Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/02E337680CBD11F09DC8E998762E951A.roa
File: 02E337680CBD11F09DC8E998762E951A.roa (raw, json)
Hash identifier: z6AusA/xKuIuA+a5IuFEyTc0mdZ/hf/iJzUHoZJGl50=
Subject key identifier: 15:E7:1D:B9:D3:F7:4E:84:DE:51:AD:1D:6E:F1:D3:2A:60:8E:A4:BA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0148B6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/02E337680CBD11F09DC8E998762E951A.roa
Signing time: Sat 29 Mar 2025 16:43:58 +0000
ROA not before: Sat 29 Mar 2025 16:43:54 +0000
ROA not after: Mon 05 May 2025 16:43:54 +0000
asID: 4515
IP address blocks: 45.196.224.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84150 (0x148b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 29 16:43:54 2025 GMT
Not After : May 5 16:43:54 2025 GMT
Subject: CN=67e8234e-9677
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ed:c0:c6:38:2f:c2:08:92:5e:7f:55:47:7b:
0f:2a:6f:d6:f7:f8:4e:4c:c3:7f:a7:cf:4d:4a:c4:
f8:42:4e:fc:ae:cc:74:e0:57:2a:82:a2:ae:1d:02:
27:b5:1f:2b:88:d7:e3:e9:96:af:1d:cb:70:d5:75:
46:2d:52:0a:39:27:46:56:b6:05:3a:de:af:e8:84:
3e:d6:91:b8:c7:97:ad:f2:7a:59:ea:c6:db:f4:78:
04:bc:ff:5b:bc:c1:7d:32:de:7e:4c:fa:16:22:e1:
24:5c:aa:83:98:f8:04:c6:e5:77:8e:bb:1e:98:6c:
e8:b6:8b:b6:ed:a7:fa:99:36:c1:fc:2c:2a:ac:b3:
3e:b6:78:20:b6:3d:63:4d:db:cb:c4:c2:90:80:44:
8b:dd:8b:2a:6b:72:f0:9c:67:ab:dd:50:6b:24:db:
e7:58:64:1a:ae:cc:da:62:0c:2f:d3:1e:2b:59:5f:
1d:d7:3b:18:13:c1:09:3c:b8:3d:63:9b:ff:d4:40:
de:68:10:36:82:1a:55:a5:eb:6e:08:e1:b8:83:67:
ab:61:90:eb:b0:cd:7b:40:ab:94:6a:bc:88:e5:22:
45:5f:79:42:dc:68:03:77:0e:43:13:01:16:c6:39:
9d:bb:b0:26:df:19:bd:6f:97:22:dd:f1:d6:e4:5e:
49:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:E7:1D:B9:D3:F7:4E:84:DE:51:AD:1D:6E:F1:D3:2A:60:8E:A4:BA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/02E337680CBD11F09DC8E998762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.224.0/24
Signature Algorithm: sha256WithRSAEncryption
61:f4:be:03:ac:85:44:d5:a8:3c:1c:56:6b:d8:27:ea:c6:dd:
90:10:78:10:a8:40:c0:a6:46:8c:03:26:d7:f1:bb:35:82:01:
b8:29:f7:64:2f:ab:6b:35:0d:b5:a6:7e:53:5a:6d:9b:b7:bf:
35:8c:5a:c8:42:d1:41:da:99:d9:cd:e9:09:49:43:4c:95:94:
f6:6f:cf:91:fd:86:ad:96:3d:f1:52:97:62:1a:fe:53:62:bd:
e1:f6:c4:06:45:0b:cf:b0:94:63:cd:d8:a9:35:d7:a9:a1:7c:
11:09:0b:a9:07:1c:e0:ee:3c:00:09:97:50:3d:61:69:04:db:
04:f9:12:33:bc:c0:d2:e4:e2:9b:c2:55:67:9d:66:e9:48:fe:
11:fe:02:72:82:87:7f:c3:67:87:4a:f7:f5:54:bd:07:02:60:
30:d2:81:54:c3:41:1a:51:ab:c3:93:72:00:ba:b7:24:45:95:
47:02:a9:84:25:f8:56:00:7c:6a:52:e0:4b:9a:d4:8c:19:7a:
45:66:ee:61:c0:11:a3:6a:7c:8d:82:1e:8a:2b:6d:5e:e2:b7:
e5:a2:bf:3e:e3:dd:85:13:b6:4c:3d:e3:90:06:20:71:72:2c:
e9:b3:87:71:05:75:70:a3:b7:63:0b:c3:1e:73:c6:e4:b9:f2:
28:e2:d1:d1
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAUi2MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMzI5MTY0MzU0WhcNMjUwNTA1MTY0MzU0WjAYMRYw
FAYDVQQDEw02N2U4MjM0ZS05Njc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0e3AxjgvwgiSXn9VR3sPKm/W9/hOTMN/p89NSsT4Qk78rsx04FcqgqKu
HQIntR8riNfj6ZavHctw1XVGLVIKOSdGVrYFOt6v6IQ+1pG4x5et8npZ6sbb9HgE
vP9bvMF9Mt5+TPoWIuEkXKqDmPgExuV3jrsemGzotou27af6mTbB/CwqrLM+tngg
tj1jTdvLxMKQgESL3Ysqa3LwnGer3VBrJNvnWGQarszaYgwv0x4rWV8d1zsYE8EJ
PLg9Y5v/1EDeaBA2ghpVpetuCOG4g2erYZDrsM17QKuUaryI5SJFX3lC3GgDdw5D
EwEWxjmdu7Am3xm9b5ci3fHW5F5JlQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFBXn
HbnT906E3lGtHW7x0ypgjqS6MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8wMkUzMzc2ODBDQkQxMUYwOURDOEU5OTg3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcTgMA0GCSqGSIb3DQEBCwUA
A4IBAQBh9L4DrIVE1ag8HFZr2Cfqxt2QEHgQqEDApkaMAybX8bs1ggG4KfdkL6tr
NQ21pn5TWm2bt781jFrIQtFB2pnZzekJSUNMlZT2b8+R/Yatlj3xUpdiGv5TYr3h
9sQGRQvPsJRjzdipNdepoXwRCQupBxzg7jwACZdQPWFpBNsE+RIzvMDS5OKbwlVn
nWbpSP4R/gJygod/w2eHSvf1VL0HAmAw0oFUw0EaUavDk3IAurckRZVHAqmEJfhW
AHxqUuBLmtSMGXpFZu5hwBGjanyNgh6KK21e4rflor8+492FE7ZMPeOQBiBxcizp
s4dxBXVwo7djC8Mec8bkufIo4tHR
-----END CERTIFICATE-----
Generated at Sat Apr 26 17:09:14 2025 by rpki-client