Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/81C07518245111F0B0628FE8DAE4EC9C.roa
File: 81C07518245111F0B0628FE8DAE4EC9C.roa (raw, json)
Hash identifier: 8BFflhuzBKge2Ufi90OzlbJEl0iBxNsELvVYwrmK3cM=
Subject key identifier: 90:67:23:7D:41:3A:29:22:84:B2:7F:7E:03:B5:FE:5E:8B:17:EB:FA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014FCB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/81C07518245111F0B0628FE8DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 16:54:54 +0000
ROA not before: Mon 28 Apr 2025 16:54:50 +0000
ROA not after: Tue 28 Apr 2026 16:54:50 +0000
asID: 984
IP address blocks: 45.194.234.0/24 maxlen: 24
45.194.235.0/24 maxlen: 24
45.194.236.0/24 maxlen: 24
45.194.237.0/24 maxlen: 24
45.194.238.0/24 maxlen: 24
45.194.239.0/24 maxlen: 24
45.194.240.0/24 maxlen: 24
45.194.241.0/24 maxlen: 24
45.194.242.0/24 maxlen: 24
45.194.243.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 13 May 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85963 (0x14fcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 28 16:54:50 2025 GMT
Not After : Apr 28 16:54:50 2026 GMT
Subject: CN=680fb2de-3773
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:a3:39:1e:8b:2d:7e:ec:39:89:a9:6b:4b:a1:
b0:e9:a9:c4:fd:5c:02:8e:ed:b5:31:36:ff:45:0b:
ea:d5:dc:72:00:6c:c5:fb:a6:b4:4d:fc:59:9e:5e:
c5:4b:06:e8:55:b2:ef:f4:89:7b:8c:78:99:7e:06:
ae:39:df:76:1c:74:d4:39:a8:60:8f:e8:fc:3f:6e:
48:f4:17:76:fd:14:bd:0a:b9:26:2f:e7:c7:14:3c:
e6:6f:c4:44:56:e2:66:52:2d:20:0d:35:8f:4b:25:
99:57:6d:cc:8f:3f:10:d0:54:90:c7:c5:61:70:66:
45:ca:d5:65:6b:b1:b7:21:ca:34:c1:9d:6c:e2:09:
e0:b8:36:3b:19:22:05:36:bc:59:d2:38:73:16:bf:
34:e7:97:85:f5:b9:c9:60:e2:a2:c6:9e:d1:72:8b:
91:1c:36:07:7d:3c:c3:4a:4e:c4:65:30:9d:24:29:
d7:b2:9a:5b:32:0e:c5:c1:31:ec:76:7d:5c:9f:e5:
6e:42:1d:f7:35:3c:74:e5:0a:a7:22:0f:ff:ca:38:
0f:2b:57:f6:d4:01:80:c1:bd:b7:9b:c4:75:ce:f5:
d3:97:90:d4:64:61:b2:a1:bc:3e:2c:b6:4c:ac:20:
15:a3:7b:4b:7d:fa:54:aa:17:03:17:c6:e9:66:41:
0a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:67:23:7D:41:3A:29:22:84:B2:7F:7E:03:B5:FE:5E:8B:17:EB:FA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/81C07518245111F0B0628FE8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.234.0-45.194.243.255
Signature Algorithm: sha256WithRSAEncryption
1e:0d:ee:dc:87:3b:8e:c8:1b:43:50:05:8c:d2:e1:8f:39:b0:
d1:b9:30:fe:e1:e9:8d:d2:43:6a:74:db:c8:9a:66:f7:ef:61:
fd:51:ac:aa:f2:ff:34:38:eb:c0:c2:5b:38:c3:4e:82:8f:0f:
84:e6:73:dc:4f:c3:9b:af:7d:c6:a3:cd:dd:3d:14:8d:c6:c2:
31:f2:75:fb:5d:4c:32:12:4b:5a:89:5b:12:7a:a6:c7:74:3e:
86:33:b3:a4:86:57:35:98:d9:b6:f5:5b:98:2e:cd:71:64:0f:
02:30:56:63:f0:a5:a3:1a:5e:83:39:33:fa:62:06:6b:39:08:
ad:c5:b9:db:c4:5b:38:a7:58:15:b0:a9:d9:e2:11:96:af:89:
06:37:2a:ba:eb:3f:91:38:47:29:c8:88:f8:cd:45:08:39:eb:
f7:83:b3:cc:9f:86:81:11:d2:47:d6:93:e1:93:cd:89:63:71:
a2:79:4e:d5:3e:81:ff:10:0a:78:dd:cb:a8:ba:63:b2:16:67:
10:f0:df:72:ef:9f:81:80:29:5e:df:7e:42:54:4f:be:ff:55:
da:f1:32:f2:b9:ec:3a:d4:99:e7:25:48:99:9e:4e:1e:a7:e0:
39:7d:79:1b:dc:d9:3f:34:5e:4f:3b:3f:17:b4:ce:9a:5d:b4:
4c:84:cd:c7
-----BEGIN CERTIFICATE-----
MIIFiTCCBHGgAwIBAgIDAU/LMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNDI4MTY1NDUwWhcNMjYwNDI4MTY1NDUwWjAYMRYw
FAYDVQQDEw02ODBmYjJkZS0zNzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0KM5Hostfuw5ialrS6Gw6anE/VwCju21MTb/RQvq1dxyAGzF+6a0TfxZ
nl7FSwboVbLv9Il7jHiZfgauOd92HHTUOahgj+j8P25I9Bd2/RS9CrkmL+fHFDzm
b8REVuJmUi0gDTWPSyWZV23Mjz8Q0FSQx8VhcGZFytVla7G3Ico0wZ1s4gnguDY7
GSIFNrxZ0jhzFr8055eF9bnJYOKixp7RcouRHDYHfTzDSk7EZTCdJCnXsppbMg7F
wTHsdn1cn+VuQh33NTx05QqnIg//yjgPK1f21AGAwb23m8R1zvXTl5DUZGGyobw+
LLZMrCAVo3tLffpUqhcDF8bpZkEK/QIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFJBn
I31BOikihLJ/fgO1/l6LF+v6MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC84MUMwNzUxODI0NTExMUYwQjA2MjhGRThEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAEtwuoDBAItwvAwDQYJKoZI
hvcNAQELBQADggEBAB4N7tyHO47IG0NQBYzS4Y85sNG5MP7h6Y3SQ2p028iaZvfv
Yf1RrKry/zQ468DCWzjDToKPD4Tmc9xPw5uvfcajzd09FI3GwjHydftdTDISS1qJ
WxJ6psd0PoYzs6SGVzWY2bb1W5guzXFkDwIwVmPwpaMaXoM5M/piBms5CK3FudvE
WzinWBWwqdniEZaviQY3KrrrP5E4RynIiPjNRQg56/eDs8yfhoER0kfWk+GTzYlj
caJ5TtU+gf8QCnjdy6i6Y7IWZxDw33Lvn4GAKV7ffkJUT77/VdrxMvK57DrUmecl
SJmeTh6n4Dl9eRvc2T80Xk87Pxe0zppdtEyEzcc=
-----END CERTIFICATE-----
Generated at Sun May 11 09:33:34 2025 by rpki-client