Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CEA2ADF876B111F08B0B2C7CDAE4EC9C.roa
File: CEA2ADF876B111F08B0B2C7CDAE4EC9C.roa (raw, json)
Hash identifier: 7nEcHDftEMsqs4GverO/kxCAouBvMJYMoWiup7mhNqU=
Subject key identifier: FD:9A:3F:2D:63:77:08:76:17:4A:DE:70:47:AE:40:D6:33:4B:4F:76
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016A22
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CEA2ADF876B111F08B0B2C7CDAE4EC9C.roa
Signing time: Mon 11 Aug 2025 12:50:50 +0000
ROA not before: Mon 11 Aug 2025 12:50:45 +0000
ROA not after: Sun 14 Sep 2025 12:50:45 +0000
asID: 147176
IP address blocks: 45.201.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92706 (0x16a22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 11 12:50:45 2025 GMT
Not After : Sep 14 12:50:45 2025 GMT
Subject: CN=6899e72a-7474
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:67:79:f7:71:5f:8f:c7:af:98:18:94:9d:69:
18:49:87:3a:00:02:0d:96:52:2b:00:5e:85:bd:d1:
50:5b:0b:f2:65:96:c6:46:3d:1d:7c:aa:a7:85:13:
53:3c:7b:51:b4:9f:98:c4:1c:2c:b2:4f:18:2c:9c:
4e:da:f6:69:ee:28:17:a5:b7:6d:f2:20:c6:f3:0c:
63:e4:c4:3a:c8:61:3c:06:1a:34:77:d0:a5:10:8c:
13:74:c0:65:37:a1:ba:77:ff:b3:c2:ef:c5:65:ca:
2a:1e:2a:04:21:e9:d3:81:c8:a1:9a:59:1e:d3:be:
18:9f:ce:53:01:f6:62:c9:57:57:0b:8e:ea:2f:e9:
8a:b6:1f:5e:0f:63:80:69:f1:47:91:9a:38:4e:5e:
b0:0b:be:f9:42:94:39:94:d4:87:ea:3d:e2:27:18:
e3:43:53:17:18:f4:e5:6e:13:6b:55:21:a4:96:57:
32:e1:c5:dc:43:9c:cc:4c:21:d9:35:c3:24:ed:5d:
32:d0:2f:43:03:da:8e:e7:8e:dc:45:76:22:00:78:
24:8e:2c:29:23:66:88:28:7e:fa:b6:67:1b:1c:d9:
57:e6:07:9a:9b:13:22:34:df:9c:7e:80:04:72:14:
1a:f3:f8:67:7c:d2:c7:23:91:59:3c:0b:75:3f:2e:
60:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:9A:3F:2D:63:77:08:76:17:4A:DE:70:47:AE:40:D6:33:4B:4F:76
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CEA2ADF876B111F08B0B2C7CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.9.0/24
Signature Algorithm: sha256WithRSAEncryption
75:7d:f3:11:b9:ad:7e:c9:7c:f6:fb:b9:34:46:cd:03:2d:4f:
72:2f:0e:57:b2:e2:1f:b9:0a:65:65:8d:01:5d:87:cb:af:fb:
a0:de:ae:81:5d:94:43:8a:3d:c5:63:9f:3b:a1:56:c3:58:c7:
72:0d:78:88:3b:f2:b1:25:1f:70:59:77:fa:79:20:b3:14:1c:
4a:2c:69:e2:48:e9:d4:20:2d:65:c8:b7:6e:6b:84:05:1e:5c:
fb:5f:9b:e0:bf:67:bc:f6:44:43:48:23:3d:43:23:b3:53:fb:
33:9a:7d:8a:a1:10:b5:ce:31:a9:7a:2f:f5:94:f8:c9:33:09:
77:21:86:cb:e0:d1:4b:4f:7d:c1:36:bb:47:87:fb:6c:23:ec:
5c:d5:db:70:66:a4:7d:75:a0:a3:21:b9:fd:88:4b:88:b4:84:
02:33:c5:c4:3c:ef:94:ef:0a:55:a4:e1:e7:e1:19:9a:08:c2:
ab:18:37:f6:81:cf:05:0f:56:bf:03:80:cc:6a:92:89:10:f2:
25:af:16:fd:0e:27:44:36:f4:98:4e:69:da:94:d0:b2:73:5b:
22:b5:8d:ed:af:e9:8a:45:62:6a:fe:0c:6d:41:e2:aa:73:a8:
94:db:a9:72:8d:98:52:d9:4d:11:6b:66:43:55:cf:25:4e:c4:
11:ac:60:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:01:46 2025 by rpki-client