Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/10AB0402266211F0897ACDC8DAE4EC9C.roa
File: 10AB0402266211F0897ACDC8DAE4EC9C.roa (raw, json)
Hash identifier: TvRQkgUX3MCvVVY8TS1ixDVF2VFeyMmnKkqDQVJFce0=
Subject key identifier: 74:68:BB:3B:6C:5E:04:A5:68:1B:CB:F3:93:72:BE:D2:21:FA:F4:ED
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015126
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/10AB0402266211F0897ACDC8DAE4EC9C.roa
Signing time: Thu 01 May 2025 07:58:28 +0000
ROA not before: Thu 01 May 2025 07:58:23 +0000
ROA not after: Tue 11 Apr 2028 07:58:23 +0000
asID: 17561
IP address blocks: 45.198.117.0/24 maxlen: 24
45.198.118.0/24 maxlen: 24
45.198.119.0/24 maxlen: 24
45.198.121.0/24 maxlen: 24
45.198.123.0/24 maxlen: 24
45.198.124.0/24 maxlen: 24
45.198.126.0/24 maxlen: 24
45.198.129.0/24 maxlen: 24
45.198.130.0/24 maxlen: 24
45.198.132.0/24 maxlen: 24
45.198.133.0/24 maxlen: 24
45.198.134.0/24 maxlen: 24
45.198.138.0/24 maxlen: 24
45.198.139.0/24 maxlen: 24
45.198.140.0/24 maxlen: 24
45.198.141.0/24 maxlen: 24
45.198.144.0/24 maxlen: 24
45.198.148.0/24 maxlen: 24
45.198.149.0/24 maxlen: 24
45.198.150.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 07 May 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86310 (0x15126)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 1 07:58:23 2025 GMT
Not After : Apr 11 07:58:23 2028 GMT
Subject: CN=681329a4-9ee2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9f:82:3c:5f:1c:d7:18:aa:75:e4:05:3a:f1:
3e:8f:b9:0a:a2:43:9c:7c:fd:cb:22:e7:e8:4a:a2:
bb:4d:d9:cc:62:70:65:b0:80:18:80:f1:3c:5a:3c:
4c:27:37:c3:21:65:0f:e0:3e:be:5e:27:03:33:52:
ac:3c:3c:1b:ad:9a:b2:44:75:9b:a9:90:7a:ba:fa:
83:92:4c:0b:d4:81:17:68:5b:b5:ae:b8:14:6f:2f:
9a:01:75:65:f4:c2:42:96:bc:2c:09:77:f3:3d:43:
93:99:11:a6:39:59:dd:c3:d7:0a:c9:ab:52:ba:f2:
54:61:d1:5c:8c:c0:05:9f:63:1d:8d:f7:cd:df:f6:
30:9b:27:0e:3e:2c:3f:b0:80:e0:8c:e7:73:ec:d6:
7e:60:f3:e5:b4:7c:59:13:ae:ee:25:8c:1d:0b:30:
f9:57:db:0d:47:88:93:30:e9:a4:14:a6:99:cd:42:
60:44:89:06:d0:5f:fc:57:c0:f1:fb:14:57:60:bd:
ea:27:75:a0:61:c4:dd:e5:89:0e:96:af:e9:66:1f:
f4:3f:a6:2e:ef:79:0a:3f:cc:1c:af:b3:47:40:39:
ed:37:22:83:18:02:61:04:58:77:5f:8f:8a:b6:60:
3c:e3:5b:e7:9e:a7:99:b4:3f:cb:60:bb:8e:13:f8:
33:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:68:BB:3B:6C:5E:04:A5:68:1B:CB:F3:93:72:BE:D2:21:FA:F4:ED
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/10AB0402266211F0897ACDC8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.117.0-45.198.119.255
