Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C569E364541F11F09D2A5A7ADAE4EC9C.roa
File: C569E364541F11F09D2A5A7ADAE4EC9C.roa (raw, json)
Hash identifier: mjQr9Tz7GQjqKUKCKWl/M9XZDWrHvdH0Wbuosr4afos=
Subject key identifier: 31:85:D7:9E:C5:D3:4C:FF:31:D2:19:F0:2B:05:9F:22:FB:FD:DE:BA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015F1B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C569E364541F11F09D2A5A7ADAE4EC9C.roa
Signing time: Sat 28 Jun 2025 12:59:48 +0000
ROA not before: Sat 28 Jun 2025 12:59:44 +0000
ROA not after: Tue 29 Jul 2025 12:59:44 +0000
asID: 214143
IP address blocks: 45.197.135.0/24 maxlen: 24
45.198.69.0/24 maxlen: 24
45.198.75.0/24 maxlen: 24
45.198.81.0/24 maxlen: 24
45.198.84.0/24 maxlen: 24
45.198.86.0/24 maxlen: 24
45.198.89.0/24 maxlen: 24
45.198.90.0/24 maxlen: 24
45.198.97.0/24 maxlen: 24
45.198.104.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Jul 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89883 (0x15f1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 28 12:59:44 2025 GMT
Not After : Jul 29 12:59:44 2025 GMT
Subject: CN=685fe744-8ded
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ad:6c:be:16:22:ff:08:f4:04:9d:de:bc:e7:
06:a6:a6:a4:61:78:06:65:4b:03:6b:f7:43:93:12:
70:21:6a:fe:b1:c9:c4:10:4c:bc:bd:15:0e:d6:64:
3e:06:d8:0c:b2:bb:3e:3b:9b:0f:d8:53:16:80:11:
20:21:44:37:3d:b0:84:01:3b:d0:33:72:b5:ef:85:
42:30:f2:01:94:6f:c6:e1:79:e8:c1:bc:19:d4:04:
c0:e7:00:0f:34:46:9a:fd:22:2f:9e:2b:46:a0:03:
1f:72:c1:5d:44:9e:98:eb:44:3d:8d:83:e0:3c:6f:
c8:39:7b:e8:61:6a:bc:fb:02:9f:c4:95:62:93:4e:
13:31:66:09:0c:63:9d:be:8e:44:d7:9d:3c:da:57:
8a:9d:da:05:df:e0:e8:91:fb:c2:92:7d:78:b9:eb:
e1:43:b6:60:52:d6:07:67:fb:6a:78:a8:1c:30:1d:
38:52:4c:7c:fc:e4:29:5f:f4:01:a2:ed:79:26:58:
1e:af:28:2e:16:96:52:ed:94:8e:08:f5:da:8f:3b:
71:3b:c7:6e:12:44:1a:27:4b:12:94:e8:9b:3e:b2:
c6:a1:2c:03:7f:f1:9c:77:72:e5:18:5b:94:19:79:
6a:d5:74:b6:4c:bb:1f:88:4e:c8:52:12:ae:2a:be:
7d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:85:D7:9E:C5:D3:4C:FF:31:D2:19:F0:2B:05:9F:22:FB:FD:DE:BA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C569E364541F11F09D2A5A7ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.135.0/24
45.198.69.0/24
45.198.75.0/24
45.198.81.0/24
45.198.84.0/24
45.198.86.0/24
45.198.89.0-45.198.90.255
45.198.97.0/24
45.198.104.0/24
Signature Algorithm: sha256WithRSAEncryption
20:4c:98:d2:93:3f:3f:5d:01:24:6e:80:30:48:ef:08:3a:ba:
05:88:ab:93:69:8f:97:92:e2:20:a8:fe:63:03:d4:43:fe:70:
13:d1:94:d5:0d:cb:96:e1:21:d2:62:23:8f:5f:bc:b1:26:d8:
79:d1:9a:e3:01:fe:be:83:87:63:cd:fa:5f:0d:dc:de:87:00:
df:37:70:9a:bd:4b:78:5b:29:31:fd:58:24:e7:34:96:80:b1:
97:21:c6:f5:ee:fb:53:16:c8:60:b9:a5:da:0a:e8:67:b5:7d:
cb:bb:ab:ef:8a:2e:3d:5e:57:1c:65:e0:47:9c:22:be:3d:73:
46:8b:cf:b4:a3:c7:9a:7c:ca:7e:5f:2a:08:a2:17:a6:8b:0c:
a2:58:35:03:10:eb:1e:2b:07:55:ab:7f:4e:34:25:4d:ec:4e:
70:00:9a:1a:c5:04:4b:da:2e:e0:00:3a:be:1a:5d:f4:a5:9d:
fe:d3:c9:60:a7:f1:ed:d2:69:4a:8c:24:1b:31:48:57:8e:8d:
f5:98:5d:9e:a1:73:48:02:7e:b9:24:d7:07:bf:ea:88:8e:60:
85:e3:8b:42:d1:eb:6b:98:52:47:08:3d:7a:c1:dd:d6:3d:d1:
82:fd:b1:9e:b7:64:ea:50:0b:2b:96:75:87:5f:3b:a6:a5:0a:
96:55:ef:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 20:03:06 2025 by rpki-client