Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/327976BC3B9E11F09B089383DAE4EC9C.roa
File: 327976BC3B9E11F09B089383DAE4EC9C.roa (raw, json)
Hash identifier: xCb0fLxafCcDuZJ3ibSQQ5GeWEEG4P255RwiuGz3dqw=
Subject key identifier: CC:D4:D8:43:7F:E8:71:01:BB:13:45:CF:2C:A9:3A:8B:54:69:31:F9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015813
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/327976BC3B9E11F09B089383DAE4EC9C.roa
Signing time: Wed 28 May 2025 08:31:49 +0000
ROA not before: Wed 28 May 2025 08:31:44 +0000
ROA not after: Tue 24 Jun 2025 08:31:44 +0000
asID: 149766
IP address blocks: 45.196.243.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 20 Jun 2025 06:15:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88083 (0x15813)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 28 08:31:44 2025 GMT
Not After : Jun 24 08:31:44 2025 GMT
Subject: CN=6836c9f5-0a9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:0e:71:b9:a3:83:81:d4:e4:97:97:26:2c:a9:
36:bb:9a:5d:1e:19:83:3f:dc:fb:e3:29:de:a7:11:
cb:34:aa:6c:89:5a:5d:2d:9b:f8:88:bc:7d:d6:4b:
58:cc:63:81:69:ec:8a:8a:1c:25:47:96:56:ab:06:
e4:b1:7e:5c:f6:fb:a8:4a:b3:f1:c2:3c:7f:6f:af:
c4:72:1c:80:04:b1:4a:d5:68:05:fd:19:b9:1a:2f:
30:f2:df:b5:ca:6c:fa:17:93:8e:da:b0:a4:f0:aa:
08:85:52:6c:fb:1e:a5:32:fb:3d:d3:a1:5a:36:5f:
48:39:c7:7a:41:8d:b3:3a:65:9d:9a:f5:64:fb:03:
5d:91:6c:c2:d3:0e:e6:e2:16:5b:51:9f:c2:26:10:
a6:45:5e:8d:f2:96:7e:c6:b1:30:98:1f:e9:c8:5f:
3b:b4:62:dd:c9:f1:4e:eb:46:67:df:1e:45:5c:1d:
1c:25:f3:0e:08:d3:35:eb:7e:d4:1d:eb:28:06:e2:
03:eb:e7:dd:f0:46:d0:9b:6e:9a:36:42:f3:62:b8:
22:0c:9e:5b:67:17:37:23:b2:e1:7f:9e:24:b3:49:
5a:a8:07:32:2e:89:e7:4d:29:ad:18:92:26:aa:36:
9f:e8:2c:26:5f:f5:14:e5:e2:73:da:cd:9b:bf:fd:
4a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:D4:D8:43:7F:E8:71:01:BB:13:45:CF:2C:A9:3A:8B:54:69:31:F9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/327976BC3B9E11F09B089383DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.243.0/24
Signature Algorithm: sha256WithRSAEncryption
15:8e:d7:c6:42:3f:a9:79:6d:75:ae:a0:23:79:1e:4d:29:ae:
ca:88:26:fe:79:d3:de:01:b9:46:ed:e2:d5:93:20:c4:d1:ad:
0e:01:b9:b1:2a:22:e0:08:61:da:79:ac:13:56:59:a6:0b:f2:
14:1b:64:28:f1:f7:72:71:1f:1d:f2:04:ac:0f:75:af:99:af:
63:0a:ec:2d:2c:28:83:e9:42:30:48:52:9f:94:31:12:01:c0:
73:85:ae:1f:5d:dd:5c:d6:81:07:26:43:43:ed:1a:b2:2c:ff:
4a:d6:ad:2e:c1:aa:76:46:42:e1:c4:7d:f5:33:3d:70:bc:28:
54:39:96:10:d1:ab:e0:9d:e0:a5:26:83:3d:af:80:84:0a:49:
ad:10:7a:5e:c6:d9:b5:a1:10:a6:e8:be:e9:1c:1b:be:a0:f6:
16:2d:ed:db:15:65:f0:4b:7b:de:f0:24:12:6b:2c:a2:34:64:
8d:a2:01:3e:7c:1f:84:46:df:d4:e5:37:42:f7:ea:30:6a:62:
90:9a:9b:03:dc:2c:73:16:b3:98:e4:c6:c0:25:67:a9:ce:7f:
cf:7c:40:04:ff:b1:41:94:d7:20:4a:0e:74:db:46:fd:a5:8a:
2d:24:94:3d:cf:16:17:53:a4:e0:ca:a2:9e:e3:6c:50:2e:2b:
c3:1f:12:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 18:35:31 2025 by rpki-client