Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/14AD263C43AB11F0A030E0CFDAE4EC9C.roa
File: 14AD263C43AB11F0A030E0CFDAE4EC9C.roa (raw, json)
Hash identifier: boeGZ51Dkl+Z2Sfb+F0WM70k3lswlCUmN+9SrGf0x1U=
Subject key identifier: BE:F2:4F:49:03:68:45:E0:0E:81:A4:8F:2C:46:A3:49:25:DB:3D:D3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015A69
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/14AD263C43AB11F0A030E0CFDAE4EC9C.roa
Signing time: Sat 07 Jun 2025 14:24:12 +0000
ROA not before: Sat 07 Jun 2025 14:24:07 +0000
ROA not after: Wed 16 Jul 2025 14:24:07 +0000
asID: 142032
IP address blocks: 45.192.96.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 20 Jun 2025 01:31:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88681 (0x15a69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 7 14:24:07 2025 GMT
Not After : Jul 16 14:24:07 2025 GMT
Subject: CN=68444b8c-de33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:05:5a:28:6a:42:f7:48:0d:7e:a5:21:ce:9f:
83:2e:d2:a0:e7:06:7d:b0:55:af:1c:45:5a:af:65:
b7:a6:99:eb:2c:9d:96:34:0a:8b:d9:87:05:49:14:
e6:73:4a:18:d0:42:40:b3:65:c5:5d:0f:ef:4b:44:
95:66:99:73:5f:fb:e6:e7:15:ca:b7:b2:59:97:84:
8e:bb:6a:ca:d0:5e:4c:de:e9:64:90:15:de:ad:28:
26:18:3e:3d:d9:5d:37:5e:2c:cb:a7:26:20:f5:75:
37:ed:37:e9:a1:51:19:95:f5:0b:46:13:d9:c3:80:
f4:d2:28:39:53:be:e0:05:e2:0e:24:7c:7c:60:d5:
67:e8:70:1c:ae:7d:05:4e:35:47:4a:c6:7d:35:a5:
b2:22:12:cc:c0:58:44:2d:df:6b:8a:50:12:de:49:
83:24:1a:ad:40:1a:95:4f:60:46:23:83:2e:6a:bd:
6e:51:7b:ce:d2:6c:fd:86:80:07:55:e4:d5:f0:45:
7f:4c:37:a7:3d:3a:f9:92:e2:34:cb:dc:33:ab:39:
2f:97:a1:9e:44:61:ee:b5:15:a6:65:28:c8:90:c7:
98:c7:52:23:10:6d:99:bb:df:7c:cd:15:85:48:d9:
21:74:dc:4d:1d:59:e9:d4:79:0c:a5:6d:b0:49:70:
53:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:F2:4F:49:03:68:45:E0:0E:81:A4:8F:2C:46:A3:49:25:DB:3D:D3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/14AD263C43AB11F0A030E0CFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.96.0/20
Signature Algorithm: sha256WithRSAEncryption
11:cc:5e:f3:57:fa:6a:60:ca:58:37:0e:d8:da:01:f9:66:e0:
12:74:71:c3:6b:f4:cd:c8:0f:51:0f:d9:63:12:61:f7:12:a1:
f5:75:0c:1d:46:bc:ff:4d:32:d0:41:67:7b:89:7d:72:2d:e0:
9f:b5:d0:28:e6:b2:12:75:a5:5c:c2:e8:58:3a:16:14:18:16:
6f:09:f8:38:f1:30:7d:14:e2:4d:f0:a2:b9:f3:d3:26:11:91:
52:e5:47:1a:8c:a7:2e:a7:77:56:f7:11:a4:d7:e7:ff:2f:85:
cc:6e:4e:b7:a2:31:8a:23:33:75:b3:d4:44:02:74:fc:65:08:
7e:a3:28:fc:53:26:13:54:f1:d8:aa:b8:77:23:41:ce:84:cb:
c5:94:c2:93:7b:ca:7e:69:b5:ed:b0:e3:e1:f8:e6:df:9a:ef:
f9:db:8d:d2:54:80:e3:1f:72:26:34:ee:2e:93:f0:b8:fa:9d:
19:7c:0e:bb:54:5e:18:38:d1:8d:7a:20:b0:f3:51:fe:8f:fe:
f4:63:11:3b:bf:cb:b8:fc:76:e3:e3:17:ad:b2:f4:00:f4:8b:
fa:9e:d9:90:35:0c:67:5d:40:e8:d0:58:f9:de:04:b1:a0:7d:
7f:10:14:d8:ad:7c:f5:00:17:78:bb:f6:91:d3:32:1b:83:a8:
de:a8:6e:b4
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAVppMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNjA3MTQyNDA3WhcNMjUwNzE2MTQyNDA3WjAYMRYw
FAYDVQQDEw02ODQ0NGI4Yy1kZTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtwVaKGpC90gNfqUhzp+DLtKg5wZ9sFWvHEVar2W3ppnrLJ2WNAqL2YcF
SRTmc0oY0EJAs2XFXQ/vS0SVZplzX/vm5xXKt7JZl4SOu2rK0F5M3ulkkBXerSgm
GD492V03XizLpyYg9XU37TfpoVEZlfULRhPZw4D00ig5U77gBeIOJHx8YNVn6HAc
rn0FTjVHSsZ9NaWyIhLMwFhELd9rilAS3kmDJBqtQBqVT2BGI4Muar1uUXvO0mz9
hoAHVeTV8EV/TDenPTr5kuI0y9wzqzkvl6GeRGHutRWmZSjIkMeYx1IjEG2Zu998
zRWFSNkhdNxNHVnp1HkMpW2wSXBTkwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFL7y
T0kDaEXgDoGkjyxGo0kl2z3TMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8xNEFEMjYzQzQzQUIxMUYwQTAzMEUwQ0ZEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQELcBgMA0GCSqGSIb3DQEBCwUA
A4IBAQARzF7zV/pqYMpYNw7Y2gH5ZuASdHHDa/TNyA9RD9ljEmH3EqH1dQwdRrz/
TTLQQWd7iX1yLeCftdAo5rISdaVcwuhYOhYUGBZvCfg48TB9FOJN8KK589MmEZFS
5UcajKcup3dW9xGk1+f/L4XMbk63ojGKIzN1s9REAnT8ZQh+oyj8UyYTVPHYqrh3
I0HOhMvFlMKTe8p+abXtsOPh+Obfmu/5243SVIDjH3ImNO4uk/C4+p0ZfA67VF4Y
ONGNeiCw81H+j/70YxE7v8u4/Hbj4xetsvQA9Iv6ntmQNQxnXUDo0Fj53gSxoH1/
EBTYrXz1ABd4u/aR0zIbg6jeqG60
-----END CERTIFICATE-----
Generated at Wed Jun 18 08:45:47 2025 by rpki-client