Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4A08FFF2469611F08043A0D1DAE4EC9C.roa
File: 4A08FFF2469611F08043A0D1DAE4EC9C.roa (raw, json)
Hash identifier: DPvU9HVtghLZmMnvVhjUtA5EyqTsu4m/HULqu6TGBWY=
Subject key identifier: 8B:29:29:1C:8D:00:7A:B5:52:68:4B:C3:35:83:06:61:18:DB:0C:6E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015B22
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4A08FFF2469611F08043A0D1DAE4EC9C.roa
Signing time: Wed 11 Jun 2025 07:32:55 +0000
ROA not before: Wed 11 Jun 2025 07:32:50 +0000
ROA not after: Thu 17 Jul 2025 07:32:50 +0000
asID: 9304
IP address blocks: 45.196.228.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 17 Jun 2025 00:26:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88866 (0x15b22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 11 07:32:50 2025 GMT
Not After : Jul 17 07:32:50 2025 GMT
Subject: CN=68493127-f6bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:40:05:cd:91:a3:a9:83:f4:2e:f9:bb:82:f8:
5c:e6:f4:a7:cb:f6:2f:11:b2:b2:97:50:bf:db:81:
ce:ed:b0:04:61:39:40:fa:9f:b1:9e:97:13:0c:92:
9b:c1:62:94:58:83:18:f8:b9:97:4b:31:d1:2b:0f:
51:e0:a3:42:30:80:06:fe:58:7c:26:0b:9e:58:54:
15:f5:c4:76:74:9b:82:06:52:69:06:eb:f7:ea:52:
80:c1:97:05:20:9f:d2:05:4f:68:49:80:6f:e4:bc:
b9:a6:b4:34:18:c2:55:42:b9:d9:7a:09:1b:31:d5:
0a:40:91:85:a8:3e:cd:22:15:7e:87:bc:6c:18:ff:
d1:2a:0d:71:e0:bf:db:2e:bd:76:59:af:ae:44:dd:
42:48:ba:fa:5f:cc:a6:7c:dd:cd:5d:a5:68:14:32:
0f:ee:e5:58:04:11:89:4f:95:6c:a8:8e:23:a1:a6:
30:1a:ab:5e:64:4a:b7:ea:a2:b8:78:b3:24:a1:9d:
93:70:16:9b:59:ab:49:bd:cd:1f:ae:41:de:ce:b7:
9f:a7:5f:89:d9:5b:b6:a2:0b:f0:f6:5e:70:79:30:
e9:b1:d8:c9:64:5b:82:36:3a:3c:5f:4e:fb:23:fe:
b4:97:c3:00:ea:ff:e9:ee:2d:4a:45:db:d9:bc:c4:
50:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:29:29:1C:8D:00:7A:B5:52:68:4B:C3:35:83:06:61:18:DB:0C:6E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4A08FFF2469611F08043A0D1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.228.0/24
Signature Algorithm: sha256WithRSAEncryption
21:ed:d7:fd:40:aa:42:25:99:b0:7d:93:d4:91:23:22:ea:0b:
76:9f:9d:d4:a5:e7:3b:49:5c:ab:4a:fd:a1:59:ba:0d:e2:b8:
70:bf:98:5a:05:d9:d3:82:00:cb:bb:e4:88:b1:b3:00:01:6e:
13:fa:11:85:c7:9c:14:ce:2a:97:17:2c:72:b6:37:a8:a5:d7:
55:64:de:03:8f:a6:55:1d:00:13:d3:32:bd:e1:78:0c:e8:19:
22:4f:f7:60:d7:a4:9e:38:8b:f1:ba:94:f2:02:d0:89:4c:8b:
0d:f4:a6:17:94:4e:bf:e0:a5:f5:31:bc:00:c3:52:84:1e:1e:
96:31:90:56:7d:5d:ef:76:df:f1:92:17:80:1b:65:9b:5c:f5:
1d:c1:9d:58:34:bc:cd:10:d6:d4:9c:6d:28:88:62:f7:dc:13:
b1:73:e8:08:2f:cf:3f:9f:3b:60:28:3a:52:4a:f9:b2:41:7c:
5b:6f:ec:3f:c8:c8:59:23:27:24:91:0a:97:6a:14:f4:0a:eb:
9d:51:5f:f3:c0:a8:1d:aa:fe:ab:77:18:37:df:4f:8f:f8:30:
2e:9c:a1:65:be:82:f2:5d:f0:5b:08:e9:67:92:80:6d:14:21:
0d:c2:9e:ee:15:f9:47:ef:90:dd:96:a9:fa:53:0b:9a:e8:d0:
15:e6:e7:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:24:50 2025 by rpki-client