Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C06CB176EEA211EFB53ADBB7762E951A.roa
File: C06CB176EEA211EFB53ADBB7762E951A.roa (raw, json)
Hash identifier: wnH6ei4AVL4OCd39mYDsiDOrUb/zsJ76+ErtIlBbosI=
Subject key identifier: 90:DA:62:4F:04:85:6E:12:59:33:12:BB:6B:E6:33:17:33:07:19:F2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01252F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C06CB176EEA211EFB53ADBB7762E951A.roa
Signing time: Wed 19 Feb 2025 09:20:25 +0000
ROA not before: Wed 19 Feb 2025 09:20:21 +0000
ROA not after: Sat 21 Feb 2026 09:20:21 +0000
asID: 140224
IP address blocks: 45.192.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75055 (0x1252f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 19 09:20:21 2025 GMT
Not After : Feb 21 09:20:21 2026 GMT
Subject: CN=67b5a259-0c80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f4:ec:b9:3b:51:fd:6d:f0:fb:6e:85:68:42:
54:92:0f:b0:14:63:13:0c:a0:9c:4a:14:89:e5:04:
21:03:3c:d2:73:ed:19:61:17:6f:34:91:21:f7:73:
17:1c:2d:0a:b9:73:97:56:fa:a5:77:a8:93:b7:26:
83:2a:40:9d:60:32:0b:d5:db:4e:a4:f6:c6:dc:c7:
23:9b:2b:1e:5a:ae:bc:81:b0:b3:ff:8c:f9:8b:b0:
cc:fd:8c:de:12:5a:01:d6:b4:fc:07:c4:ac:b8:40:
bc:60:79:f4:82:64:65:8c:f6:b3:5d:a9:c4:61:40:
35:a5:37:b6:92:a7:b8:97:28:a7:61:68:a5:25:de:
a5:8b:8d:ba:9f:c9:1f:26:81:5f:fe:2d:03:9d:22:
49:a4:e1:71:ec:5d:fb:5d:9d:fc:76:40:e5:02:d2:
00:b7:4d:22:f6:d7:e6:0d:c0:6b:72:78:67:d9:4e:
f7:26:39:a9:84:a4:99:0c:fd:f8:89:58:2d:66:3e:
22:9a:48:e4:8b:2d:10:0a:96:9a:7d:30:ad:15:4c:
66:a1:22:1a:5a:c8:fc:3a:69:cb:f8:1c:0e:1f:ee:
34:ee:d2:d6:13:a9:1f:1a:d1:35:4b:f2:18:dc:1e:
f5:1d:21:90:07:1e:3b:ad:79:c4:75:bc:eb:5f:4d:
83:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:DA:62:4F:04:85:6E:12:59:33:12:BB:6B:E6:33:17:33:07:19:F2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C06CB176EEA211EFB53ADBB7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.17.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:14:1e:8c:6b:8c:6d:6b:fc:37:31:78:87:08:48:db:9f:22:
15:14:74:dd:65:ba:64:38:e0:6e:97:b1:da:23:5e:5c:d4:ed:
1b:a6:7f:61:eb:8c:31:96:1a:c9:58:bb:8c:7b:8c:da:20:16:
93:f4:6b:a4:1c:ba:c4:28:eb:7d:28:32:fc:3d:16:ca:b2:c7:
a8:6c:73:f3:d4:df:6e:34:b0:65:39:ad:75:1c:3a:7d:a8:5d:
0c:56:96:6a:5e:1a:bb:e4:d7:73:24:d7:fa:b0:d9:56:69:8e:
59:ea:ca:d1:22:04:11:ae:1e:08:45:ed:f0:7f:55:aa:cc:91:
39:29:8f:81:f8:94:cb:f6:4e:ab:01:27:f5:22:a9:b2:5c:99:
35:aa:bc:a6:63:b2:00:31:05:85:2c:e4:ee:1d:8c:5e:01:61:
07:64:03:eb:41:dd:23:6e:c8:2d:b1:2f:94:12:50:4b:50:fa:
f1:9b:a1:7a:fc:ab:ae:cf:d1:b0:40:bb:db:7d:4f:c6:96:01:
c9:8c:c6:79:a5:30:5c:cd:8c:25:ad:21:fb:7a:53:19:b2:f7:
5b:b9:2b:bd:61:57:81:ea:16:5c:ea:c0:c3:4d:09:fc:26:d4:
10:72:ba:2c:e4:81:bd:4c:e6:3c:b0:54:38:c9:bd:4f:79:71:
b8:36:36:3a
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDASUvMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMjE5MDkyMDIxWhcNMjYwMjIxMDkyMDIxWjAYMRYw
FAYDVQQDEw02N2I1YTI1OS0wYzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1/TsuTtR/W3w+26FaEJUkg+wFGMTDKCcShSJ5QQhAzzSc+0ZYRdvNJEh
93MXHC0KuXOXVvqld6iTtyaDKkCdYDIL1dtOpPbG3McjmyseWq68gbCz/4z5i7DM
/YzeEloB1rT8B8SsuEC8YHn0gmRljPazXanEYUA1pTe2kqe4lyinYWilJd6li426
n8kfJoFf/i0DnSJJpOFx7F37XZ38dkDlAtIAt00i9tfmDcBrcnhn2U73JjmphKSZ
DP34iVgtZj4imkjkiy0QCpaafTCtFUxmoSIaWsj8OmnL+BwOH+407tLWE6kfGtE1
S/IY3B71HSGQBx47rXnEdbzrX02DXQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFJDa
Yk8EhW4SWTMSu2vmMxczBxnyMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9DMDZDQjE3NkVFQTIxMUVGQjUzQURCQjc3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcARMA0GCSqGSIb3DQEBCwUA
A4IBAQAtFB6Ma4xta/w3MXiHCEjbnyIVFHTdZbpkOOBul7HaI15c1O0bpn9h64wx
lhrJWLuMe4zaIBaT9GukHLrEKOt9KDL8PRbKsseobHPz1N9uNLBlOa11HDp9qF0M
VpZqXhq75NdzJNf6sNlWaY5Z6srRIgQRrh4IRe3wf1WqzJE5KY+B+JTL9k6rASf1
IqmyXJk1qrymY7IAMQWFLOTuHYxeAWEHZAPrQd0jbsgtsS+UElBLUPrxm6F6/Kuu
z9GwQLvbfU/GlgHJjMZ5pTBczYwlrSH7elMZsvdbuSu9YVeB6hZc6sDDTQn8JtQQ
cros5IG9TOY8sFQ4yb1PeXG4NjY6
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:17:01 2025 by rpki-client