Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63D9E8E4328A11F088D61694DAE4EC9C.roa
File: 63D9E8E4328A11F088D61694DAE4EC9C.roa (raw, json)
Hash identifier: EfYi6YZz++cgdRkK9tVpApi9PcYlwBiyxgVlQK4Nda4=
Subject key identifier: 58:18:54:9D:F6:B7:93:DB:4B:A2:23:88:22:BE:92:D7:06:0B:2B:6A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015516
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63D9E8E4328A11F088D61694DAE4EC9C.roa
Signing time: Fri 16 May 2025 19:17:21 +0000
ROA not before: Fri 16 May 2025 19:17:17 +0000
ROA not after: Sun 25 May 2025 19:17:17 +0000
asID: 63787
IP address blocks: 45.192.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 20 May 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87318 (0x15516)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 16 19:17:17 2025 GMT
Not After : May 25 19:17:17 2025 GMT
Subject: CN=68278f41-50b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e6:05:ae:df:6b:c8:45:a1:01:ea:94:65:f6:
2a:84:7b:e6:2f:9f:fe:f7:ce:e6:26:9a:5d:11:83:
2c:8f:e8:37:b6:10:53:25:cc:23:aa:01:df:cc:49:
3f:b3:f8:5f:0d:14:4e:ab:6e:fe:34:7b:99:c4:ec:
b5:52:21:c0:01:8b:79:f1:bf:50:b0:d7:8c:3e:b0:
cc:af:6a:9b:78:6e:89:23:fb:e3:ac:1f:3d:70:7a:
de:e4:4f:32:bc:74:56:dc:2f:ae:6f:67:39:0d:54:
be:32:45:a0:e9:9e:b8:ff:e2:67:b6:69:1b:17:f1:
e6:de:d8:f9:a7:14:62:4e:5b:ef:6f:26:92:f9:07:
6c:08:9f:1f:03:bf:d9:34:0f:27:c9:c2:3c:31:bf:
b5:0d:df:17:ed:ce:06:c9:12:43:b8:97:91:19:22:
cd:03:9a:05:92:56:28:db:2c:fc:c7:cc:ba:fd:4b:
f6:ec:5a:f4:29:c6:e3:ef:c6:e6:69:83:85:85:56:
47:98:9b:7a:d1:00:49:57:55:77:cf:7b:4d:df:da:
0e:19:ac:72:13:f1:9c:ba:c7:9f:96:ad:60:e7:ef:
51:c0:b1:76:81:c7:ff:55:ca:8b:59:a1:2f:19:00:
db:ad:56:fc:c9:8a:34:fe:18:16:e1:df:5f:d7:8d:
96:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:18:54:9D:F6:B7:93:DB:4B:A2:23:88:22:BE:92:D7:06:0B:2B:6A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63D9E8E4328A11F088D61694DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.180.0/24
Signature Algorithm: sha256WithRSAEncryption
80:82:45:68:8f:6d:a4:c2:74:0a:99:ad:44:8e:64:b1:11:4d:
60:0d:1d:aa:8b:86:9b:d2:25:77:41:1d:5b:98:3b:7b:e1:3f:
59:5b:95:b0:80:a9:e9:fe:3c:ba:22:8f:57:ea:cb:4f:62:17:
6d:69:04:af:8f:71:8c:6c:80:ca:df:f5:32:ae:c8:1b:ae:66:
18:f5:55:ef:1e:64:48:be:e0:28:e4:17:0a:05:18:04:46:8b:
c6:c5:a0:ec:20:c3:07:69:b5:e3:77:55:d2:65:b8:ff:ba:dd:
23:38:43:9b:b9:97:47:34:2b:29:64:09:8a:20:ad:14:b8:21:
67:4b:29:55:7e:06:da:9f:bb:b1:c2:26:de:39:0e:0a:d9:69:
81:1d:8b:5c:06:67:38:b6:b2:e1:06:c3:81:3b:cb:71:33:6f:
5e:42:a4:28:21:aa:3e:02:1e:fe:c4:a5:b5:00:7b:69:cb:27:
ca:3e:5d:dd:fa:f7:68:9d:ea:7f:72:41:20:21:c4:bf:2e:c4:
6f:61:7f:fc:31:c0:b0:39:36:84:63:71:48:1e:dd:1f:de:a8:
60:90:a5:e1:30:7d:4b:71:e7:e7:8d:36:44:21:1f:9e:76:2f:
e0:89:cd:7c:17:8a:9f:a0:63:78:c0:ab:b0:63:48:2c:cb:87:
da:15:f2:0e
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAVUWMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNTE2MTkxNzE3WhcNMjUwNTI1MTkxNzE3WjAYMRYw
FAYDVQQDEw02ODI3OGY0MS01MGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyOYFrt9ryEWhAeqUZfYqhHvmL5/+987mJppdEYMsj+g3thBTJcwjqgHf
zEk/s/hfDRROq27+NHuZxOy1UiHAAYt58b9QsNeMPrDMr2qbeG6JI/vjrB89cHre
5E8yvHRW3C+ub2c5DVS+MkWg6Z64/+JntmkbF/Hm3tj5pxRiTlvvbyaS+QdsCJ8f
A7/ZNA8nycI8Mb+1Dd8X7c4GyRJDuJeRGSLNA5oFklYo2yz8x8y6/Uv27Fr0Kcbj
78bmaYOFhVZHmJt60QBJV1V3z3tN39oOGaxyE/Gcuseflq1g5+9RwLF2gcf/VcqL
WaEvGQDbrVb8yYo0/hgW4d9f142WAQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFFgY
VJ32t5PbS6IjiCK+ktcGCytqMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC82M0Q5RThFNDMyOEExMUYwODhENjE2OTREQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcC0MA0GCSqGSIb3DQEBCwUA
A4IBAQCAgkVoj22kwnQKma1EjmSxEU1gDR2qi4ab0iV3QR1bmDt74T9ZW5WwgKnp
/jy6Io9X6stPYhdtaQSvj3GMbIDK3/UyrsgbrmYY9VXvHmRIvuAo5BcKBRgERovG
xaDsIMMHabXjd1XSZbj/ut0jOEObuZdHNCspZAmKIK0UuCFnSylVfgban7uxwibe
OQ4K2WmBHYtcBmc4trLhBsOBO8txM29eQqQoIao+Ah7+xKW1AHtpyyfKPl3d+vdo
nep/ckEgIcS/LsRvYX/8McCwOTaEY3FIHt0f3qhgkKXhMH1LcefnjTZEIR+edi/g
ic18F4qfoGN4wKuwY0gsy4faFfIO
-----END CERTIFICATE-----
Generated at Sun May 18 07:42:57 2025 by rpki-client