Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/00531242246A11F0A02CD58CDAE4EC9C.roa
File: 00531242246A11F0A02CD58CDAE4EC9C.roa (raw, json)
Hash identifier: Q9yowRsfPCSWmWGwZQ17UIctBz4mm1v4OZTzMKEGn/w=
Subject key identifier: CD:15:9E:DC:E5:6D:6B:54:E1:E8:7E:93:E3:F7:7D:BA:4B:79:4B:F9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014FDF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/00531242246A11F0A02CD58CDAE4EC9C.roa
Signing time: Mon 28 Apr 2025 19:50:14 +0000
ROA not before: Mon 28 Apr 2025 19:50:10 +0000
ROA not after: Sun 08 Jun 2025 19:50:10 +0000
asID: 205125
IP address blocks: 45.196.106.0/24 maxlen: 24
45.204.73.0/24 maxlen: 24
45.204.75.0/24 maxlen: 24
45.207.2.0/24 maxlen: 24
45.207.3.0/24 maxlen: 24
45.207.6.0/24 maxlen: 24
45.207.148.0/24 maxlen: 24
45.207.149.0/24 maxlen: 24
45.207.150.0/24 maxlen: 24
45.207.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 12 May 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85983 (0x14fdf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 28 19:50:10 2025 GMT
Not After : Jun 8 19:50:10 2025 GMT
Subject: CN=680fdbf6-6952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:da:94:6b:c2:5c:cd:21:91:1f:30:f0:64:bb:
c5:87:6e:72:47:3b:c5:ad:55:51:b9:84:a2:f3:8a:
e1:29:0e:b6:97:16:ac:85:4a:2b:a1:1d:c7:f1:80:
e2:57:fa:53:9b:28:cc:34:76:49:cb:98:97:cd:e7:
ce:52:7d:dc:dd:47:71:20:79:ee:31:ff:94:02:ad:
4e:dd:12:90:d8:93:ae:96:25:50:c7:67:e8:dc:a1:
d5:53:7b:38:85:26:2c:31:b5:5c:ab:bf:0a:b8:49:
06:27:d6:0f:50:40:49:1f:29:de:a4:1e:cb:a7:41:
d3:97:29:c2:bd:52:d2:f0:72:08:46:49:ce:c7:8f:
e2:19:98:e1:86:97:ab:33:8b:92:58:d8:cb:ce:89:
b8:2e:08:df:e6:2a:40:73:89:3e:3d:e5:45:f5:c4:
2e:b0:48:7c:8d:9d:ae:75:3b:29:da:a9:85:15:d2:
eb:a5:24:6a:3b:d4:82:0b:fe:d7:9c:57:2d:49:87:
f7:07:11:8e:92:c7:30:6f:e5:ca:29:04:5b:cd:14:
ab:6e:9a:70:34:4f:af:fc:fc:61:1f:a6:9e:9b:dd:
89:78:4f:1e:2c:96:8a:db:8d:fa:ec:45:cf:77:8b:
79:f7:5b:4c:b4:90:dd:0f:e3:ae:fd:10:64:26:db:
6d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:15:9E:DC:E5:6D:6B:54:E1:E8:7E:93:E3:F7:7D:BA:4B:79:4B:F9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/00531242246A11F0A02CD58CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.106.0/24
45.204.73.0/24
45.204.75.0/24
45.207.2.0/23
45.207.6.0/24
45.207.148.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:e0:aa:e9:7c:10:e9:27:69:8e:1b:19:26:f3:20:66:14:11:
99:4b:8d:0c:8f:5f:24:48:4f:68:69:95:1a:6c:d6:f6:7c:71:
e7:62:e3:7f:de:47:08:a1:fd:27:5e:ab:95:7f:ac:a4:a1:f3:
3d:e3:14:46:b6:ee:42:d4:dd:f0:84:6d:25:99:73:17:fc:ec:
ab:b5:7b:fe:c5:92:ce:36:eb:c8:f2:84:b3:bd:1e:64:7a:23:
a0:74:12:b6:b0:8a:94:d6:ef:33:6d:d5:bf:29:3d:f2:bb:9b:
e3:04:27:70:97:10:09:98:92:a4:f2:3f:06:4b:6e:98:2c:2c:
19:9e:ea:2f:b5:92:f7:06:61:31:d2:b2:62:3b:4f:72:f9:05:
b3:db:e8:86:1a:98:64:7c:02:f3:6f:99:97:43:88:b9:18:b6:
f1:92:0d:a5:9a:b4:4b:7a:7f:83:59:aa:68:7b:f7:23:98:27:
f4:20:7b:ea:ce:46:51:71:65:fe:bf:68:41:67:8d:4d:d5:cf:
de:13:6a:9d:72:96:d7:9f:6a:17:48:bd:f8:fa:a2:31:5f:80:
9f:04:32:b3:c9:90:0c:c2:f4:df:51:d2:34:d4:bd:e9:db:bc:
ea:33:7e:fa:ec:87:6c:9d:6a:7c:59:01:91:6b:70:19:9b:d6:
91:a5:bc:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 07:23:49 2025 by rpki-client