Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1C0C0FB4249E11F0B8847EE7DAE4EC9C.roa
File: 1C0C0FB4249E11F0B8847EE7DAE4EC9C.roa (raw, json)
Hash identifier: 75kMAL5WmMU8D3yl9ddzJK5NgPBPj3d5h4usl+KoV4o=
Subject key identifier: 7D:C4:6A:9D:8A:3E:59:69:4C:44:CF:92:6E:9D:B6:F3:AA:87:AA:A1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014FF8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1C0C0FB4249E11F0B8847EE7DAE4EC9C.roa
Signing time: Tue 29 Apr 2025 02:03:15 +0000
ROA not before: Tue 29 Apr 2025 02:03:10 +0000
ROA not after: Mon 19 May 2025 02:03:10 +0000
asID: 62468
IP address blocks: 45.204.192.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 13 May 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86008 (0x14ff8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 29 02:03:10 2025 GMT
Not After : May 19 02:03:10 2025 GMT
Subject: CN=68103363-7a07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8c:0b:cb:fe:26:5c:c5:33:0e:c9:34:2d:28:
0c:f9:13:95:61:de:b1:ed:84:e1:09:3e:3f:88:e6:
2b:a3:d8:ee:d3:5b:68:f8:53:01:d9:2f:15:6d:63:
26:0e:4c:21:12:e8:49:20:57:c9:2e:c6:31:45:01:
8c:f1:77:e2:11:91:8e:5d:c6:5a:f8:0d:35:1a:3a:
bb:58:4e:15:66:5e:28:10:fa:f1:90:d6:ce:ca:b0:
f6:e6:0f:1a:86:3c:00:61:54:79:b5:30:76:63:27:
e6:fe:69:a2:60:e2:0a:13:19:49:bd:9f:32:de:1e:
c2:96:12:79:41:d9:04:eb:2d:b0:d1:89:4c:1b:47:
b1:74:3f:5e:4a:37:fa:f4:c8:09:64:1d:58:2b:86:
95:c2:e2:82:3f:30:51:93:a2:0b:c4:59:5e:8d:66:
f6:32:72:12:b2:49:cb:e0:0c:87:9d:fb:38:6d:30:
81:55:83:35:47:05:57:c1:2a:1d:d6:9e:a0:f7:0c:
b6:7b:f7:bb:27:f7:d4:39:8a:ce:ac:b3:05:d0:91:
23:ce:79:3a:be:66:b2:c4:b4:fe:18:05:b1:e6:df:
73:c4:fc:b7:37:0d:01:09:7b:4a:1a:21:02:fe:46:
49:1b:c6:15:94:7e:50:8d:76:af:59:11:0b:15:f1:
ff:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:C4:6A:9D:8A:3E:59:69:4C:44:CF:92:6E:9D:B6:F3:AA:87:AA:A1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1C0C0FB4249E11F0B8847EE7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.192.0/19
Signature Algorithm: sha256WithRSAEncryption
02:1f:fd:54:05:66:bc:04:1d:81:ce:94:fd:fb:7f:a7:0e:3b:
47:a4:bf:c3:d1:08:42:48:89:e7:22:5b:23:36:09:41:68:bb:
47:64:56:c7:c9:2b:bd:bf:06:2c:15:8d:74:6e:50:45:45:bf:
bb:6b:11:1a:ce:7a:76:29:68:d5:9c:e0:54:a1:19:12:99:f1:
7b:d3:ae:79:b1:09:de:79:6a:56:cd:8f:02:54:0a:a7:6d:f9:
e1:20:14:4f:4c:b2:33:7a:91:57:98:27:8d:eb:62:03:d5:fc:
38:32:72:b3:29:7d:13:47:dd:2b:41:34:9a:82:65:cb:5b:83:
2e:db:b7:bd:93:c0:b0:e2:c4:60:e8:57:cf:2a:ef:40:11:fa:
43:09:89:41:0e:cb:cc:6d:2d:18:48:cc:33:f6:dd:7e:ce:e3:
e4:ce:4d:af:f1:4c:9f:b5:39:c1:4c:8b:95:d7:84:08:f6:ac:
82:33:03:4c:6e:a2:22:fa:1e:18:16:8f:6d:f8:b7:e2:1c:af:
e6:c3:27:8e:df:b9:36:40:de:f1:10:3d:bd:fa:8f:ea:8c:fd:
b6:ea:8b:27:49:54:aa:c5:1d:96:bc:f0:ad:ef:25:6b:94:1c:
17:49:f9:4a:bf:05:ab:b4:43:7b:35:63:ef:db:68:2e:0a:e4:
c6:67:b5:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 15:05:48 2025 by rpki-client