Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/23CED3F24C5E11F0B408A686DAE4EC9C.roa
File: 23CED3F24C5E11F0B408A686DAE4EC9C.roa (raw, json)
Hash identifier: 1Jj/p1LdxgwaofpRkvdWhrqTcgSzWLPRLAwKakbakNk=
Subject key identifier: F0:5A:4B:76:FE:77:1A:20:A0:AE:1D:94:15:E1:FA:E8:E2:3B:72:F0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015D13
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/23CED3F24C5E11F0B408A686DAE4EC9C.roa
Signing time: Wed 18 Jun 2025 16:06:06 +0000
ROA not before: Wed 18 Jun 2025 16:06:01 +0000
ROA not after: Wed 30 Jul 2025 16:06:01 +0000
asID: 54600
IP address blocks: 45.192.192.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 02 Jul 2025 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89363 (0x15d13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 18 16:06:01 2025 GMT
Not After : Jul 30 16:06:01 2025 GMT
Subject: CN=6852e3ee-245e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d7:29:9a:cd:d5:2a:a0:8b:29:8b:9e:05:9f:
6f:37:1a:b0:cb:cd:46:99:cf:8e:d9:d5:98:2a:7f:
8f:16:2c:d5:1f:e6:6f:a6:f0:df:ab:64:a0:5c:41:
0f:0a:d9:81:f5:84:47:00:db:ea:11:db:ae:69:2f:
05:73:d4:7c:f5:6b:60:80:a6:08:68:53:7e:99:6d:
4b:57:a7:66:5b:3f:d6:a3:a4:22:6d:0c:0e:26:5d:
31:cd:9c:c2:6e:4f:cc:21:38:1d:cc:8f:c3:11:fc:
72:2f:6f:36:63:c6:49:9e:eb:ce:7d:15:6d:d4:05:
bd:60:fc:bb:83:21:a1:92:d6:d7:00:b2:c6:f8:4c:
31:dd:34:c6:75:76:e6:05:8f:38:43:bd:d8:8b:19:
65:13:42:81:42:9c:37:4e:d3:3c:64:39:dd:ca:99:
e9:2a:2f:7b:4b:c0:2c:18:8d:f8:00:34:1d:c9:e6:
0a:c8:11:91:86:a7:19:98:51:06:b8:80:3f:23:81:
41:83:92:3a:c2:cc:65:d3:4d:34:0c:a7:51:ba:57:
d9:dc:57:e4:0d:e6:e7:49:84:77:21:24:66:64:c8:
42:ed:21:39:07:8a:fd:ab:6c:2f:1e:5c:e8:53:e1:
dc:ca:16:04:fa:7a:12:b8:7c:26:c0:62:d4:cb:24:
ea:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:5A:4B:76:FE:77:1A:20:A0:AE:1D:94:15:E1:FA:E8:E2:3B:72:F0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/23CED3F24C5E11F0B408A686DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.192.0/20
Signature Algorithm: sha256WithRSAEncryption
18:b6:fa:0b:f4:1d:a7:cc:8d:45:f9:22:27:d6:2d:74:ef:72:
de:1c:a0:53:5e:b1:fd:dc:05:0d:ac:86:b4:64:0d:82:da:f9:
57:1e:65:6a:c4:eb:1e:3d:d9:7e:81:80:0a:39:b6:43:74:3b:
21:fe:fb:3d:81:c7:4c:a3:28:3e:47:83:34:3c:50:f4:d4:d7:
b2:0b:2d:4f:60:76:35:62:13:03:bd:ad:10:4c:2c:34:09:8d:
94:14:73:5a:15:84:c2:d5:6c:c8:06:88:80:44:b4:45:dc:c3:
21:76:52:9e:90:99:a1:62:2d:5f:37:9c:ce:45:4f:5a:52:1f:
f1:d2:56:19:53:e4:ff:67:27:09:0a:b2:a3:5d:1b:ef:22:ce:
b4:84:f3:63:70:e8:c4:19:0e:fe:3c:3a:94:90:3b:a0:1e:27:
bb:77:37:ce:9c:53:19:62:2c:da:6a:f8:09:a6:f8:a5:5f:81:
cd:48:21:02:88:b8:7a:80:02:62:0d:e6:de:80:e6:8b:c0:26:
bc:6f:1c:b0:59:98:12:4b:04:b6:87:c0:d5:b3:7b:63:f6:2d:
7a:cb:55:c7:59:71:e3:d3:d5:11:25:12:3b:e9:a9:0a:1c:1e:
db:1e:23:df:d5:1b:a3:2a:a8:84:45:5d:2b:8b:b2:71:c6:bd:
aa:33:d7:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 09:37:50 2025 by rpki-client