Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1AADF88E6D2411F085752CC6DAE4EC9C.roa
File: 1AADF88E6D2411F085752CC6DAE4EC9C.roa (raw, json)
Hash identifier: fCqxqUor7Cvyf+nWHxneQeCdqrUa/X6Vju2YayEYxag=
Subject key identifier: 10:FF:EB:54:6A:0D:7C:BF:B2:AD:2D:B4:54:93:78:F8:20:85:36:A1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01683E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1AADF88E6D2411F085752CC6DAE4EC9C.roa
Signing time: Wed 30 Jul 2025 09:03:48 +0000
ROA not before: Wed 30 Jul 2025 09:03:44 +0000
ROA not after: Wed 03 Sep 2025 09:03:44 +0000
asID: 149766
IP address blocks: 45.196.243.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 06 Aug 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92222 (0x1683e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 30 09:03:44 2025 GMT
Not After : Sep 3 09:03:44 2025 GMT
Subject: CN=6889dff4-38bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:40:95:92:40:85:9a:fb:fd:c2:17:14:e4:e0:
f6:15:c9:c6:dc:54:83:91:d9:7d:87:30:da:d4:4c:
af:92:3c:14:07:69:c7:94:16:ee:9b:b3:04:d4:48:
5e:78:a5:90:7e:cb:9b:82:ce:f1:7e:03:96:24:c1:
2c:75:7b:53:3f:55:77:e5:2e:90:5b:ea:3e:c3:fd:
f5:ae:73:49:3d:44:99:14:a1:c0:ad:dd:65:10:1a:
ff:14:7d:94:24:18:cf:13:af:4b:e8:a6:f1:98:28:
6a:0a:20:5c:7d:5d:9c:13:a8:f2:ed:61:a2:57:41:
71:f3:99:9a:55:7a:a6:b6:32:98:90:d5:12:ba:67:
6c:e3:51:28:42:3a:73:3a:e9:e2:ce:32:a8:ce:1e:
ce:4d:b7:d6:57:92:f6:64:93:d2:de:6d:47:db:97:
40:27:eb:1f:66:d4:ed:0a:8e:a5:06:2b:af:20:7d:
e2:21:3b:47:80:c4:f3:e3:2a:1c:5c:14:e5:f3:b3:
b1:8e:ae:2f:fc:73:d2:9c:0a:55:40:24:f2:69:e5:
7f:71:8f:71:c3:83:dd:cc:cd:f8:da:fe:5a:d1:3e:
d6:19:de:72:7c:9b:a0:95:70:82:03:a4:af:63:9a:
17:b0:2a:fe:6e:d9:22:ad:20:58:8f:3b:12:79:b5:
6d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:FF:EB:54:6A:0D:7C:BF:B2:AD:2D:B4:54:93:78:F8:20:85:36:A1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1AADF88E6D2411F085752CC6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.243.0/24
Signature Algorithm: sha256WithRSAEncryption
af:6e:96:66:b3:63:98:f7:fa:04:3f:f1:e5:e3:ee:8e:dd:47:
16:92:85:07:bb:b8:6c:67:e3:7a:d1:42:d9:66:83:03:99:96:
0f:9f:07:be:52:e2:c5:e6:9f:91:e3:7e:1e:bb:d9:a2:99:e6:
9f:e8:69:24:8a:44:da:d4:47:f2:24:9c:30:13:ee:e9:c1:d9:
17:18:c2:2f:c0:ac:5a:25:99:3a:23:6c:eb:33:31:59:bc:5b:
0f:38:3a:ca:7d:11:9f:3a:83:81:8f:e0:3c:7a:00:9c:c3:61:
de:b1:07:63:82:15:7b:5a:5b:d5:a6:61:95:53:6c:07:89:76:
2e:3d:74:ad:4b:cc:b1:22:5c:e3:46:cd:9c:e0:2f:8a:a2:22:
43:31:47:67:80:3d:11:da:a3:2a:a4:3f:b5:aa:9a:9e:51:a2:
f0:0b:fe:39:66:c6:8a:af:b7:51:47:c6:76:4c:7f:01:88:89:
3f:66:10:e5:1c:05:4d:cf:d2:04:2e:21:4e:e8:0b:b6:e0:20:
08:9f:87:e1:b2:63:85:06:9d:4f:58:96:ab:51:67:37:d7:53:
7d:67:0f:51:8f:d1:27:aa:0b:d4:49:7e:ef:60:ac:b7:12:0f:
1d:d3:5b:ab:8d:08:94:b1:31:cc:5c:5c:6a:74:2a:8a:78:1f:
7c:bd:28:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 08:32:02 2025 by rpki-client