45.198.121.0/24
45.198.123.0-45.198.124.255
45.198.126.0/24
45.198.129.0-45.198.130.255
45.198.132.0-45.198.134.255
45.198.138.0-45.198.141.255
45.198.144.0/24
45.198.148.0-45.198.150.255
Signature Algorithm: sha256WithRSAEncryption
2f:10:9c:c1:3f:08:08:9b:b0:4b:5c:50:83:4f:ea:f2:ca:80:
5e:84:dd:da:26:ec:1d:a5:5a:40:4c:c4:7a:7f:5c:a3:d2:c3:
8f:3c:25:14:50:d4:19:ec:92:08:c7:a3:03:6a:5e:44:1d:05:
07:a8:b9:5c:0f:ea:3d:b0:34:1d:19:81:c5:20:8f:34:cc:9f:
ea:a1:ca:20:dc:ce:d0:34:98:32:94:eb:d5:68:a0:c8:f6:c7:
56:0c:87:94:bb:7f:68:b4:19:80:16:8b:6c:74:0f:ef:c8:aa:
0e:70:8d:e9:8f:23:35:98:94:a6:fe:d8:50:b4:6c:17:0f:28:
e5:90:40:22:4a:ff:13:29:fe:47:d4:fa:55:48:cb:4e:be:61:
c0:27:5c:20:4d:66:75:19:9d:0c:b0:3a:88:0c:e6:c5:76:ee:
78:1e:c7:bb:75:70:bc:b4:a6:13:d5:a7:85:1f:cf:79:66:81:
06:9f:f8:07:0e:74:7a:86:76:d5:87:67:69:63:e1:3d:0d:17:
27:16:cb:cc:57:27:88:0a:31:86:1e:0f:05:f7:fc:b9:6a:fe:
d2:ec:d3:43:3e:e9:d9:ae:06:a7:cb:b2:25:f4:58:5b:66:fb:
4d:54:9f:35:b3:09:6f:ca:8c:81:29:64:3b:66:fe:ac:f5:14:
b2:07:f9:1f
-----BEGIN CERTIFICATE-----
MIIF4TCCBMmgAwIBAgIDAVEmMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNTAxMDc1ODIzWhcNMjgwNDExMDc1ODIzWjAYMRYw
FAYDVQQDEw02ODEzMjlhNC05ZWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAop+CPF8c1xiqdeQFOvE+j7kKokOcfP3LIufoSqK7TdnMYnBlsIAYgPE8
WjxMJzfDIWUP4D6+XicDM1KsPDwbrZqyRHWbqZB6uvqDkkwL1IEXaFu1rrgUby+a
AXVl9MJClrwsCXfzPUOTmRGmOVndw9cKyatSuvJUYdFcjMAFn2MdjffN3/YwmycO
Piw/sIDgjOdz7NZ+YPPltHxZE67uJYwdCzD5V9sNR4iTMOmkFKaZzUJgRIkG0F/8
V8Dx+xRXYL3qJ3WgYcTd5YkOlq/pZh/0P6Yu73kKP8wcr7NHQDntNyKDGAJhBFh3
X4+KtmA841vnnqeZtD/LYLuOE/gzfwIDAQABo4IDAjCCAv4wHQYDVR0OBBYEFHRo
uztsXgSlaBvL85NyvtIh+vTtMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8xMEFCMDQwMjI2NjIxMUYwODk3QUNEQzhEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MH8GCCsGAQUFBwEHAQH/BHAwbjBsBAIAATBmMAwDBAAtxnUDBAMtxnADBAAtxnkw
DAMEAC3GewMEAC3GfAMEAC3GfjAMAwQALcaBAwQALcaCMAwDBAItxoQDBAAtxoYw
DAMEAS3GigMEAS3GjAMEAC3GkDAMAwQCLcaUAwQALcaWMA0GCSqGSIb3DQEBCwUA
A4IBAQAvEJzBPwgIm7BLXFCDT+ryyoBehN3aJuwdpVpATMR6f1yj0sOPPCUUUNQZ
7JIIx6MDal5EHQUHqLlcD+o9sDQdGYHFII80zJ/qocog3M7QNJgylOvVaKDI9sdW
DIeUu39otBmAFotsdA/vyKoOcI3pjyM1mJSm/thQtGwXDyjlkEAiSv8TKf5H1PpV
SMtOvmHAJ1wgTWZ1GZ0MsDqIDObFdu54Hse7dXC8tKYT1aeFH895ZoEGn/gHDnR6
hnbVh2dpY+E9DRcnFsvMVyeICjGGHg8F9/y5av7S7NNDPunZrgany7Il9FhbZvtN
VJ81swlvyoyBKWQ7Zv6s9RSyB/kf
-----END CERTIFICATE-----
Generated at Mon May 5 13:13:12 2025 by rpki-client