Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F975C174315A11F0891177B1DAE4EC9C.roa
File: F975C174315A11F0891177B1DAE4EC9C.roa (raw, json)
Hash identifier: jIQ2j5YW4YSBdT46mbNMJtjCxZZhykwV3v0ERMxg6qs=
Subject key identifier: FF:ED:99:21:4C:6E:2B:AB:24:EC:A8:E6:17:7F:CF:93:94:A3:02:CB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01546C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F975C174315A11F0891177B1DAE4EC9C.roa
Signing time: Thu 15 May 2025 07:05:25 +0000
ROA not before: Thu 15 May 2025 07:05:20 +0000
ROA not after: Tue 17 Jun 2025 07:05:20 +0000
asID: 394432
IP address blocks: 45.200.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87148 (0x1546c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 15 07:05:20 2025 GMT
Not After : Jun 17 07:05:20 2025 GMT
Subject: CN=68259235-4d31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0f:0c:b2:c2:e2:6e:cb:fb:8b:52:92:ee:83:
b6:fa:e4:ba:de:be:4c:ce:7a:a3:5a:3b:26:65:fd:
1e:0c:89:a5:21:5b:6e:1e:e0:41:f8:52:34:1b:26:
4a:46:18:8c:03:ea:8e:14:87:61:32:28:f1:8b:ce:
48:d7:c8:c3:02:e0:a3:90:ae:45:b2:78:11:60:6f:
7a:dd:7b:03:50:16:d7:b5:37:09:6b:a7:89:2c:f6:
66:59:ad:e4:69:f5:18:86:fe:10:d3:e8:8a:24:75:
3a:b7:bb:8a:0e:e9:c7:98:16:55:d9:76:cb:48:53:
c8:7c:18:01:3f:45:d9:cf:2a:25:52:1e:9d:85:4e:
2b:13:cc:65:d6:07:0b:de:d2:08:4d:09:0e:bc:f8:
26:df:2e:cf:72:6d:cb:9e:8d:7d:4b:35:f8:f3:5a:
c2:74:b1:29:dd:36:e0:99:7e:ae:07:31:f4:cc:aa:
1a:eb:0e:b8:14:a6:fa:f6:7a:e8:36:34:fb:43:c6:
25:58:cc:16:b9:c1:6e:5c:24:29:53:bb:0b:ad:ab:
3d:01:8d:18:8c:ba:89:b6:f9:e9:f6:5a:cd:73:0b:
fe:1a:3b:cc:cf:dd:68:86:de:85:2b:5d:36:86:5c:
0d:eb:8b:bd:01:70:36:f4:47:68:31:6d:23:6d:37:
e7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:ED:99:21:4C:6E:2B:AB:24:EC:A8:E6:17:7F:CF:93:94:A3:02:CB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F975C174315A11F0891177B1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.192.0/18
Signature Algorithm: sha256WithRSAEncryption
4c:58:57:03:11:02:6c:2c:f1:60:f8:e8:73:5d:ae:a3:bc:15:
74:88:9f:e9:38:c8:36:6a:e8:51:46:f2:39:b8:66:6c:02:2a:
fc:79:12:89:82:5c:63:3c:4b:cc:44:c1:39:e2:73:eb:cd:3d:
77:4e:33:fc:1b:7b:9b:86:64:b2:e7:fc:7a:2e:60:82:0d:99:
4e:de:fc:a7:4c:2a:9b:5c:14:58:0d:a1:4d:9f:37:ea:bc:e8:
f8:f3:b5:0c:4d:dc:0e:b4:8c:97:66:91:58:dc:20:02:35:6a:
19:47:f9:ed:e2:ce:4e:81:fc:32:b6:02:d6:33:99:26:b8:87:
e6:7b:6e:df:bf:a3:f4:8d:07:cc:cb:87:60:ca:c4:53:ef:de:
80:5b:a4:e2:75:6d:78:68:77:7b:cf:86:6c:2f:50:6b:bb:e9:
cd:80:8a:a7:ca:14:fb:20:6e:d6:1d:f8:ea:86:38:00:f2:ae:
65:aa:49:51:2b:fd:a3:aa:59:f1:5b:7f:68:fc:ac:77:14:12:
c3:0a:06:8f:cd:88:2e:fb:bb:27:4c:73:2f:05:e4:d2:c5:b2:
c4:07:83:d9:51:ea:e1:e1:ca:f6:f4:f1:f0:e0:5b:83:41:25:
a3:f4:c9:c8:af:ec:ef:6d:b6:e6:4a:07:c8:8e:eb:32:ad:a3:
64:fb:b9:dd
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAVRsMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNTE1MDcwNTIwWhcNMjUwNjE3MDcwNTIwWjAYMRYw
FAYDVQQDEw02ODI1OTIzNS00ZDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAmw8MssLibsv7i1KS7oO2+uS63r5MznqjWjsmZf0eDImlIVtuHuBB+FI0
GyZKRhiMA+qOFIdhMijxi85I18jDAuCjkK5FsngRYG963XsDUBbXtTcJa6eJLPZm
Wa3kafUYhv4Q0+iKJHU6t7uKDunHmBZV2XbLSFPIfBgBP0XZzyolUh6dhU4rE8xl
1gcL3tIITQkOvPgm3y7Pcm3Lno19SzX481rCdLEp3TbgmX6uBzH0zKoa6w64FKb6
9nroNjT7Q8YlWMwWucFuXCQpU7sLras9AY0YjLqJtvnp9lrNcwv+GjvMz91oht6F
K102hlwN64u9AXA29EdoMW0jbTfnmwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFP/t
mSFMbiurJOyo5hd/z5OUowLLMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9GOTc1QzE3NDMxNUExMUYwODkxMTc3QjFEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGLcjAMA0GCSqGSIb3DQEBCwUA
A4IBAQBMWFcDEQJsLPFg+OhzXa6jvBV0iJ/pOMg2auhRRvI5uGZsAir8eRKJglxj
PEvMRME54nPrzT13TjP8G3ubhmSy5/x6LmCCDZlO3vynTCqbXBRYDaFNnzfqvOj4
87UMTdwOtIyXZpFY3CACNWoZR/nt4s5OgfwytgLWM5kmuIfme27fv6P0jQfMy4dg
ysRT796AW6TidW14aHd7z4ZsL1Bru+nNgIqnyhT7IG7WHfjqhjgA8q5lqklRK/2j
qlnxW39o/Kx3FBLDCgaPzYgu+7snTHMvBeTSxbLEB4PZUerh4cr29PHw4FuDQSWj
9MnIr+zvbbbmSgfIjusyraNk+7nd
-----END CERTIFICATE-----
Generated at Tue Jun 3 08:42:56 2025 by rpki-client