Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/47017A78475911F08A2CEAC5DAE4EC9C.roa
File: 47017A78475911F08A2CEAC5DAE4EC9C.roa (raw, json)
Hash identifier: 8hzSC+1utx4M7hEbX11Pl2CFPPHQ2yKjODajBB3wGy8=
Subject key identifier: 63:EE:BB:D3:82:45:91:0D:5A:3E:EF:4D:E7:A7:F8:A5:0C:C0:6A:E0
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0CE0
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/47017A78475911F08A2CEAC5DAE4EC9C.roa
Signing time: Thu 12 Jun 2025 06:48:42 +0000
ROA not before: Thu 12 Jun 2025 06:48:37 +0000
ROA not after: Tue 12 Jun 2035 06:48:37 +0000
asID: 214120
IP address blocks: 192.142.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 18 Jun 2025 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3296 (0xce0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR, serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Jun 12 06:48:37 2025 GMT
Not After : Jun 12 06:48:37 2035 GMT
Subject: CN=684a784a-f10c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:3e:7e:97:7a:c1:e0:bc:26:bb:46:58:0a:84:
16:c6:ae:ce:22:e0:4d:6d:77:a1:55:ed:09:f0:1a:
76:6d:06:21:80:c7:ee:9e:1d:83:b7:1c:d5:c6:4a:
46:58:5e:9c:c2:4e:d0:5a:84:73:3c:e9:21:a1:41:
af:91:cf:13:11:57:e0:ad:f1:d5:23:a8:a4:f9:3c:
50:59:7b:93:19:83:aa:7c:29:fd:33:e3:52:48:5c:
0c:74:9b:ef:f3:95:e1:d3:39:be:79:22:5f:c5:73:
04:35:4a:82:c6:69:5f:ca:d8:28:45:8b:88:26:6f:
23:57:38:b4:98:f2:34:f2:53:85:7c:9c:01:4b:6b:
a0:3d:57:f4:ae:5f:87:9e:51:22:77:85:78:af:37:
c2:77:a3:f3:99:61:cf:71:c8:4b:bd:00:46:fe:0c:
97:9c:e1:e8:3f:85:f9:f9:92:f8:6f:33:06:9c:23:
b3:4b:92:0e:61:5e:0e:15:d6:6b:09:ad:e5:cd:75:
ce:af:48:c4:ac:59:58:05:a5:90:72:64:80:e4:c3:
75:59:e0:85:be:eb:36:57:cc:5f:8e:7e:01:be:ad:
63:cd:ac:d7:34:21:7c:d9:c0:5e:a2:b3:32:fc:1a:
cd:20:c2:d4:f3:63:87:db:51:57:9d:73:8d:3c:6d:
62:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:EE:BB:D3:82:45:91:0D:5A:3E:EF:4D:E7:A7:F8:A5:0C:C0:6A:E0
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/47017A78475911F08A2CEAC5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.9.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:8d:61:81:e9:29:ee:9b:5b:0a:51:1c:39:f8:60:bc:76:86:
29:13:df:63:29:5e:8c:96:24:92:5d:47:2d:63:9c:77:15:32:
a5:d7:eb:9f:c5:25:83:e9:58:44:64:fa:cb:52:a6:b6:47:fd:
54:3c:19:43:9f:96:af:5c:56:4f:22:f7:c5:59:d2:a8:76:b0:
64:fd:6c:7b:da:7a:2a:d6:98:28:ae:03:d0:cc:43:56:cf:93:
00:3e:90:dd:fd:c2:fa:f7:81:7e:a5:e5:e3:f9:49:42:c3:4d:
9a:51:55:ad:57:6b:26:b5:1e:8d:60:e3:63:c9:db:e6:07:54:
fe:31:78:2e:da:6b:c0:04:9c:50:aa:35:78:a6:48:f2:cf:b7:
17:3e:6c:7b:66:01:0b:5b:ab:66:50:28:8d:18:ce:5f:89:6f:
ae:88:17:89:87:2a:3b:9d:6b:4c:48:c6:bb:7c:f3:b6:84:aa:
46:63:11:74:1f:df:eb:ef:d0:99:c6:d2:7c:15:0e:56:37:71:
bd:1d:80:64:a8:0a:3d:64:78:d9:7b:ae:89:64:5a:a8:6d:0d:
06:19:ca:30:55:9b:0d:72:5a:3f:8b:28:8a:fb:d5:68:84:dd:
dd:02:40:ae:10:40:c7:e5:f4:92:66:c3:b3:00:47:cb:48:ce:
dc:c8:30:7b
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICDOAwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NjlENkJBUjExMC8GA1UEBRMoN0NBMzU0MkFGMDg3QTg3QkFDQUIxRjg2NkVFNUZG
NUIxNTZGQTc4NzAeFw0yNTA2MTIwNjQ4MzdaFw0zNTA2MTIwNjQ4MzdaMBgxFjAU
BgNVBAMTDTY4NGE3ODRhLWYxMGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDCPn6XesHgvCa7RlgKhBbGrs4i4E1td6FV7QnwGnZtBiGAx+6eHYO3HNXG
SkZYXpzCTtBahHM86SGhQa+RzxMRV+Ct8dUjqKT5PFBZe5MZg6p8Kf0z41JIXAx0
m+/zleHTOb55Il/FcwQ1SoLGaV/K2ChFi4gmbyNXOLSY8jTyU4V8nAFLa6A9V/Su
X4eeUSJ3hXivN8J3o/OZYc9xyEu9AEb+DJec4eg/hfn5kvhvMwacI7NLkg5hXg4V
1msJreXNdc6vSMSsWVgFpZByZIDkw3VZ4IW+6zZXzF+OfgG+rWPNrNc0IXzZwF6i
szL8Gs0gwtTzY4fbUVedc408bWJZAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUY+67
04JFkQ1aPu9N56f4pQzAauAwHwYDVR0jBBgwFoAUfKNUKvCHqHusqx+GbuX/WxVv
p4cwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjY5RDZCL0QyNEEyN0I4ODc5QTExRTk4MzcwNEI1MUY4QUVBMjI4L2ZLTlVL
dkNIcUh1c3F4LUdidVhfV3hWdnA0Yy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2ZLTlVLdkNIcUh1c3F4LUdidVhfV3hWdnA0Yy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjY5RDZCL0QyNEEyN0I4ODc5QTExRTk4MzcwNEI1MUY4QUVB
MjI4LzQ3MDE3QTc4NDc1OTExRjA4QTJDRUFDNURBRTRFQzlDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADAjgkwDQYJKoZIhvcNAQELBQAD
ggEBAMeNYYHpKe6bWwpRHDn4YLx2hikT32MpXoyWJJJdRy1jnHcVMqXX65/FJYPp
WERk+stSprZH/VQ8GUOflq9cVk8i98VZ0qh2sGT9bHvaeirWmCiuA9DMQ1bPkwA+
kN39wvr3gX6l5eP5SULDTZpRVa1Xaya1Ho1g42PJ2+YHVP4xeC7aa8AEnFCqNXim
SPLPtxc+bHtmAQtbq2ZQKI0Yzl+Jb66IF4mHKjuda0xIxrt887aEqkZjEXQf3+vv
0JnG0nwVDlY3cb0dgGSoCj1keNl7rolkWqhtDQYZyjBVmw1yWj+LKIr71WiE3d0C
QK4QQMfl9JJmw7MAR8tIztzIMHs=
-----END CERTIFICATE-----
Generated at Mon Jun 16 12:00:11 2025 by rpki-client