Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5792D10828CC11F0A2546DECDAE4EC9C.roa
File: 5792D10828CC11F0A2546DECDAE4EC9C.roa (raw, json)
Hash identifier: Tl4kxYuE4v2s7ThTnTS2nwL90pIBkdoBTGwdefjl380=
Subject key identifier: 53:A9:3D:2E:50:CD:13:30:8C:08:AF:85:EE:43:38:E1:B2:01:BD:A8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0151E0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5792D10828CC11F0A2546DECDAE4EC9C.roa
Signing time: Sun 04 May 2025 09:44:16 +0000
ROA not before: Sun 04 May 2025 09:44:11 +0000
ROA not after: Wed 03 Jun 2026 09:44:11 +0000
asID: 984
IP address blocks: 45.198.15.0/24 maxlen: 24
45.198.63.0/24 maxlen: 24
45.202.106.0/24 maxlen: 24
45.203.138.0/24 maxlen: 24
45.205.108.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 14 May 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86496 (0x151e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 4 09:44:11 2025 GMT
Not After : Jun 3 09:44:11 2026 GMT
Subject: CN=681736f0-41d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:7d:83:e0:06:8a:a2:91:4f:fb:f1:f4:7b:c7:
28:12:17:30:84:b1:b4:f5:c7:fc:ed:a1:65:22:bb:
6c:b6:ec:4b:f2:4a:d7:47:b6:a8:ab:a8:b2:aa:bc:
b8:32:ce:75:ca:53:fb:03:7a:9a:ef:d2:03:f9:a5:
74:78:cd:fd:53:c7:85:ea:72:f6:8a:e5:d4:8d:98:
a3:a2:f1:e0:c8:16:27:fc:3d:53:d0:f7:02:19:4c:
ac:36:31:aa:2a:e6:3d:fe:ce:a1:1b:33:64:fe:2e:
f1:d2:75:f4:d2:cf:91:4c:26:9d:1a:88:df:fe:dc:
23:03:2a:81:34:85:a1:bc:4f:40:1e:38:29:df:4f:
a6:bf:e8:7d:1d:8e:6c:8a:41:cb:9d:e1:f9:ef:8f:
82:29:89:05:4a:79:e4:00:43:78:e4:95:97:4c:a5:
8e:fc:b6:1a:1c:08:92:b9:61:8e:44:c5:1a:b3:aa:
4c:3c:ba:73:93:d8:68:b9:29:c4:ee:18:08:24:61:
b3:c9:26:04:b8:1a:01:1c:e9:eb:a3:ee:e1:09:25:
0c:54:bc:95:11:56:d8:b4:f1:37:5a:4f:2f:77:e6:
91:1b:3a:3e:72:8a:39:32:d6:2b:54:de:10:c1:76:
65:dd:f7:1e:ea:09:f8:7f:31:12:7a:99:c5:67:8e:
7d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:A9:3D:2E:50:CD:13:30:8C:08:AF:85:EE:43:38:E1:B2:01:BD:A8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5792D10828CC11F0A2546DECDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.15.0/24
45.198.63.0/24
45.202.106.0/24
45.203.138.0/24
45.205.108.0/24
Signature Algorithm: sha256WithRSAEncryption
68:76:c3:35:46:d7:bd:fb:78:47:c6:57:30:51:69:43:d5:f0:
48:07:37:18:5a:22:14:28:9c:bd:5d:87:a6:93:5e:46:61:e2:
32:fb:f5:c0:25:f4:99:39:7e:0a:00:40:ff:ae:62:91:ff:ec:
f1:0e:0d:7f:30:26:91:fb:ac:44:7a:c3:32:04:4f:d6:5a:38:
4f:cb:58:4e:8c:0d:b9:91:18:46:be:7f:fe:ff:90:19:23:ec:
29:6c:33:d8:9b:61:3f:33:c1:0b:5f:fe:44:b5:d2:30:9f:8f:
8e:83:dd:0a:90:c5:b3:7e:fc:4e:8d:52:9f:55:58:9c:b1:27:
18:7c:79:1c:43:75:26:25:d2:13:3a:c5:16:49:65:64:57:40:
28:2f:2c:28:74:33:06:1f:d4:bd:17:55:d6:c5:e9:83:70:66:
d7:76:61:a7:2a:9c:bc:f4:49:c5:21:e5:23:68:4f:f4:f4:06:
2d:43:78:f2:13:59:90:9f:85:fd:7d:81:9d:44:3e:08:81:9a:
12:0e:4e:91:8c:0a:85:7b:bf:e2:30:e6:bf:f3:5b:a9:69:ee:
56:ba:29:01:53:12:ba:76:2d:98:e3:20:36:a5:60:39:dc:57:
ab:53:35:65:29:7a:00:12:91:54:f5:d4:06:53:84:5c:04:fe:
33:bf:13:81
-----BEGIN CERTIFICATE-----
MIIFmTCCBIGgAwIBAgIDAVHgMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNTA0MDk0NDExWhcNMjYwNjAzMDk0NDExWjAYMRYw
FAYDVQQDEw02ODE3MzZmMC00MWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAon2D4AaKopFP+/H0e8coEhcwhLG09cf87aFlIrtstuxL8krXR7aoq6iy
qry4Ms51ylP7A3qa79ID+aV0eM39U8eF6nL2iuXUjZijovHgyBYn/D1T0PcCGUys
NjGqKuY9/s6hGzNk/i7x0nX00s+RTCadGojf/twjAyqBNIWhvE9AHjgp30+mv+h9
HY5sikHLneH574+CKYkFSnnkAEN45JWXTKWO/LYaHAiSuWGORMUas6pMPLpzk9ho
uSnE7hgIJGGzySYEuBoBHOnro+7hCSUMVLyVEVbYtPE3Wk8vd+aRGzo+coo5MtYr
VN4QwXZl3fce6gn4fzESepnFZ459IwIDAQABo4ICujCCArYwHQYDVR0OBBYEFFOp
PS5QzRMwjAivhe5DOOGyAb2oMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81NzkyRDEwODI4Q0MxMUYwQTI1NDZERUNEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQALcYPAwQALcY/AwQALcpqAwQA
LcuKAwQALc1sMA0GCSqGSIb3DQEBCwUAA4IBAQBodsM1Rte9+3hHxlcwUWlD1fBI
BzcYWiIUKJy9XYemk15GYeIy+/XAJfSZOX4KAED/rmKR/+zxDg1/MCaR+6xEesMy
BE/WWjhPy1hOjA25kRhGvn/+/5AZI+wpbDPYm2E/M8ELX/5EtdIwn4+Og90KkMWz
fvxOjVKfVVicsScYfHkcQ3UmJdITOsUWSWVkV0AoLywodDMGH9S9F1XWxemDcGbX
dmGnKpy89EnFIeUjaE/09AYtQ3jyE1mQn4X9fYGdRD4IgZoSDk6RjAqFe7/iMOa/
81upae5WuikBUxK6di2Y4yA2pWA53FerUzVlKXoAEpFU9dQGU4RcBP4zvxOB
-----END CERTIFICATE-----
Generated at Tue May 13 00:18:53 2025 by rpki-client