Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0DA57BF24B6011F0AEA19485DAE4EC9C.roa
File: 0DA57BF24B6011F0AEA19485DAE4EC9C.roa (raw, json)
Hash identifier: hT7fVERxoOLpo4BC4ChUfGvw7RfVfEfRIFwCK7rLJ2g=
Subject key identifier: 5D:CA:AB:0D:61:5B:83:9F:ED:4F:AC:A4:23:BE:13:F0:9E:82:88:06
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015C8C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0DA57BF24B6011F0AEA19485DAE4EC9C.roa
Signing time: Tue 17 Jun 2025 09:47:17 +0000
ROA not before: Tue 17 Jun 2025 09:47:10 +0000
ROA not after: Wed 23 Jul 2025 09:47:10 +0000
asID: 62816
IP address blocks: 45.205.174.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 03 Jul 2025 06:28:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89228 (0x15c8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 17 09:47:10 2025 GMT
Not After : Jul 23 09:47:10 2025 GMT
Subject: CN=685139a5-d499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:59:b3:48:58:a2:f1:b9:75:a0:60:cc:d8:bc:
60:79:e1:5b:a2:ea:4c:f6:39:e0:e2:1e:77:4d:16:
55:43:ff:cd:b2:69:0d:d6:a8:74:a2:93:0c:e0:75:
4b:db:c4:ea:0c:60:e0:e7:f0:2a:27:94:6a:c2:0b:
ab:e7:d3:fe:86:e8:63:b6:0c:4f:47:9b:72:65:0e:
36:00:69:21:b5:ce:84:0d:94:b5:a7:4d:e5:02:97:
7e:d2:d5:fb:47:84:00:11:b3:a9:05:f2:b4:45:14:
cc:b1:c4:d8:ae:ec:bd:4f:c4:75:a6:dd:69:67:97:
2b:50:a2:0d:0f:0e:dd:18:e9:d9:dd:d3:18:1c:13:
ec:c9:33:3b:44:7a:73:5e:f0:02:0a:3a:b9:87:6d:
fe:98:31:f5:9e:c0:28:40:c1:e4:2c:74:0e:31:45:
49:b1:ad:bd:4f:51:65:05:22:72:fa:69:66:f6:aa:
67:16:6f:79:76:6f:3e:33:63:5b:ca:6c:0c:90:90:
bd:1a:ae:ee:0f:93:15:57:93:f7:e1:93:2f:24:9d:
91:60:75:2c:02:e1:54:75:07:0b:18:9f:9d:70:d6:
7e:25:bc:f6:bb:1a:d5:94:9e:a9:c4:53:3c:67:89:
5d:fa:46:25:99:fa:f4:90:cb:8a:80:65:e0:2e:0e:
73:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:CA:AB:0D:61:5B:83:9F:ED:4F:AC:A4:23:BE:13:F0:9E:82:88:06
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0DA57BF24B6011F0AEA19485DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.174.0/24
Signature Algorithm: sha256WithRSAEncryption
19:20:94:ec:d6:70:01:18:e7:4b:41:96:6c:15:f8:03:52:27:
2b:38:e9:a0:b7:27:b1:08:2a:71:59:97:d0:6e:ca:48:8f:46:
fb:32:9e:e8:1e:84:78:64:34:9b:b0:e1:5b:72:b5:23:87:c1:
ac:af:40:9d:5b:69:83:7f:42:d6:77:98:d9:48:bf:08:01:2b:
bb:1e:59:05:11:ee:80:89:56:c8:fb:3f:62:ac:e5:6e:71:91:
e5:80:85:46:c2:00:5f:c6:bd:57:71:4d:89:57:ec:d0:46:fa:
b0:6e:4a:6d:34:09:3e:18:4b:65:f1:c8:92:c8:f9:fa:a9:1c:
56:0b:11:33:07:f0:83:ef:1f:be:bf:50:a7:82:6a:a4:f7:c2:
b0:04:6e:f2:31:d0:88:2a:12:d2:37:bb:26:8b:19:e4:b6:07:
af:29:cb:60:3f:cb:17:40:4d:a5:3d:23:ac:76:77:a1:f7:2f:
de:02:ba:22:6b:fd:b1:81:f7:39:3b:f1:61:ff:4c:f4:64:93:
2f:50:b6:8d:72:df:fc:19:c7:df:c9:16:c6:f9:ac:bd:68:aa:
fe:a5:0b:65:82:e9:c0:5d:54:dd:51:cc:6f:4b:3f:ad:67:75:
67:ea:67:73:c9:38:46:fc:87:9c:55:c2:ea:f5:51:e3:ed:4f:
06:c1:dc:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 18:34:46 2025 by rpki-client