Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/39366934439F11F0BEE7C485DAE4EC9C.roa
File: 39366934439F11F0BEE7C485DAE4EC9C.roa (raw, json)
Hash identifier: iWAasrVeauzOP/AfOK3TDigZIYo/5ZE6Zmmnn/wEdFA=
Subject key identifier: BC:F0:15:F6:2C:33:88:FB:C7:C0:D1:72:8E:9E:F5:4C:BD:95:28:D6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015A57
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/39366934439F11F0BEE7C485DAE4EC9C.roa
Signing time: Sat 07 Jun 2025 12:59:19 +0000
ROA not before: Sat 07 Jun 2025 12:59:14 +0000
ROA not after: Wed 16 Jul 2025 12:59:14 +0000
asID: 401701
IP address blocks: 45.192.96.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 18 Jun 2025 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88663 (0x15a57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 7 12:59:14 2025 GMT
Not After : Jul 16 12:59:14 2025 GMT
Subject: CN=684437a7-b523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:4f:e6:6d:33:9a:9f:ef:7c:05:ea:74:6a:cf:
8f:5a:76:9f:c5:60:fe:f2:b8:67:98:e5:f8:2b:80:
e7:09:45:be:00:02:e9:3d:5e:cf:e6:01:9a:28:b9:
29:08:f2:df:bb:8c:36:dc:fb:d2:14:48:52:b0:47:
6c:d0:49:9d:52:64:d7:50:92:65:3d:bf:bf:e5:ff:
c1:c7:a6:db:de:7a:12:c9:7f:33:ac:9b:e3:42:b6:
98:e1:92:8d:fe:3c:b4:a2:89:33:89:02:53:4e:0e:
60:78:c9:b1:1e:7b:3f:48:1e:01:fa:f9:74:de:0b:
37:2b:dc:88:81:2c:46:63:f1:5d:ac:f6:4d:70:58:
20:fc:e1:db:9b:42:00:c7:9f:a5:1e:10:f2:71:ee:
b5:4e:fa:02:d1:76:77:d4:b6:9e:6c:3c:51:10:16:
71:36:be:70:96:bc:8d:d6:56:6a:5d:a0:34:8d:88:
90:3c:44:d9:80:6c:a3:d7:6e:ca:dd:66:c4:7e:ec:
53:72:9b:4e:7d:4c:fd:41:a0:96:88:a3:d0:b7:54:
60:34:77:3e:b4:b1:78:56:55:f4:06:33:ba:45:0a:
06:3c:7f:10:33:42:eb:f5:4d:74:90:c5:cc:b2:d3:
7c:cc:c5:a7:49:22:34:61:ea:f2:92:bd:cf:32:49:
96:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:F0:15:F6:2C:33:88:FB:C7:C0:D1:72:8E:9E:F5:4C:BD:95:28:D6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/39366934439F11F0BEE7C485DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.96.0/20
Signature Algorithm: sha256WithRSAEncryption
46:a4:0c:7f:d4:1c:72:bc:c3:05:5c:ee:f1:13:f7:ae:4b:b5:
2d:ec:22:73:8e:39:5a:54:69:66:c7:06:2d:d1:3f:9d:a4:28:
85:5d:b6:8f:36:be:47:04:2f:29:c0:71:4a:07:27:2a:ac:5b:
95:1b:18:3d:b9:59:e9:da:50:6d:3f:02:58:95:6a:44:d9:53:
4f:61:97:1b:2e:f2:b9:ea:86:ff:50:30:44:f7:3e:fd:df:9d:
c2:4c:52:c2:de:67:f3:04:cf:fd:ed:50:6e:09:34:69:76:ac:
f4:8a:b6:79:8c:cd:e5:e9:d4:b8:52:d9:89:00:86:21:81:52:
13:96:e3:55:bc:77:34:df:4d:73:c5:ba:b1:15:ab:a2:40:4a:
5e:e6:71:ee:35:fe:14:bb:af:51:d7:af:b3:55:e9:59:d8:f0:
7d:44:8e:5d:6a:f6:bb:a4:16:27:0e:1d:25:05:6f:4c:fc:55:
96:3e:0d:7e:4a:73:2e:21:c3:7e:bf:3f:d6:ea:e9:74:bb:9f:
91:da:72:f8:c4:82:23:72:9c:90:6e:40:b5:11:e8:69:9d:00:
3e:73:5c:82:d3:35:88:3b:a8:09:8a:ed:fd:87:77:62:a2:0f:
36:1a:47:e6:fd:3d:93:40:b8:ca:6e:df:2e:7f:56:68:0f:da:
f0:8e:ce:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 10:12:39 2025 by rpki-client