Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D39EEBC679BA11F0BC534FCADAE4EC9C.roa
File: D39EEBC679BA11F0BC534FCADAE4EC9C.roa (raw, json)
Hash identifier: e/xIqTns+q0rMDqABeykzlTzLA/vKr7yJKOj3Dv9x8U=
Subject key identifier: EB:D5:1E:C0:5A:32:CE:0C:49:0B:28:F7:83:71:0D:24:55:4D:00:2B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016B3C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D39EEBC679BA11F0BC534FCADAE4EC9C.roa
Signing time: Fri 15 Aug 2025 09:32:57 +0000
ROA not before: Fri 15 Aug 2025 09:32:51 +0000
ROA not after: Thu 20 Nov 2025 09:32:51 +0000
asID: 272018
IP address blocks: 45.198.56.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92988 (0x16b3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 09:32:51 2025 GMT
Not After : Nov 20 09:32:51 2025 GMT
Subject: CN=689efec9-498e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:37:10:95:fd:67:ea:41:87:3d:95:78:6f:ae:
28:5d:45:90:82:f1:83:18:d7:9d:c3:43:ec:e1:c5:
75:d6:a2:f5:84:31:2c:2f:14:62:d0:8d:06:f0:37:
5d:1b:32:72:1b:79:05:ac:16:d0:11:09:63:69:e1:
d4:52:69:d2:45:23:7f:ec:5d:f6:2a:18:eb:83:4c:
8c:3d:48:4d:f0:8d:25:f3:81:5c:4c:c9:54:e4:d9:
0d:8a:ff:d7:df:24:3e:1a:6e:02:ac:76:1d:6a:8e:
10:e8:b6:db:53:8d:dc:e5:e6:51:fb:70:8e:9d:c2:
dd:ed:f6:91:ea:b8:27:04:22:15:a8:dc:7f:2c:e2:
42:0d:e8:20:f5:f3:b2:c1:42:a3:93:94:d7:4d:bd:
3c:a0:e1:31:53:dd:83:b0:e3:cb:70:5c:71:62:d3:
01:7e:dd:5b:9f:c3:73:e5:78:f7:c1:af:aa:b1:01:
b6:6d:a3:12:46:30:d7:ae:e9:ff:03:cf:96:82:89:
04:5a:d8:60:6f:26:18:16:06:4b:1f:5c:7f:9e:88:
1c:a0:e6:7d:40:4c:38:ca:f0:2f:48:fa:bf:5e:39:
fc:32:c6:d2:77:ca:28:5e:86:a0:46:d2:de:b6:86:
14:18:1f:75:56:43:e0:78:c5:73:b4:95:9e:6e:3f:
9c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:D5:1E:C0:5A:32:CE:0C:49:0B:28:F7:83:71:0D:24:55:4D:00:2B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D39EEBC679BA11F0BC534FCADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.56.0/23
Signature Algorithm: sha256WithRSAEncryption
75:32:65:be:ea:f3:8c:7c:2a:80:67:c8:4e:19:13:7b:60:e1:
e8:2e:31:78:0d:14:27:e9:cd:3a:eb:2b:d0:3d:86:45:97:78:
b2:ef:4f:09:1e:e4:de:a2:f4:a4:42:b1:d1:96:4f:70:05:3f:
97:fd:74:12:27:5b:1e:c1:fe:24:73:7c:81:39:77:2b:0d:ed:
8f:be:54:15:3a:b4:f4:93:51:af:92:33:07:45:57:57:83:ef:
5c:8e:d3:cb:4b:34:f2:e3:7b:da:ba:e1:fc:7f:1f:d5:ed:d6:
a3:24:c1:e1:0e:28:ab:1b:bb:d7:f1:d0:ae:d8:fb:e9:37:d6:
e7:e8:ad:60:42:86:e8:be:ea:e8:95:5a:bf:1d:f6:8c:89:0c:
33:21:d7:55:22:18:7e:53:39:0e:cb:6a:59:81:cb:c5:8c:05:
60:ec:0b:dc:f7:cf:58:e2:e2:ac:86:05:ca:db:20:98:b1:d5:
68:b6:cf:75:9c:07:40:cb:1e:b2:ad:c6:d9:3a:9a:9f:27:48:
71:0f:99:5a:8d:c5:04:a0:09:45:02:9a:ea:28:08:38:75:d3:
38:cc:83:db:58:88:11:98:32:39:a9:99:45:82:cd:61:2e:7f:
41:fc:81:e1:2e:d0:ba:ff:69:db:ee:af:16:06:49:c7:b3:f7:
c2:c5:d8:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:52:28 2025 by rpki-client