Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E9D01934450C11F0B097A8D3DAE4EC9C.roa
File: E9D01934450C11F0B097A8D3DAE4EC9C.roa (raw, json)
Hash identifier: jPAPPBA+70SPtTOffEpQg/YsiTGvAzJur1Z0QsIWa/k=
Subject key identifier: F6:83:E1:CD:7E:A5:AB:4E:31:B2:33:82:BE:C6:49:02:CD:22:C1:88
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015A7B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E9D01934450C11F0B097A8D3DAE4EC9C.roa
Signing time: Mon 09 Jun 2025 08:37:02 +0000
ROA not before: Mon 09 Jun 2025 08:36:57 +0000
ROA not after: Tue 15 Jul 2025 08:36:57 +0000
asID: 395793
IP address blocks: 45.194.1.0/24 maxlen: 24
45.194.4.0/24 maxlen: 24
45.194.5.0/24 maxlen: 24
45.195.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 18 Jun 2025 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88699 (0x15a7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 9 08:36:57 2025 GMT
Not After : Jul 15 08:36:57 2025 GMT
Subject: CN=68469d2e-c794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:60:c9:57:05:a1:4e:e8:f3:ed:33:a6:b1:e4:
c0:94:b0:99:5d:b5:57:37:21:d6:25:aa:ca:21:f0:
f6:4c:e2:f7:cb:04:15:da:ee:a9:cf:ca:de:73:eb:
15:90:59:07:0f:6c:99:9b:58:b5:dc:7f:b2:69:17:
c8:33:a5:44:ff:e3:3b:14:df:10:e4:89:9e:13:1f:
d1:ed:fe:eb:fa:a7:ab:56:51:a6:9e:63:34:79:1c:
8b:9d:5b:0b:ff:4f:c5:12:2e:47:6a:48:0f:b8:2f:
7a:b3:e6:2f:24:3d:2c:bd:9a:24:e9:3d:23:09:62:
d7:e5:8e:f4:d7:43:ae:99:4c:e4:cf:f7:98:25:06:
09:a5:9b:da:95:9c:67:8d:c6:f6:3f:c0:32:ba:20:
a3:f2:01:06:07:4f:eb:e2:89:f6:2a:bf:35:79:c7:
03:68:1f:b4:d5:4b:6c:d7:2b:bc:27:83:bd:ac:56:
bb:bc:bd:f8:fd:1f:5b:9a:27:94:b4:75:92:1c:36:
85:96:2b:ba:1f:92:21:cc:b8:06:13:ab:ac:da:51:
ab:7e:33:bf:a1:7b:09:53:10:9b:c3:35:74:76:fd:
44:d1:b8:2b:a2:55:20:8f:af:64:92:8a:09:2a:ef:
99:85:d9:e9:59:70:7c:25:d0:cf:72:70:55:4e:41:
bc:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:83:E1:CD:7E:A5:AB:4E:31:B2:33:82:BE:C6:49:02:CD:22:C1:88
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E9D01934450C11F0B097A8D3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.1.0/24
45.194.4.0/23
45.195.63.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:51:a5:c2:67:d4:a5:79:37:60:cb:fb:c7:b4:0d:11:fe:17:
38:92:92:35:af:fd:3d:93:e9:e2:da:7c:c8:34:8a:16:fa:fa:
18:bb:31:f0:27:ec:56:45:38:2f:7e:17:8e:8f:d0:13:c8:c5:
2f:84:1a:01:52:ca:d7:6e:db:86:13:9a:75:fb:43:3f:78:c0:
d4:25:0c:e4:04:a3:80:0d:5b:38:25:ed:34:99:4e:a3:23:7b:
4d:93:2e:f0:52:7c:8d:c1:69:a7:65:e6:95:ff:4a:f1:57:50:
6c:3e:32:a1:29:25:44:97:a9:9c:41:46:ea:f5:09:95:72:59:
a1:43:f0:f9:50:62:c7:58:3e:8b:95:0f:b1:ff:f5:c8:0b:02:
04:bf:e8:ef:f1:21:ea:0e:90:d2:c1:f3:ef:f0:d4:9f:bb:00:
8a:18:f1:95:66:49:20:83:58:de:76:5f:64:63:72:88:b1:24:
67:11:83:0e:33:ee:09:ab:c6:c0:67:ab:d9:9d:04:9f:d6:00:
3d:ff:2d:9b:e7:64:dd:66:14:e1:5a:12:2b:37:59:5b:e7:74:
25:ac:13:ea:e0:37:76:59:24:2b:ac:1f:65:43:0a:53:1d:d6:
f7:70:fe:85:72:81:d2:fc:6f:1a:44:4e:0d:92:a0:08:26:8d:
ad:65:3e:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 19:30:52 2025 by rpki-client