Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/36C84A3E450A11F0A8BF54C2DAE4EC9C.roa
File: 36C84A3E450A11F0A8BF54C2DAE4EC9C.roa (raw, json)
Hash identifier: K8dnCneWnC3kUzcQTl8OQQI/oAwadkq/BSqcME4r9E0=
Subject key identifier: E1:0F:09:25:E8:37:48:88:6A:FF:73:38:F6:FD:68:FE:F5:05:A2:69
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015A77
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/36C84A3E450A11F0A8BF54C2DAE4EC9C.roa
Signing time: Mon 09 Jun 2025 08:17:42 +0000
ROA not before: Mon 09 Jun 2025 08:17:37 +0000
ROA not after: Tue 15 Jul 2025 08:17:37 +0000
asID: 54801
IP address blocks: 45.194.85.0/24 maxlen: 24
45.195.60.0/24 maxlen: 24
45.195.192.0/24 maxlen: 24
45.195.196.0/24 maxlen: 24
45.195.197.0/24 maxlen: 24
45.197.1.0/24 maxlen: 24
45.197.2.0/24 maxlen: 24
45.197.4.0/24 maxlen: 24
45.197.5.0/24 maxlen: 24
45.199.191.0/24 maxlen: 24
45.202.8.0/24 maxlen: 24
45.202.9.0/24 maxlen: 24
45.202.10.0/24 maxlen: 24
45.202.11.0/24 maxlen: 24
45.202.63.0/24 maxlen: 24
45.204.1.0/24 maxlen: 24
45.204.64.0/24 maxlen: 24
45.204.71.0/24 maxlen: 24
45.207.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 05 Jul 2025 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88695 (0x15a77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 9 08:17:37 2025 GMT
Not After : Jul 15 08:17:37 2025 GMT
Subject: CN=684698a6-3d1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:60:d2:76:b0:ec:99:4f:ae:d7:a2:a8:d8:d5:
f1:97:47:a5:94:f9:f5:d3:bb:e4:a3:74:d3:c6:ee:
35:35:93:2e:94:82:2f:aa:8d:b0:b6:b0:ea:b0:2c:
31:50:a6:5d:31:7a:16:89:03:39:6d:11:53:c0:6c:
aa:a4:6b:48:fc:25:e7:3b:91:89:2c:68:76:bf:cd:
5d:d2:2f:38:6e:b0:23:28:5d:a6:ad:8e:03:d4:89:
6c:d7:50:11:2d:13:08:18:25:a9:c9:6e:d5:35:86:
bc:89:38:ac:7a:d3:5d:8e:97:cc:e8:46:b0:73:21:
9e:0b:1e:97:78:4b:da:62:58:d2:85:d4:00:38:a4:
61:14:89:69:8d:49:4f:3a:ad:eb:ae:5b:d3:22:5d:
b1:6b:3c:69:13:7a:43:87:82:4c:24:81:e7:d1:3d:
60:e4:2c:bf:33:fd:08:c7:f2:24:e2:db:fb:05:e7:
07:89:04:2a:6f:63:00:16:7a:51:2b:ba:07:45:5b:
2f:a0:0a:39:98:72:25:82:51:e1:71:f1:55:8c:e2:
ab:a4:15:3e:d6:0f:f7:70:c7:f2:fc:07:30:78:50:
de:42:2f:a7:7a:f8:1c:60:67:d1:d1:c8:48:22:45:
84:a5:7b:7f:e1:7d:49:fc:fb:d4:ca:05:c8:f3:45:
02:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:0F:09:25:E8:37:48:88:6A:FF:73:38:F6:FD:68:FE:F5:05:A2:69
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/36C84A3E450A11F0A8BF54C2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.85.0/24
