Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E3EA4D2265A11F09B515594DAE4EC9C.roa
File: 1E3EA4D2265A11F09B515594DAE4EC9C.roa (raw, json)
Hash identifier: hUvFy7SLsMxkQMLQglnglY2mCrRw/1GFl0Y9b3GZMj0=
Subject key identifier: 9F:74:74:D1:39:89:80:8A:8E:A9:C0:8F:07:B8:8F:97:80:CB:9D:93
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015114
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E3EA4D2265A11F09B515594DAE4EC9C.roa
Signing time: Thu 01 May 2025 07:01:35 +0000
ROA not before: Thu 01 May 2025 07:01:30 +0000
ROA not after: Sat 11 Apr 2026 07:01:30 +0000
asID: 984
IP address blocks: 45.192.1.0/24 maxlen: 24
45.192.3.0/24 maxlen: 24
45.192.8.0/24 maxlen: 24
45.194.112.0/24 maxlen: 24
45.195.68.0/24 maxlen: 24
45.198.67.0/24 maxlen: 24
45.198.69.0/24 maxlen: 24
45.198.72.0/24 maxlen: 24
45.198.73.0/24 maxlen: 24
45.198.77.0/24 maxlen: 24
45.198.78.0/24 maxlen: 24
45.198.79.0/24 maxlen: 24
45.198.81.0/24 maxlen: 24
45.198.82.0/24 maxlen: 24
45.198.84.0/24 maxlen: 24
45.198.89.0/24 maxlen: 24
45.198.90.0/24 maxlen: 24
45.198.93.0/24 maxlen: 24
45.198.94.0/24 maxlen: 24
45.198.98.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 13 May 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86292 (0x15114)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 1 07:01:30 2025 GMT
Not After : Apr 11 07:01:30 2026 GMT
Subject: CN=68131c4f-ef20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:09:72:14:f7:c6:cb:79:63:3e:19:5e:8c:65:
af:4d:75:04:04:d4:c8:d8:32:f6:18:5b:de:ee:6e:
bc:cb:c4:b3:27:6f:84:b6:0d:01:bf:61:8d:52:36:
99:1e:eb:ad:51:69:44:7a:c6:2b:5e:d3:ce:e9:6f:
5c:c8:7f:3e:61:8a:e6:58:95:4b:df:99:85:08:d1:
2e:78:a1:e9:bd:96:e2:ea:99:4e:ad:b2:45:b4:f6:
4a:ba:b3:24:e5:fd:26:21:54:8a:3f:05:2f:61:01:
68:b3:0b:f2:06:93:8c:e3:a9:3a:aa:a5:be:77:bf:
fe:5c:b5:a1:ee:0c:3e:13:8f:f6:87:1c:39:ae:a4:
61:a6:4d:59:08:63:8c:67:81:b1:13:73:af:5c:fe:
47:0a:40:d9:f4:52:ff:24:9f:cf:14:23:d9:e6:41:
40:64:df:db:a3:25:6f:be:0d:d4:51:f5:dd:06:ed:
4e:17:07:ce:4d:38:44:24:0e:7c:1c:c9:97:eb:d3:
86:ee:90:d2:31:ae:ee:92:68:5b:b1:2e:71:79:75:
a1:86:c7:af:d7:09:b3:9b:34:3b:cc:e7:69:76:ef:
66:ab:7a:4d:86:7a:ad:7d:f5:b2:7f:69:e0:14:8b:
eb:32:c6:da:51:ec:30:d5:9b:71:3e:6e:4b:30:7b:
ab:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:74:74:D1:39:89:80:8A:8E:A9:C0:8F:07:B8:8F:97:80:CB:9D:93
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E3EA4D2265A11F09B515594DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.1.0/24
45.192.3.0/24
45.192.8.0/24
45.194.112.0/24
45.195.68.0/24
45.198.67.0/24
45.198.69.0/24
45.198.72.0/23
45.198.77.0-45.198.79.255
45.198.81.0-45.198.82.255
45.198.84.0/24
45.198.89.0-45.198.90.255
45.198.93.0-45.198.94.255
45.198.98.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:15:e5:30:46:22:b8:8c:4b:11:bb:bf:89:42:7c:7d:db:55:
8c:52:a6:36:a3:1e:dc:f1:aa:46:83:3e:78:d6:d3:4f:8d:ae:
6b:17:a6:1c:57:f7:81:e9:18:9f:c7:1f:5f:58:fb:4e:ec:b6:
e1:84:8d:a3:59:12:f1:d1:26:d6:ac:40:b7:62:d9:06:08:9d:
6a:27:30:f9:69:3d:73:d3:00:28:77:bc:a4:e2:a9:21:01:02:
af:67:70:ab:d3:5a:7e:21:6a:c9:e0:d7:cf:02:bb:65:93:f3:
f7:d8:9a:e4:c2:b1:76:0c:36:20:dc:47:8a:3e:42:32:c4:51:
01:d6:08:bc:6b:d2:b1:85:ad:82:e2:f7:fc:ad:d1:f1:88:0e:
4a:22:73:c1:7e:0d:c3:80:17:e5:01:3d:12:31:30:e4:1a:ec:
4d:8a:8a:f9:f6:6a:a1:d5:3d:bf:aa:1a:e3:6c:23:4c:b5:81:
ec:aa:7a:53:57:7b:d6:7a:99:e8:be:dd:67:97:48:83:b2:ba:
98:52:ab:43:50:8d:51:55:40:d0:a4:94:36:cd:fd:1c:b4:a8:
21:21:90:13:67:98:17:1f:d8:88:cb:1d:cb:11:e2:db:fa:6b:
b4:35:46:a1:11:a7:e3:7a:7a:09:2a:fb:41:c2:44:9c:6e:b8:
0a:12:c8:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 15:36:50 2025 by rpki-client