Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/096F56E86FB411F0BD96FEECDAE4EC9C.roa
File: 096F56E86FB411F0BD96FEECDAE4EC9C.roa (raw, json)
Hash identifier: YiDIqBlBvexNHgfEmNoSpk9zpwitJdrii5OamamhAu8=
Subject key identifier: CE:19:80:22:8A:4C:56:46:FE:5C:1A:08:D5:B3:71:45:53:5A:DA:2F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0168A2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/096F56E86FB411F0BD96FEECDAE4EC9C.roa
Signing time: Sat 02 Aug 2025 15:19:10 +0000
ROA not before: Sat 02 Aug 2025 15:19:04 +0000
ROA not after: Thu 04 Sep 2025 15:19:04 +0000
asID: 20326
IP address blocks: 45.202.102.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 08 Aug 2025 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92322 (0x168a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 2 15:19:04 2025 GMT
Not After : Sep 4 15:19:04 2025 GMT
Subject: CN=688e2c6d-eeb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6d:d6:98:64:7d:6e:b5:6f:ce:34:6b:12:e5:
6e:d7:34:80:13:f9:e8:cc:ab:69:01:45:87:3e:4a:
39:e8:03:46:42:fc:45:34:de:84:e3:ef:ab:f2:d5:
f3:16:5b:95:c2:cb:45:a3:db:89:68:1d:a2:c8:5d:
91:df:cd:f1:85:f9:2e:2a:bd:53:eb:3c:47:b1:a4:
45:da:11:bf:db:c2:f9:f7:4c:ab:1c:43:0b:13:35:
1e:44:ae:29:8f:58:0c:50:a1:06:6f:d3:14:bc:ee:
32:2c:8d:20:7b:2e:cb:fd:21:d9:d7:b5:e9:ea:28:
31:71:ba:89:bb:ed:5e:8b:0f:f6:ff:23:dc:2b:c8:
30:75:0c:3a:4f:07:03:fd:21:99:cd:de:af:0a:95:
f5:58:2f:23:3b:c0:38:8d:1d:27:60:b0:b1:3b:0f:
77:13:a7:46:29:6e:6f:3f:5e:aa:0a:d7:bf:11:ec:
c9:8e:6d:75:92:7d:1a:2f:87:78:66:3b:5d:e1:fe:
ac:21:2d:25:24:d5:33:9a:6d:f2:3a:6a:c9:47:54:
49:74:80:39:be:73:16:4b:44:74:9e:d3:8e:30:0e:
5c:38:8e:57:ec:a2:97:d1:fa:01:46:a8:95:37:7b:
41:ea:09:7b:65:b3:82:35:44:23:49:1d:99:c2:76:
4c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:19:80:22:8A:4C:56:46:FE:5C:1A:08:D5:B3:71:45:53:5A:DA:2F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/096F56E86FB411F0BD96FEECDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.102.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:77:42:15:d4:aa:00:c0:52:b6:ab:26:62:7a:ba:69:40:62:
bb:11:cb:64:a5:8e:64:4a:c8:fe:b0:a8:81:65:f4:7c:bb:43:
44:ba:31:5b:62:b7:6b:f5:1c:a6:6c:73:4b:fc:e0:e6:82:6a:
61:32:0b:29:7a:69:87:0d:2f:b9:61:a6:a9:54:f6:04:a7:a6:
5c:82:d9:de:30:ea:0e:19:e6:11:f8:45:d4:26:91:b7:31:79:
13:f0:1e:a9:4a:87:79:3b:ec:dd:e0:b3:a4:68:25:07:3e:fc:
f9:a2:d1:e1:10:47:cf:c3:4a:db:ce:76:79:28:9a:20:59:ef:
48:c5:1a:f0:ab:9a:f5:4b:65:12:61:19:7c:5b:19:72:a3:90:
dc:37:8f:1c:40:f3:7a:92:52:49:41:bb:d8:d7:50:0f:d7:6d:
f2:ec:23:30:9c:23:86:bd:90:b4:2e:41:6c:e2:f3:81:79:a1:
8f:f7:82:bf:e2:f7:d5:17:83:52:65:43:39:3e:29:6d:95:c6:
b5:3e:a8:f8:02:d7:a5:f4:b8:fd:fb:40:d8:bc:01:b3:a2:51:
2b:29:99:e1:9a:42:b2:89:c6:78:74:e3:a1:05:cf:02:1f:9d:
97:a0:54:c3:9e:4b:11:27:04:41:67:86:c8:3c:35:fa:7f:85:
9f:70:b3:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 14:17:09 2025 by rpki-client