Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DFF0F5062B2011F097A32C86DAE4EC9C.roa
File: DFF0F5062B2011F097A32C86DAE4EC9C.roa (raw, json)
Hash identifier: Txd5GYDdadL4InH7rgpsyH1wiloy5CqKjhFCfW6G104=
Subject key identifier: 51:D6:39:D4:7D:5C:D6:D9:B2:3B:87:42:91:A9:A3:72:1B:B1:F5:2F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015276
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DFF0F5062B2011F097A32C86DAE4EC9C.roa
Signing time: Wed 07 May 2025 08:54:25 +0000
ROA not before: Wed 07 May 2025 08:54:20 +0000
ROA not after: Thu 12 Jun 2025 08:54:20 +0000
asID: 395886
IP address blocks: 45.207.192.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 12 May 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86646 (0x15276)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 7 08:54:20 2025 GMT
Not After : Jun 12 08:54:20 2025 GMT
Subject: CN=681b1fc1-aba1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0b:9c:a6:c0:60:22:2a:33:94:c7:ce:16:aa:
aa:f1:03:4c:b6:4e:eb:f7:66:ba:0a:cf:13:57:18:
53:66:a5:63:8d:d0:7d:eb:39:08:54:9e:51:d5:e8:
4c:44:0a:ba:1e:c8:7b:d6:9d:5e:af:f6:de:79:57:
44:bd:75:2d:2d:92:7c:3d:a1:53:2d:76:01:ad:ec:
3e:03:6b:f2:0e:a2:33:06:11:48:e3:2f:59:08:cf:
d3:08:c5:fd:65:96:ef:99:32:39:66:c9:c1:9b:09:
69:81:a5:7c:9f:b0:18:25:09:72:f1:92:22:d3:0a:
b7:99:86:0b:39:60:3f:64:ad:c9:30:ec:f9:7b:da:
95:ba:c2:34:f5:71:76:18:f1:1e:22:cf:38:2d:0c:
37:0e:02:88:ef:6e:06:2d:aa:8e:66:99:b4:7c:93:
c2:73:46:df:32:77:c8:b1:a7:7a:31:ef:85:13:74:
c2:c2:4d:98:c7:c6:06:15:b8:c9:84:bc:49:c9:3c:
81:77:08:96:10:86:71:e5:eb:d8:ef:5b:19:45:24:
e4:0f:b6:02:b1:8b:0e:aa:9a:ad:21:23:17:0f:2c:
45:91:ef:a6:7b:cf:7f:87:86:00:eb:87:1e:c5:25:
7e:c6:d5:86:57:87:b3:7c:c1:cf:58:d1:ed:50:4d:
b1:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:D6:39:D4:7D:5C:D6:D9:B2:3B:87:42:91:A9:A3:72:1B:B1:F5:2F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DFF0F5062B2011F097A32C86DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.192.0/19
Signature Algorithm: sha256WithRSAEncryption
1a:5d:8e:91:3f:8d:15:16:5b:03:5a:64:8f:1d:ed:e2:05:4c:
02:09:3c:b8:fc:99:9e:2c:f2:9c:69:1c:c3:be:b6:fd:d3:c5:
ec:c1:ec:0b:2d:e4:ec:07:95:7a:c3:d2:ef:36:88:5d:fd:97:
dd:66:99:de:e9:e0:37:10:c2:3b:38:38:25:fd:6c:10:02:3f:
aa:fd:07:76:f0:28:3d:04:cd:fe:fc:6c:a1:35:af:6e:95:65:
93:bf:3b:39:12:e0:6d:02:26:e5:94:7b:16:d9:a4:44:70:44:
4d:45:64:47:7b:86:63:b7:f4:ce:3d:89:2f:5b:fa:d1:ce:a2:
78:ae:78:44:7a:4c:c1:c5:43:8d:bb:40:c5:44:b9:df:99:1e:
fc:81:76:2c:77:39:ff:b3:fc:ec:df:55:3f:6a:ef:4e:5f:de:
7b:d2:a7:c0:61:8e:46:ba:22:a4:92:41:20:1e:0d:cf:a7:40:
3c:44:3e:7a:57:bf:2b:d5:33:1a:63:7a:f0:04:1a:47:93:f7:
eb:75:76:c1:07:f9:10:6e:81:8a:49:75:78:6d:c3:e9:64:64:
ff:d8:3e:2e:07:31:e5:c5:bc:d7:ba:97:c2:14:e8:fc:28:f4:
1e:0f:36:f8:f4:1c:dc:1e:fe:2c:b7:20:ff:00:70:38:df:ea:
1f:f5:c9:2b
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAVJ2MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNTA3MDg1NDIwWhcNMjUwNjEyMDg1NDIwWjAYMRYw
FAYDVQQDEw02ODFiMWZjMS1hYmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqwucpsBgIiozlMfOFqqq8QNMtk7r92a6Cs8TVxhTZqVjjdB96zkIVJ5R
1ehMRAq6Hsh71p1er/beeVdEvXUtLZJ8PaFTLXYBrew+A2vyDqIzBhFI4y9ZCM/T
CMX9ZZbvmTI5ZsnBmwlpgaV8n7AYJQly8ZIi0wq3mYYLOWA/ZK3JMOz5e9qVusI0
9XF2GPEeIs84LQw3DgKI724GLaqOZpm0fJPCc0bfMnfIsad6Me+FE3TCwk2Yx8YG
FbjJhLxJyTyBdwiWEIZx5evY71sZRSTkD7YCsYsOqpqtISMXDyxFke+me89/h4YA
64cexSV+xtWGV4ezfMHPWNHtUE2xgwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFFHW
OdR9XNbZsjuHQpGpo3IbsfUvMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9ERkYwRjUwNjJCMjAxMUYwOTdBMzJDODZEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFLc/AMA0GCSqGSIb3DQEBCwUA
A4IBAQAaXY6RP40VFlsDWmSPHe3iBUwCCTy4/JmeLPKcaRzDvrb908XswewLLeTs
B5V6w9LvNohd/ZfdZpne6eA3EMI7ODgl/WwQAj+q/Qd28Cg9BM3+/GyhNa9ulWWT
vzs5EuBtAibllHsW2aREcERNRWRHe4Zjt/TOPYkvW/rRzqJ4rnhEekzBxUONu0DF
RLnfmR78gXYsdzn/s/zs31U/au9OX9570qfAYY5GuiKkkkEgHg3Pp0A8RD56V78r
1TMaY3rwBBpHk/frdXbBB/kQboGKSXV4bcPpZGT/2D4uBzHlxbzXupfCFOj8KPQe
Dzb49BzcHv4styD/AHA43+of9ckr
-----END CERTIFICATE-----
Generated at Sat May 10 19:28:27 2025 by rpki-client