Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1C1311E445FD11F0A783B3E6DAE4EC9C.roa
File: 1C1311E445FD11F0A783B3E6DAE4EC9C.roa (raw, json)
Hash identifier: CDF9RtVw49hhjFr6RE9AbFEtPswqP3YPrLpdZGBYx6w=
Subject key identifier: 04:36:94:28:D3:E6:44:2E:7F:BD:45:F1:A2:36:BF:CE:ED:85:56:FB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015AE4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1C1311E445FD11F0A783B3E6DAE4EC9C.roa
Signing time: Tue 10 Jun 2025 13:16:25 +0000
ROA not before: Tue 10 Jun 2025 13:16:20 +0000
ROA not after: Sun 20 Jul 2025 13:16:20 +0000
asID: 151407
IP address blocks: 45.196.236.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 18 Jun 2025 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88804 (0x15ae4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 10 13:16:20 2025 GMT
Not After : Jul 20 13:16:20 2025 GMT
Subject: CN=68483029-e919
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:cc:f0:74:a0:63:ed:f9:59:7a:de:ef:6b:4c:
e0:2b:bb:1b:b5:67:1e:2f:9b:93:5c:1b:6e:1f:21:
64:6b:c6:47:da:9f:39:36:9b:46:92:30:f9:8a:84:
8a:f8:3b:ff:1d:b4:f6:eb:b9:6f:51:f8:83:37:f8:
e7:b2:c9:4a:bd:37:86:b1:b5:5a:c0:c1:15:4b:fc:
65:15:1a:58:30:60:e1:c0:e7:43:6f:7e:74:83:0c:
13:6e:42:09:2d:93:4d:71:35:96:62:04:01:4f:39:
75:87:77:50:bf:8c:eb:b4:0d:61:74:b8:86:f1:53:
75:d9:91:2b:c6:ee:22:9d:34:10:af:64:1a:d4:83:
61:85:19:9d:50:a7:74:bc:b5:a5:bb:a2:67:09:64:
68:81:92:6a:f8:b1:e9:d8:ec:ee:25:fb:95:01:a8:
2e:cd:e6:2b:5e:6d:5f:ff:16:d4:e0:85:4d:1b:f0:
a2:06:93:95:3c:7a:a9:46:d2:91:24:ef:90:96:59:
96:cb:70:4b:53:c4:00:17:bd:f4:a6:b5:91:1f:9b:
43:90:d8:87:b4:38:30:36:7b:3f:28:7d:4f:20:ec:
ef:33:7b:d7:06:31:54:67:f6:8d:8e:92:16:70:b1:
ad:54:33:3d:9f:3a:48:77:4d:ec:64:74:da:97:d1:
cb:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:36:94:28:D3:E6:44:2E:7F:BD:45:F1:A2:36:BF:CE:ED:85:56:FB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1C1311E445FD11F0A783B3E6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.236.0/23
Signature Algorithm: sha256WithRSAEncryption
06:89:79:30:31:4b:0d:e5:27:58:c2:b8:6e:67:0d:d0:b5:f4:
70:6a:d0:cf:36:0e:3b:4c:46:de:f4:ee:78:0b:48:6f:18:59:
f4:c3:38:44:7c:8a:ab:ba:5a:c7:d2:d8:8f:68:88:3d:48:a9:
c3:9e:21:65:ec:c2:1b:53:3e:86:d0:77:2e:da:7c:84:6e:11:
d6:6c:b3:b0:9c:c9:50:e5:61:7e:41:fc:f9:a9:e3:e2:e8:a0:
a5:9c:76:3a:84:cc:a5:31:1c:bd:f0:d5:5d:b1:9a:08:5d:2a:
98:f6:aa:24:b4:1a:f3:91:59:32:24:a5:6c:50:86:92:72:c9:
a9:f4:58:48:8c:14:a5:91:e0:e9:66:bf:20:24:24:7a:26:4f:
04:22:1a:05:76:01:a3:47:58:14:6f:2a:b1:3f:8d:be:08:de:
68:fd:ba:48:2d:d3:3b:e5:dc:b0:57:71:2e:0c:82:36:48:a1:
62:ed:9d:a9:29:72:18:87:27:31:98:c0:40:4a:f3:fc:9b:e8:
9c:ef:e4:25:ca:01:dd:05:13:7c:93:c6:3e:93:4b:36:da:54:
17:7a:75:83:f7:89:46:ea:55:db:9c:87:6c:ca:20:f6:6b:16:
3b:5a:d0:0f:76:c9:d9:0b:89:20:34:05:a0:3a:0c:4a:f9:71:
1a:12:9a:33
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAVrkMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNjEwMTMxNjIwWhcNMjUwNzIwMTMxNjIwWjAYMRYw
FAYDVQQDEw02ODQ4MzAyOS1lOTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvMzwdKBj7flZet7va0zgK7sbtWceL5uTXBtuHyFka8ZH2p85NptGkjD5
ioSK+Dv/HbT267lvUfiDN/jnsslKvTeGsbVawMEVS/xlFRpYMGDhwOdDb350gwwT
bkIJLZNNcTWWYgQBTzl1h3dQv4zrtA1hdLiG8VN12ZErxu4inTQQr2Qa1INhhRmd
UKd0vLWlu6JnCWRogZJq+LHp2OzuJfuVAaguzeYrXm1f/xbU4IVNG/CiBpOVPHqp
RtKRJO+QllmWy3BLU8QAF730prWRH5tDkNiHtDgwNns/KH1PIOzvM3vXBjFUZ/aN
jpIWcLGtVDM9nzpId03sZHTal9HLAQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFAQ2
lCjT5kQuf71F8aI2v87thVb7MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8xQzEzMTFFNDQ1RkQxMUYwQTc4M0IzRTZEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLcTsMA0GCSqGSIb3DQEBCwUA
A4IBAQAGiXkwMUsN5SdYwrhuZw3QtfRwatDPNg47TEbe9O54C0hvGFn0wzhEfIqr
ulrH0tiPaIg9SKnDniFl7MIbUz6G0Hcu2nyEbhHWbLOwnMlQ5WF+Qfz5qePi6KCl
nHY6hMylMRy98NVdsZoIXSqY9qoktBrzkVkyJKVsUIaScsmp9FhIjBSlkeDpZr8g
JCR6Jk8EIhoFdgGjR1gUbyqxP42+CN5o/bpILdM75dywV3EuDII2SKFi7Z2pKXIY
hycxmMBASvP8m+ic7+QlygHdBRN8k8Y+k0s22lQXenWD94lG6lXbnIdsyiD2axY7
WtAPdsnZC4kgNAWgOgxK+XEaEpoz
-----END CERTIFICATE-----
Generated at Mon Jun 16 08:32:13 2025 by rpki-client