Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0E16D12C243611F08300B4B4DAE4EC9C.roa
File: 0E16D12C243611F08300B4B4DAE4EC9C.roa (raw, json)
Hash identifier: NbXmp+usYBUxVS8nZeNp4W298JZsiAXLMNflEooauZM=
Subject key identifier: 4C:DD:83:E9:0F:11:C8:67:CE:B3:8E:28:F6:7E:B1:20:8F:B2:0A:AA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014F38
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0E16D12C243611F08300B4B4DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 13:38:23 +0000
ROA not before: Mon 28 Apr 2025 13:38:19 +0000
ROA not after: Tue 03 Jun 2025 13:38:19 +0000
asID: 61112
IP address blocks: 45.196.215.0/24 maxlen: 24
45.196.222.0/24 maxlen: 24
45.207.156.0/23 maxlen: 24
45.207.158.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 14 May 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85816 (0x14f38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 28 13:38:19 2025 GMT
Not After : Jun 3 13:38:19 2025 GMT
Subject: CN=680f84cf-55c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:86:4b:bd:01:1f:31:84:d2:84:2e:f9:6e:4b:
9b:64:59:10:e8:92:ca:f7:25:1c:45:4b:c9:0b:4a:
e2:87:75:96:8a:d0:18:23:78:a6:61:45:68:71:3e:
85:64:ee:df:3f:69:d7:b4:63:c7:35:a1:2a:ca:c9:
f3:b7:d5:d8:c8:b9:c9:16:62:66:83:6e:78:b3:f8:
56:2b:16:11:11:b5:46:da:a4:58:b2:49:64:ee:af:
13:03:f0:e1:91:3a:e3:24:15:8d:5b:95:cb:29:d2:
96:bc:67:8b:98:95:50:a5:38:8e:b3:32:68:4f:74:
a4:b5:13:3a:24:5f:5b:f1:08:67:af:21:cc:6e:46:
9b:24:bf:74:c4:f2:35:48:a7:ec:71:e9:cc:bf:9d:
9e:b7:c8:b0:87:6f:09:88:e2:e7:88:ca:2d:83:7f:
6d:6a:79:c0:86:32:5e:d7:39:ce:bf:f0:88:1d:94:
be:fd:7a:98:64:ba:de:37:e1:49:c6:19:d7:92:df:
72:81:d3:1f:0b:e2:44:fa:65:85:7c:8d:fe:77:03:
6a:0e:4b:d4:80:15:22:9a:62:39:3b:bf:fb:c7:52:
cb:37:6e:46:05:95:2a:81:33:bb:e6:39:99:f3:97:
72:ec:7c:05:0a:ed:da:1a:40:7d:ce:76:8f:81:a4:
da:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:DD:83:E9:0F:11:C8:67:CE:B3:8E:28:F6:7E:B1:20:8F:B2:0A:AA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0E16D12C243611F08300B4B4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.215.0/24
45.196.222.0/24
45.207.156.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:ce:7e:b8:b1:a5:86:ae:cc:67:4a:41:86:ad:c1:60:f9:e3:
0e:8a:bf:83:74:52:b7:86:7d:47:a7:70:cd:6b:d7:b0:5e:cc:
9b:1e:6f:4e:ef:08:9c:0c:d4:7c:1e:59:ee:92:6a:d4:25:18:
b1:55:f6:fd:55:69:0f:cd:5f:f5:be:ec:ff:57:a0:46:51:0b:
88:9d:90:72:c8:e3:f6:86:c2:b3:e2:6b:17:9c:cd:e8:5f:b9:
98:a9:11:26:e2:77:1f:a5:ae:54:02:04:ba:3d:d7:77:07:92:
4b:0f:33:a8:18:81:a4:64:82:0f:5b:b9:c0:63:0d:07:51:bf:
9a:73:73:9e:d0:a6:ed:c6:7f:b2:32:57:82:3b:8f:c6:ef:b2:
f4:bc:d8:eb:47:17:0f:4a:05:5f:37:07:b6:70:df:4c:7f:1e:
69:96:8a:29:8b:1f:39:1a:e4:33:ce:86:d3:26:5a:84:46:5e:
fc:15:2b:77:1c:cc:a3:19:c2:4e:63:b3:d6:77:b1:5f:60:76:
ad:c7:f4:1a:b9:5a:02:ce:42:2a:ac:e3:f9:9a:b0:f9:3c:85:
5d:ac:d8:35:bf:31:c2:80:a0:06:a5:b6:1e:bf:e3:57:b3:e8:
cf:bc:fc:08:1c:9b:97:db:3e:59:b3:a5:ed:ea:ad:22:f3:5e:
be:93:41:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 07:22:36 2025 by rpki-client