45.195.60.0/24
45.195.192.0/24
45.195.196.0/23
45.197.1.0-45.197.2.255
45.197.4.0/23
45.199.191.0/24
45.202.8.0/22
45.202.63.0/24
45.204.1.0/24
45.204.64.0/24
45.204.71.0/24
45.207.163.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:a0:31:a8:c1:82:41:7c:0a:12:60:46:2b:18:b8:7c:2a:44:
36:ea:85:09:22:b4:24:d2:1d:8f:87:10:3b:aa:e2:59:b6:17:
2f:22:07:06:05:43:fa:f2:60:05:68:f9:b8:f6:45:8c:f1:46:
1e:90:8f:97:42:3a:48:ad:a9:41:15:aa:ca:f0:90:ce:df:3d:
50:54:c2:c7:62:c8:e4:97:fc:00:b2:5c:90:d1:40:18:d6:d6:
0f:fe:07:9c:d6:21:af:6d:7d:82:d6:e0:a9:6a:7b:37:4c:16:
d8:5c:b5:c8:0f:10:fc:b3:21:9b:3a:78:6b:96:36:31:ae:9d:
87:a5:e9:f2:0d:08:2c:e4:68:01:cc:31:37:cc:64:ef:ed:13:
e7:0d:dd:e5:f2:c8:b2:ac:bf:e9:6b:90:d4:32:b9:72:80:ab:
b5:60:93:ab:24:f0:4d:01:4a:07:c5:a2:e4:43:15:7a:1c:0f:
ba:b1:46:a7:a0:7b:f2:48:7d:61:3e:81:22:9f:91:e7:78:18:
3d:93:be:25:4a:80:5a:4d:21:72:55:53:58:08:42:80:e8:32:
36:e8:49:b4:65:ef:7e:b3:04:26:5f:75:87:5a:3f:22:95:12:
1f:d7:f0:bb:b1:ff:5d:08:25:ee:f8:00:0b:dd:1c:84:12:2f:
7a:75:07:95
-----BEGIN CERTIFICATE-----
MIIF0TCCBLmgAwIBAgIDAVp3MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNjA5MDgxNzM3WhcNMjUwNzE1MDgxNzM3WjAYMRYw
FAYDVQQDEw02ODQ2OThhNi0zZDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEApWDSdrDsmU+u16Ko2NXxl0ellPn107vko3TTxu41NZMulIIvqo2wtrDq
sCwxUKZdMXoWiQM5bRFTwGyqpGtI/CXnO5GJLGh2v81d0i84brAjKF2mrY4D1Ils
11ARLRMIGCWpyW7VNYa8iTisetNdjpfM6EawcyGeCx6XeEvaYljShdQAOKRhFIlp
jUlPOq3rrlvTIl2xazxpE3pDh4JMJIHn0T1g5Cy/M/0Ix/Ik4tv7BecHiQQqb2MA
FnpRK7oHRVsvoAo5mHIlglHhcfFVjOKrpBU+1g/3cMfy/AcweFDeQi+nevgcYGfR
0chIIkWEpXt/4X1J/PvUygXI80UCNwIDAQABo4IC8jCCAu4wHQYDVR0OBBYEFOEP
CSXoN0iIav9zOPb9aP71BaJpMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8zNkM4NEEzRTQ1MEExMUYwQThCRjU0QzJEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MG8GCCsGAQUFBwEHAQH/BGAwXjBcBAIAATBWAwQALcJVAwQALcM8AwQALcPAAwQB
LcPEMAwDBAAtxQEDBAAtxQIDBAEtxQQDBAAtx78DBAItyggDBAAtyj8DBAAtzAED
BAAtzEADBAAtzEcDBAAtz6MwDQYJKoZIhvcNAQELBQADggEBALCgMajBgkF8ChJg
RisYuHwqRDbqhQkitCTSHY+HEDuq4lm2Fy8iBwYFQ/ryYAVo+bj2RYzxRh6Qj5dC
OkitqUEVqsrwkM7fPVBUwsdiyOSX/ACyXJDRQBjW1g/+B5zWIa9tfYLW4KlqezdM
FthctcgPEPyzIZs6eGuWNjGunYel6fINCCzkaAHMMTfMZO/tE+cN3eXyyLKsv+lr
kNQyuXKAq7Vgk6sk8E0BSgfFouRDFXocD7qxRqege/JIfWE+gSKfked4GD2TviVK
gFpNIXJVU1gIQoDoMjboSbRl736zBCZfdYdaPyKVEh/X8Lux/10IJe74AAvdHIQS
L3p1B5U=
-----END CERTIFICATE-----
Generated at Thu Jul 3 16:42:55 2025 by rpki-client