Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/774A3514245211F0AAE524F1DAE4EC9C.roa
File: 774A3514245211F0AAE524F1DAE4EC9C.roa (raw, json)
Hash identifier: jkJUdoOVQsnExV8IxjPnPhvHwOGsjC8Vl22MXewY6dM=
Subject key identifier: 08:09:6F:F2:0E:61:6D:A5:CD:39:F3:DC:35:DB:0D:B6:98:9A:E4:52
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014FCD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/774A3514245211F0AAE524F1DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 17:01:46 +0000
ROA not before: Mon 28 Apr 2025 17:01:42 +0000
ROA not after: Tue 28 Apr 2026 17:01:42 +0000
asID: 984
IP address blocks: 45.194.244.0/24 maxlen: 24
45.194.245.0/24 maxlen: 24
45.194.246.0/24 maxlen: 24
45.194.247.0/24 maxlen: 24
45.194.248.0/24 maxlen: 24
45.194.249.0/24 maxlen: 24
45.194.250.0/24 maxlen: 24
45.194.251.0/24 maxlen: 24
45.194.252.0/24 maxlen: 24
45.194.253.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 13 May 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85965 (0x14fcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 28 17:01:42 2025 GMT
Not After : Apr 28 17:01:42 2026 GMT
Subject: CN=680fb47a-5a06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:cf:f8:93:55:29:78:4a:54:e2:a6:3c:4b:ea:
06:bd:29:d5:b8:75:db:f6:dc:4c:c2:1b:48:0b:5a:
0b:90:98:0e:cf:5f:ff:6a:af:63:83:e0:81:87:61:
87:6f:ac:53:4e:7d:db:e4:80:e4:c3:06:f3:10:7a:
c7:34:eb:07:71:a9:62:ba:bd:cf:d2:4a:91:33:d2:
c1:51:3c:19:f3:93:74:b0:a9:f1:04:c7:9a:7c:20:
73:fa:54:a9:bf:f4:2f:ac:2a:a0:b6:77:7f:da:37:
2e:14:c5:90:61:1a:50:28:3d:7d:2b:ed:09:59:b3:
51:e1:81:ab:02:fb:cd:35:67:81:75:b5:e7:83:14:
7b:97:4d:29:4f:18:ab:32:db:60:aa:68:06:13:aa:
f6:5c:37:4e:c7:ba:59:7c:a8:47:50:31:14:2b:dc:
24:33:b5:29:af:25:91:75:6c:57:87:2d:59:8f:a7:
65:d2:8f:f0:2b:6b:44:43:64:57:22:c5:54:df:fa:
0a:63:6b:0e:ae:4b:49:e4:ac:29:85:9e:df:6e:f0:
59:2a:ba:8d:3f:a3:ff:22:78:ed:84:77:1d:dd:67:
b4:fa:a5:97:88:d8:75:32:47:3f:ce:c6:65:47:de:
dc:60:45:58:88:80:c9:ba:e2:10:81:10:4f:aa:d3:
2d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:09:6F:F2:0E:61:6D:A5:CD:39:F3:DC:35:DB:0D:B6:98:9A:E4:52
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/774A3514245211F0AAE524F1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.244.0-45.194.253.255
Signature Algorithm: sha256WithRSAEncryption
45:be:1d:ed:7f:45:68:33:c0:9e:64:8b:2c:1a:71:34:f9:35:
58:cb:a6:f9:51:15:79:82:03:2a:4b:d7:9d:57:ad:64:6b:be:
a2:35:8e:cb:98:05:d2:15:ee:02:3f:77:9d:3a:7e:66:e0:8f:
ee:2c:af:97:ba:dc:48:4f:88:7d:06:9a:f1:06:b3:41:a9:c0:
65:4f:55:48:85:1d:1e:a3:4d:ec:83:54:95:8b:5d:20:dc:8c:
20:1c:ba:f7:80:5d:b0:00:b1:a3:46:3d:fb:a4:8e:ba:45:b3:
4f:77:d3:68:07:21:05:c0:3c:83:41:f5:bb:94:7f:50:e3:76:
6c:dc:e1:75:50:fa:9b:61:50:4b:25:e7:cb:17:3f:dc:08:ae:
a3:aa:87:dd:62:0e:60:53:78:36:53:ae:9c:bc:45:c8:fb:5e:
c7:62:32:9e:a1:c9:de:49:7e:52:7a:ac:af:e4:0c:17:40:a8:
b7:7d:12:7c:fd:24:5a:09:8d:c0:32:fd:c7:82:62:04:af:7b:
e9:56:fa:69:f5:2f:2e:de:b4:e4:c9:1c:cf:4c:00:8c:34:4d:
dc:ae:8c:53:4d:f2:e9:78:04:68:ba:7e:1f:3d:78:af:0e:b2:
20:32:bc:e5:4a:0d:b7:c6:6c:28:ae:4c:5f:bc:a9:8f:9c:35:
2e:6a:06:c1
-----BEGIN CERTIFICATE-----
MIIFiTCCBHGgAwIBAgIDAU/NMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNDI4MTcwMTQyWhcNMjYwNDI4MTcwMTQyWjAYMRYw
FAYDVQQDEw02ODBmYjQ3YS01YTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAys/4k1UpeEpU4qY8S+oGvSnVuHXb9txMwhtIC1oLkJgOz1//aq9jg+CB
h2GHb6xTTn3b5IDkwwbzEHrHNOsHcaliur3P0kqRM9LBUTwZ85N0sKnxBMeafCBz
+lSpv/QvrCqgtnd/2jcuFMWQYRpQKD19K+0JWbNR4YGrAvvNNWeBdbXngxR7l00p
TxirMttgqmgGE6r2XDdOx7pZfKhHUDEUK9wkM7UpryWRdWxXhy1Zj6dl0o/wK2tE
Q2RXIsVU3/oKY2sOrktJ5KwphZ7fbvBZKrqNP6P/InjthHcd3We0+qWXiNh1Mkc/
zsZlR97cYEVYiIDJuuIQgRBPqtMt3QIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFAgJ
b/IOYW2lzTnz3DXbDbaYmuRSMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC83NzRBMzUxNDI0NTIxMUYwQUFFNTI0RjFEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAItwvQDBAEtwvwwDQYJKoZI
hvcNAQELBQADggEBAEW+He1/RWgzwJ5kiywacTT5NVjLpvlRFXmCAypL151XrWRr
vqI1jsuYBdIV7gI/d506fmbgj+4sr5e63EhPiH0GmvEGs0GpwGVPVUiFHR6jTeyD
VJWLXSDcjCAcuveAXbAAsaNGPfukjrpFs09302gHIQXAPINB9buUf1Djdmzc4XVQ
+pthUEsl58sXP9wIrqOqh91iDmBTeDZTrpy8Rcj7XsdiMp6hyd5JflJ6rK/kDBdA
qLd9Enz9JFoJjcAy/ceCYgSve+lW+mn1Ly7etOTJHM9MAIw0TdyujFNN8ul4BGi6
fh89eK8OsiAyvOVKDbfGbCiuTF+8qY+cNS5qBsE=
-----END CERTIFICATE-----
Generated at Sun May 11 20:08:43 2025 by rpki-client