Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EF2E9E20450511F0AFDFF8A6DAE4EC9C.roa
File: EF2E9E20450511F0AFDFF8A6DAE4EC9C.roa (raw, json)
Hash identifier: ryu5Bq+SsTcpHx7O7rcO2kvhHLnD0nBt2VfWQv9PXD8=
Subject key identifier: 3E:FF:A8:6E:8D:4F:D8:A6:94:8B:6A:E7:DC:38:C3:C2:F9:E1:21:17
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015A6F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EF2E9E20450511F0AFDFF8A6DAE4EC9C.roa
Signing time: Mon 09 Jun 2025 07:47:04 +0000
ROA not before: Mon 09 Jun 2025 07:46:58 +0000
ROA not after: Wed 03 Sep 2025 07:46:58 +0000
asID: 135377
IP address blocks: 45.194.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 02 Jul 2025 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88687 (0x15a6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 9 07:46:58 2025 GMT
Not After : Sep 3 07:46:58 2025 GMT
Subject: CN=68469178-19eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b0:90:be:cc:d9:ab:ea:09:11:e1:d1:66:ab:
9a:6d:81:d8:21:c2:dd:78:2b:de:96:5e:e6:c0:0e:
32:81:bd:c3:f5:10:2b:9e:2a:44:13:62:b5:46:61:
dc:30:54:81:93:74:86:f1:00:1c:e0:4f:28:e6:de:
74:7b:45:31:a5:0d:58:30:b0:e6:a0:09:d1:ea:0a:
91:d3:ca:a8:89:c3:91:42:31:e3:cd:1c:72:63:14:
ec:91:60:d6:3e:b0:27:51:48:96:ab:d0:ac:08:a2:
da:80:22:ab:8e:70:e9:58:9a:8c:3f:76:cc:6a:fb:
f2:d6:f3:f5:2b:67:17:2a:9b:de:01:41:50:67:22:
34:1e:38:92:40:6d:42:ee:0d:3a:97:e8:ef:92:ff:
04:16:db:cf:a6:48:15:7e:e1:7e:bc:6f:a1:cc:0e:
c6:8f:74:bb:31:c6:4b:99:b5:79:72:61:6b:c4:a2:
27:b9:52:04:a9:53:2f:10:b5:59:a1:0b:f0:6d:7a:
36:7a:f9:4c:3e:a6:b2:0e:c1:a3:00:85:eb:2f:79:
14:54:d0:0b:1b:75:ff:f1:3a:6c:4c:50:41:16:20:
a7:1e:eb:cb:e1:8f:ac:ac:c7:35:b2:0c:15:65:49:
41:20:62:a2:18:0d:38:3f:32:32:73:5d:91:2a:ae:
a8:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:FF:A8:6E:8D:4F:D8:A6:94:8B:6A:E7:DC:38:C3:C2:F9:E1:21:17
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EF2E9E20450511F0AFDFF8A6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.68.0/24
Signature Algorithm: sha256WithRSAEncryption
26:15:cb:d6:56:42:cf:e7:f7:96:0d:19:10:a4:3a:26:e1:8f:
da:c1:62:32:0f:7c:2d:85:26:38:d1:ba:be:dc:1d:4c:e5:6f:
3a:86:26:03:27:a3:a8:e7:de:e5:c7:cc:0c:8b:7f:49:fa:2e:
09:01:ce:56:6e:70:9f:9c:8b:46:59:42:6b:be:9c:a8:b1:39:
5c:f2:85:30:56:5d:08:f0:85:dd:12:50:b6:f4:2e:e5:2b:5b:
57:1d:29:66:a1:5a:d0:d0:40:dc:f0:18:34:98:05:08:a4:df:
03:47:87:18:e5:2f:b3:50:be:06:e5:e6:34:da:a1:42:6e:8b:
89:0f:18:3e:de:05:9e:67:e0:ed:92:c7:ea:4c:ca:2e:b0:c2:
80:5a:d7:06:47:e6:00:86:e7:5c:df:4f:7c:ab:1d:87:35:7b:
f8:b9:2f:8e:ff:80:a0:60:a8:d7:f3:39:f5:0c:d6:3b:b2:d1:
7c:99:68:5a:96:aa:ff:2e:47:07:e9:6c:24:99:1d:52:b9:39:
e3:bf:8f:d0:98:13:e4:89:27:8c:36:04:a9:e1:5a:fc:fc:52:
19:9e:5d:81:89:08:d9:80:4b:ef:d5:f0:a0:7f:51:55:94:8d:
fa:bf:f0:99:39:2e:5c:93:29:ff:0a:cb:9a:fc:4b:76:f8:f7:
df:b4:24:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 23:41:08 2025 by rpki-client