Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/109DB14A242711F083B18ED0DAE4EC9C.roa
File: 109DB14A242711F083B18ED0DAE4EC9C.roa (raw, json)
Hash identifier: +DMHyDaksb2yo/wDh7lnsLk5chpUVsbsdUrlbogaVao=
Subject key identifier: E3:9F:FA:58:0F:9D:33:42:B4:5A:EC:1C:2E:FC:6F:88:2A:A3:A4:61
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014F10
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/109DB14A242711F083B18ED0DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 11:51:05 +0000
ROA not before: Mon 28 Apr 2025 11:51:01 +0000
ROA not after: Fri 17 Mar 2028 11:51:01 +0000
asID: 17561
IP address blocks: 45.202.116.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 14 May 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85776 (0x14f10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 28 11:51:01 2025 GMT
Not After : Mar 17 11:51:01 2028 GMT
Subject: CN=680f6ba9-e3b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:20:83:34:2a:51:f4:79:4f:29:d0:07:3b:4a:
ac:a9:17:71:68:81:96:12:43:22:3e:5b:e6:7e:3d:
6f:d1:4a:ec:73:e6:3b:f3:8a:11:a0:ee:8b:1d:9b:
30:6a:25:9f:4f:d2:96:05:2e:ba:39:9e:86:36:e9:
9a:fe:13:6d:59:d4:84:45:7b:c2:9a:5b:d7:e8:0d:
df:e5:d3:3c:25:07:04:6e:22:f8:09:b6:2a:98:69:
ea:ce:bf:7d:6b:9f:99:14:30:cb:35:a9:9d:dc:ec:
80:d7:d9:ad:08:b0:ac:ec:fe:e4:9c:06:cd:41:59:
e3:86:85:0d:46:5a:b2:4e:16:16:96:88:17:59:bc:
71:01:37:13:f7:db:22:57:87:2a:70:bf:52:68:c7:
9b:de:92:46:9c:ff:fa:11:0f:46:f7:28:a3:ae:f5:
f1:43:77:20:89:b6:9e:a1:54:f7:92:1c:b2:a0:6f:
22:0b:bd:3c:e9:78:8a:cb:ea:f3:1a:14:22:93:58:
47:8e:d6:7e:d1:4e:64:83:7e:d2:62:71:0e:22:30:
01:ef:ee:36:c3:a8:5e:a1:62:88:09:c9:36:3c:a7:
2d:d4:5d:65:23:cb:eb:6c:7e:6c:0e:df:58:00:80:
98:6c:d2:08:40:4e:ed:19:52:36:30:cb:78:7b:92:
3e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:9F:FA:58:0F:9D:33:42:B4:5A:EC:1C:2E:FC:6F:88:2A:A3:A4:61
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/109DB14A242711F083B18ED0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.116.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:f5:5b:e3:7d:7e:c9:18:2d:8a:78:0f:db:d6:99:42:28:ec:
3d:36:1d:85:a4:c6:99:e2:ef:83:c5:89:d3:50:6c:9a:b5:82:
fb:5b:0e:5b:49:e0:7c:69:9b:69:33:b5:78:b8:08:56:db:fe:
9c:e8:5d:bc:6f:2c:9b:fd:38:37:8b:c1:f8:09:1a:79:f9:15:
2b:19:77:e0:9c:df:18:fa:ce:45:9f:98:7e:81:ec:5f:76:db:
94:0b:db:fe:ac:35:c3:ce:46:f7:53:fb:9a:98:ef:51:18:95:
7b:ad:48:a7:40:ba:7f:0b:a4:8f:98:a1:76:47:72:cf:eb:4a:
04:70:76:50:9a:e7:81:72:7b:61:1f:ce:98:19:00:02:de:78:
b9:71:44:b5:3f:10:ed:f0:d6:51:b0:e2:d1:d8:34:4f:02:a6:
5a:bc:ee:88:af:d1:17:27:e2:5c:c3:f6:20:ba:ab:c8:f0:16:
ff:82:aa:8d:2b:76:5a:1d:d0:9d:52:8d:23:4b:5d:30:31:7a:
4f:f6:d9:53:56:a7:09:33:5c:f6:bf:5e:1b:e3:ef:da:b9:7c:
0e:60:d0:59:88:d9:bc:d3:7e:83:67:c9:d4:53:9b:f1:30:6a:
2f:c9:9f:54:35:5d:e6:38:ec:2f:50:b7:1b:28:c2:2b:e4:ad:
95:d7:1f:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 07:18:27 2025 by rpki-client