Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/94BAA4BC57FB11F096CCCA91DAE4EC9C.roa
File: 94BAA4BC57FB11F096CCCA91DAE4EC9C.roa (raw, json)
Hash identifier: MhcG+UUiof2Rw1AXGpy89IlR/KzezNPp/1zN+7Of8qE=
Subject key identifier: A6:B7:96:57:08:96:E5:33:E6:00:00:9B:7D:E6:24:11:E6:85:EE:B7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01604A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/94BAA4BC57FB11F096CCCA91DAE4EC9C.roa
Signing time: Thu 03 Jul 2025 10:50:49 +0000
ROA not before: Thu 03 Jul 2025 10:50:45 +0000
ROA not after: Tue 15 Jul 2025 10:50:45 +0000
asID: 133661
IP address blocks: 45.206.128.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Jul 2025 00:26:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90186 (0x1604a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 3 10:50:45 2025 GMT
Not After : Jul 15 10:50:45 2025 GMT
Subject: CN=68666089-d958
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:7c:f9:c1:e8:6f:d2:f2:1b:c5:6d:72:f9:cc:
28:2b:02:72:b1:f3:b2:4b:c0:33:ce:3a:04:d3:33:
b7:69:76:97:96:85:6d:c1:bd:be:44:d7:5d:49:88:
79:55:c5:5d:0d:30:60:84:7b:17:03:90:92:db:0a:
90:cd:6a:5e:35:5e:27:a2:83:26:8c:28:38:29:fd:
aa:ef:bf:e8:e4:82:31:02:78:84:82:c8:78:2b:a5:
3f:70:da:ab:3f:d3:18:f2:0c:1e:ea:bb:c3:06:da:
88:56:88:b6:da:45:07:38:a2:99:0e:21:7a:89:69:
e9:72:e9:86:c3:b8:7e:0a:e2:2c:5f:d9:57:78:96:
de:53:c4:62:a8:17:f7:c3:03:8c:44:ee:09:b6:e2:
46:d2:7f:c2:c2:f1:ef:a1:7f:88:fc:d5:09:ed:76:
60:42:df:a2:47:68:ee:ef:63:57:e8:f7:11:db:93:
1d:c9:66:53:35:32:de:69:f5:9d:66:7d:d8:28:0c:
8d:09:73:6e:bf:3c:e0:c5:3c:f3:29:14:7b:7c:3b:
36:c3:f8:4d:d0:96:a2:e0:2f:24:4a:89:0a:07:74:
50:76:14:33:6a:57:db:f1:fe:cc:17:48:00:2d:e7:
9c:12:3a:01:85:42:27:20:18:25:43:65:50:9c:8a:
ab:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:B7:96:57:08:96:E5:33:E6:00:00:9B:7D:E6:24:11:E6:85:EE:B7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/94BAA4BC57FB11F096CCCA91DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.128.0/17
Signature Algorithm: sha256WithRSAEncryption
61:c4:17:b2:a2:da:8e:64:36:7e:34:20:80:86:40:c1:a8:78:
fd:6b:43:82:7d:ab:7a:a4:08:a5:bc:25:ec:5f:b9:7c:2c:f1:
24:f2:3c:39:eb:42:88:5e:81:ee:f9:5e:e8:b8:54:87:4c:5b:
77:ae:2c:08:6b:c3:d1:03:12:55:e4:6c:4d:e1:0c:2a:2c:58:
46:8b:65:fb:6c:22:2f:00:eb:d4:f0:85:9a:40:84:93:38:ae:
f2:e6:27:2c:31:e0:b4:69:9b:76:0d:a0:6b:cb:d6:73:df:25:
6f:63:38:bf:d5:be:df:f2:1e:c0:02:68:d0:ad:53:3f:b3:73:
35:ec:bd:23:8b:d5:b5:58:1d:d8:92:82:9c:ea:12:5d:36:8c:
fc:01:e6:13:35:cb:b2:bd:91:92:26:df:b3:49:f3:d6:32:37:
b5:61:a8:09:f6:a5:34:55:9b:e7:15:c5:fa:ca:b6:55:ab:06:
9d:01:ed:3c:0c:17:65:fe:5f:d6:1b:7d:3d:d2:3b:ae:8f:94:
54:ae:60:b5:d8:35:1b:29:06:27:54:18:26:ee:c8:c9:f5:2b:
04:c1:c5:38:f5:94:1d:da:84:88:58:16:92:7b:e5:64:0e:0a:
24:b6:65:e6:0e:ed:70:5c:48:2a:40:7b:ac:1b:bf:17:53:9e:
dd:ab:93:fb
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAWBKMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNzAzMTA1MDQ1WhcNMjUwNzE1MTA1MDQ1WjAYMRYw
FAYDVQQDEw02ODY2NjA4OS1kOTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA4nz5wehv0vIbxW1y+cwoKwJysfOyS8AzzjoE0zO3aXaXloVtwb2+RNdd
SYh5VcVdDTBghHsXA5CS2wqQzWpeNV4nooMmjCg4Kf2q77/o5IIxAniEgsh4K6U/
cNqrP9MY8gwe6rvDBtqIVoi22kUHOKKZDiF6iWnpcumGw7h+CuIsX9lXeJbeU8Ri
qBf3wwOMRO4JtuJG0n/CwvHvoX+I/NUJ7XZgQt+iR2ju72NX6PcR25MdyWZTNTLe
afWdZn3YKAyNCXNuvzzgxTzzKRR7fDs2w/hN0Jai4C8kSokKB3RQdhQzalfb8f7M
F0gALeecEjoBhUInIBglQ2VQnIqr3wIDAQABo4ICojCCAp4wHQYDVR0OBBYEFKa3
llcIluUz5gAAm33mJBHmhe63MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC85NEJBQTRCQzU3RkIxMUYwOTZDQ0NBOTFEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHLc6AMA0GCSqGSIb3DQEBCwUA
A4IBAQBhxBeyotqOZDZ+NCCAhkDBqHj9a0OCfat6pAilvCXsX7l8LPEk8jw560KI
XoHu+V7ouFSHTFt3riwIa8PRAxJV5GxN4QwqLFhGi2X7bCIvAOvU8IWaQISTOK7y
5icsMeC0aZt2DaBry9Zz3yVvYzi/1b7f8h7AAmjQrVM/s3M17L0ji9W1WB3YkoKc
6hJdNoz8AeYTNcuyvZGSJt+zSfPWMje1YagJ9qU0VZvnFcX6yrZVqwadAe08DBdl
/l/WG3090juuj5RUrmC12DUbKQYnVBgm7sjJ9SsEwcU49ZQd2oSIWBaSe+VkDgok
tmXmDu1wXEgqQHusG78XU57dq5P7
-----END CERTIFICATE-----
Generated at Fri Jul 4 13:36:45 2025 by rpki-client