:4f:74:43:d7:
5a:40:88:46:71:75:bc:f3:4c:45:be:61:3d:6d:c2:
95:99:85:23:e6:75:04:38:f2:0f:dd:4f:0e:3b:58:
df:59:b3:a9:3f:2d:4a:85:81:bf:cd:7f:b5:80:63:
5a:49:32:46:c6:d3:f4:eb:8d:a1:92:3d:43:39:81:
3a:93:e6:16:5f:dd:a6:48:12:a8:e3:4f:a4:36:32:
5d:75:0e:69:91:79:a6:e9:ef:59:5d:80:42:d5:c5:
4e:81:b0:c9:4c:5d:7a:4e:b3:de:d1:17:38:16:17:
9e:2d:e5:ab:d0:0f:1f:c5:31:92:bf:5c:f9:3d:a9:
60:69:2e:e7:c5:f1:31:2b:0d:d2:9c:32:f9:93:41:
0a:68:b0:90:35:de:04:db:b5:0a:ff:95:4f:9c:77:
08:5c:74:c3:f6:5a:37:3a:b8:c9:4d:1c:b1:7c:7b:
db:06:77:6a:37:36:d1:0b:9e:43:2e:45:77:56:bd:
13:0a:a8:fc:3b:21:7e:4b:03:84:29:f1:0c:67:dd:
aa:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:98:2D:B2:83:BF:4F:C2:47:80:91:BA:6D:20:24:16:CE:69:F6:92
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BEB2F896355F11F086037993DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.50.0/24
45.192.54.0/23
45.192.63.0/24
45.195.160.0/24
45.199.192.0/24
45.199.194.0/23
45.199.198.0-45.199.205.255
45.199.248.0/24
45.199.252.0/24
45.199.254.0/24
45.200.178.0/24
Signature Algorithm: sha256WithRSAEncryption
28:34:6a:34:ba:c8:68:93:31:93:b0:14:8c:02:45:06:d2:61:
d0:04:2b:13:9c:21:49:9e:44:92:21:5d:76:47:a1:ed:c0:17:
61:f3:9d:04:07:ec:00:c0:1f:bb:c3:43:1b:87:4a:47:54:c1:
1a:c5:a9:ac:58:2a:82:8e:b5:c5:78:8b:5d:55:ef:e7:64:a3:
2e:df:f3:c4:20:d5:68:36:76:0d:be:06:91:40:4f:05:76:07:
8f:ab:94:85:06:b7:0a:93:05:e0:43:00:c7:39:7d:ce:da:2f:
6a:34:1a:79:5e:88:4f:71:63:f6:37:94:f0:ff:e4:69:f5:d4:
92:a5:da:61:ca:94:3f:20:8d:1b:80:c0:2d:b1:5e:1a:77:c4:
82:3a:07:82:94:bf:2e:51:bb:09:fe:d2:14:30:20:48:16:9d:
c3:a5:e5:1b:8f:b3:67:80:e3:18:4d:35:65:74:36:2e:95:d6:
ce:8f:e5:0c:27:8d:b8:a9:30:e5:1a:0c:ee:9b:82:1b:d4:f9:
e4:97:d0:df:e5:90:7f:63:f5:b4:24:0d:9c:35:ad:ac:d6:91:
1d:cb:fb:e6:76:b1:83:62:97:8d:d5:fb:b7:4e:ce:3b:1d:19:
36:f5:ad:4b:c3:79:9d:94:ef:9b:e2:30:4b:b5:e4:49:b5:e1:
70:94:d9:0f
-----BEGIN CERTIFICATE-----
MIIFxTCCBK2gAwIBAgIDAVYiMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNTIwMDk0OTM0WhcNMjUwNjI3MDk0OTM0WjAYMRYw
FAYDVQQDEw02ODJjNTAzMy1jMzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsyW4YOmY4PLdvWKv8jabHWZllsIYY9NePQbecvsvRmlmDBJvkGnQvbsW
UKMuF6F82IGvf1NR5090Q9daQIhGcXW880xFvmE9bcKVmYUj5nUEOPIP3U8OO1jf
WbOpPy1KhYG/zX+1gGNaSTJGxtP0642hkj1DOYE6k+YWX92mSBKo40+kNjJddQ5p
kXmm6e9ZXYBC1cVOgbDJTF16TrPe0Rc4FheeLeWr0A8fxTGSv1z5PalgaS7nxfEx
Kw3SnDL5k0EKaLCQNd4E27UK/5VPnHcIXHTD9lo3OrjJTRyxfHvbBndqNzbRC55D
LkV3Vr0TCqj8OyF+SwOEKfEMZ92qGwIDAQABo4IC5jCCAuIwHQYDVR0OBBYEFKOY
LbKDv0/CR4CRum0gJBbOafaSMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9CRUIyRjg5NjM1NUYxMUYwODYwMzc5OTNEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MGMGCCsGAQUFBwEHAQH/BFQwUjBQBAIAATBKAwQALcAyAwQBLcA2AwQALcA/AwQA
LcOgAwQALcfAAwQBLcfCMAwDBAEtx8YDBAEtx8wDBAAtx/gDBAAtx/wDBAAtx/4D
BAAtyLIwDQYJKoZIhvcNAQELBQADggEBACg0ajS6yGiTMZOwFIwCRQbSYdAEKxOc
IUmeRJIhXXZHoe3AF2HznQQH7ADAH7vDQxuHSkdUwRrFqaxYKoKOtcV4i11V7+dk
oy7f88Qg1Wg2dg2+BpFATwV2B4+rlIUGtwqTBeBDAMc5fc7aL2o0GnleiE9xY/Y3
lPD/5Gn11JKl2mHKlD8gjRuAwC2xXhp3xII6B4KUvy5Ruwn+0hQwIEgWncOl5RuP
s2eA4xhNNWV0Ni6V1s6P5QwnjbipMOUaDO6bghvU+eSX0N/lkH9j9bQkDZw1razW
kR3L++Z2sYNil43V+7dOzjsdGTb1rUvDeZ2U75viMEu15Em14XCU2Q8=
-----END CERTIFICATE-----
Generated at Tue Jun 3 08:28:25 2025 by rpki-client