Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/764C71F8512111F0BAB26E7EDAE4EC9C.roa
File: 764C71F8512111F0BAB26E7EDAE4EC9C.roa (raw, json)
Hash identifier: D7wungljH6t7NKOkAxCMwim2fZVDw5mWtzUL7+eXQxo=
Subject key identifier: E9:29:BB:ED:FB:AF:AF:DC:01:36:87:C2:D5:10:BB:1E:6A:F6:D7:AC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015E9A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/764C71F8512111F0BAB26E7EDAE4EC9C.roa
Signing time: Tue 24 Jun 2025 17:34:21 +0000
ROA not before: Tue 24 Jun 2025 17:34:17 +0000
ROA not after: Sat 09 Aug 2025 17:34:17 +0000
asID: 63139
IP address blocks: 45.197.76.0/24 maxlen: 24
45.197.79.0/24 maxlen: 24
45.197.80.0/24 maxlen: 24
45.197.81.0/24 maxlen: 24
45.197.82.0/24 maxlen: 24
45.197.83.0/24 maxlen: 24
45.197.84.0/24 maxlen: 24
45.197.85.0/24 maxlen: 24
45.197.86.0/24 maxlen: 24
45.197.87.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 03 Jul 2025 06:28:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89754 (0x15e9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 24 17:34:17 2025 GMT
Not After : Aug 9 17:34:17 2025 GMT
Subject: CN=685ae19d-e971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d7:17:cf:85:c6:e7:f5:13:90:b4:21:5c:f0:
40:e1:70:28:97:59:2a:3a:da:44:d3:8c:28:f0:b4:
c8:a3:a7:03:f2:da:36:2c:54:c8:73:47:01:9a:b4:
57:97:56:82:ae:57:df:b0:ce:e8:81:e7:2f:91:85:
ab:55:8a:a8:98:4c:14:0c:25:55:2f:6b:f7:44:30:
a0:ce:75:36:a5:b3:4f:d0:9c:84:d4:2d:2c:e5:76:
54:64:0f:23:6d:6f:0d:e1:c4:a6:4a:1d:05:69:6b:
91:e4:c5:db:2d:47:02:20:67:e3:03:01:91:01:12:
e9:29:af:5b:88:4b:e2:ae:54:8f:90:0c:05:b5:29:
c7:c4:cd:2e:54:6c:ff:e1:3b:29:90:16:35:d5:55:
7d:91:8f:8a:65:63:b7:fe:83:06:ed:98:92:ba:a1:
51:37:06:ec:1a:ec:30:d2:97:1b:ea:1b:53:91:c1:
b1:0b:0a:c9:3c:af:80:af:9c:b4:3f:c5:18:ef:de:
66:84:81:23:7c:71:da:01:86:59:ca:58:b4:ec:c1:
80:4e:3e:ee:76:3b:9a:f1:6d:38:cb:b5:94:9c:b1:
3c:8a:3f:05:a0:33:01:8f:16:2b:b8:e1:9b:b2:b0:
13:44:0a:4a:e9:6d:b7:6b:8c:93:f0:73:fa:3f:c6:
a4:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:29:BB:ED:FB:AF:AF:DC:01:36:87:C2:D5:10:BB:1E:6A:F6:D7:AC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/764C71F8512111F0BAB26E7EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.76.0/24
45.197.79.0-45.197.87.255
Signature Algorithm: sha256WithRSAEncryption
79:ff:b2:ff:fd:d1:71:a6:31:7a:b3:bf:63:46:d3:60:fe:a9:
c5:bd:46:40:b4:78:c5:15:37:35:0a:c4:e2:8a:bf:47:e1:ed:
2e:9e:95:b4:f1:85:3f:95:72:a2:2b:5c:bb:2a:c3:29:8d:e7:
4a:6c:35:90:d5:c1:51:d5:7a:86:28:99:d1:7c:7d:3f:43:5d:
4a:ae:0b:b9:0e:dc:78:9a:aa:98:0f:e3:d6:ed:09:18:cd:81:
ca:9a:f1:ca:53:bb:4b:b2:59:74:81:34:13:ed:a7:53:cf:86:
fe:90:48:17:18:d9:04:1f:0c:d5:a9:a1:d0:ff:82:3d:7f:7e:
b5:35:f8:07:ab:ec:3c:8a:ad:9c:e4:42:35:6b:a6:19:12:d8:
33:d7:68:95:ae:0c:c5:be:fa:f9:37:86:75:4c:e5:70:2b:b3:
c0:02:d7:1b:5a:a5:2e:b6:8f:2e:2d:f2:2c:4c:fc:dd:8d:f4:
1f:99:50:36:fa:bc:4a:04:96:66:87:1d:68:8e:88:0b:11:79:
e9:92:c0:ce:ab:59:ec:b5:5b:53:ed:32:23:c4:bb:e0:1e:6a:
fc:30:b7:1d:c4:3a:fa:4c:ba:e1:54:08:c0:df:3d:68:4f:50:
d8:d8:25:ca:55:f1:4a:2d:f9:a9:5f:ec:8c:a0:43:34:7d:c0:
16:79:88:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 10:31:04 2025 by rpki-client