Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99FD4ABC413811F0AC53ADECDAE4EC9C.roa
File: 99FD4ABC413811F0AC53ADECDAE4EC9C.roa (raw, json)
Hash identifier: dHLazzeLLzR0UZU4qpiEPTbwnGZj45qSFl9uz9vuvR4=
Subject key identifier: AD:62:82:E1:AE:AE:0B:FD:F0:80:B3:8E:CC:D8:11:67:F2:F1:77:07
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0159C6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99FD4ABC413811F0AC53ADECDAE4EC9C.roa
Signing time: Wed 04 Jun 2025 11:39:41 +0000
ROA not before: Wed 04 Jun 2025 11:39:36 +0000
ROA not after: Fri 08 Aug 2025 11:39:36 +0000
asID: 395793
IP address blocks: 45.192.244.0/24 maxlen: 24
45.195.133.0/24 maxlen: 24
45.204.149.0/24 maxlen: 24
45.204.150.0/24 maxlen: 24
45.204.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 18 Jun 2025 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88518 (0x159c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 4 11:39:36 2025 GMT
Not After : Aug 8 11:39:36 2025 GMT
Subject: CN=6840307d-b1ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7a:dc:d6:50:3c:b4:da:45:aa:71:37:d4:0d:
51:15:e1:38:21:f0:48:20:02:e9:26:e0:8a:eb:d5:
f7:3a:3c:cd:c6:3e:49:4e:e0:2f:4f:2a:b5:35:2f:
65:5d:06:f9:12:9a:40:74:e8:2c:cd:d5:04:c8:bc:
6b:92:76:6a:83:9e:02:4e:a9:da:5f:4c:91:e8:fc:
bb:db:f5:3f:7f:de:e7:c2:ee:79:e6:00:a8:6c:d3:
d9:c9:e0:35:52:fc:f3:e1:c8:aa:41:af:df:98:9e:
f4:70:8e:8b:b4:c6:56:4c:7d:9c:34:75:20:34:4a:
93:e7:4a:ce:b1:e4:ce:2b:45:a6:ec:bf:10:f2:ae:
2a:cd:95:28:ea:99:d4:69:51:00:cf:40:36:59:ac:
33:f5:68:0c:4c:67:14:77:61:6b:e7:56:4a:cc:ba:
5c:60:f4:ff:2d:4d:f3:83:01:e8:0a:74:37:44:08:
74:5e:b1:11:57:7a:7c:93:b9:f9:1a:c7:4f:c3:2c:
87:76:b1:d3:fc:5b:3b:aa:7e:06:7d:ae:88:00:91:
3c:a7:68:ac:a2:1b:d0:f8:a1:23:5a:43:fe:55:b6:
56:1c:b5:6d:d0:10:63:1c:39:3f:20:06:39:0b:84:
2c:aa:ad:d3:f2:15:a2:99:3e:60:ca:57:77:df:bd:
66:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:62:82:E1:AE:AE:0B:FD:F0:80:B3:8E:CC:D8:11:67:F2:F1:77:07
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99FD4ABC413811F0AC53ADECDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.244.0/24
45.195.133.0/24
45.204.149.0-45.204.151.255
Signature Algorithm: sha256WithRSAEncryption
52:fa:47:f0:ad:37:46:ea:7f:dd:09:ff:fa:b1:e0:97:ba:b9:
1c:c2:b5:ba:c7:6a:bd:15:68:f2:31:af:06:f5:08:ef:5d:99:
78:40:a5:1b:b7:3e:e7:7c:51:37:5a:01:a2:0c:23:c6:5e:a9:
b2:db:67:d1:5a:20:f0:ef:1d:49:83:c0:ef:51:02:09:4c:54:
bc:e6:79:06:ec:b2:2e:e0:35:d2:2b:e7:d2:68:18:08:b0:20:
29:e6:85:10:2f:ec:eb:f3:36:ff:21:2f:a2:5a:b5:1c:60:49:
02:56:cd:20:99:de:cf:1d:cf:23:ec:7d:ca:7e:03:96:82:ca:
ed:33:18:3f:14:16:a2:df:aa:c6:47:1e:b1:74:94:90:e0:00:
e7:d1:89:8a:90:8a:89:a0:b3:45:25:d3:de:da:35:59:59:26:
8d:48:d9:99:d6:a4:88:7f:51:41:95:3e:fc:b9:14:95:09:87:
7a:68:a9:7d:df:64:54:c4:f7:96:c2:34:01:60:f3:27:08:a3:
b8:8e:18:86:c4:da:2d:d4:46:10:9e:de:e9:80:2f:43:c3:d7:
e4:05:da:e4:3e:0f:b2:1c:a9:89:6b:f3:cb:b4:e7:5d:31:e4:
c7:1e:19:2a:cf:e7:fd:44:e6:78:33:a5:48:ef:e8:b0:90:53:
0e:2b:d6:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 21:13:34 2025 by rpki-client