Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/24319A6A27F011F0A43335AFDAE4EC9C.roa
File: 24319A6A27F011F0A43335AFDAE4EC9C.roa (raw, json)
Hash identifier: N9GdIqnDMgUWXwZPNias6zQPBUg8BsqsotA981V0Mhk=
Subject key identifier: 9D:54:B7:40:F1:D7:E2:AE:60:AC:B1:48:BD:42:B4:3C:F9:EC:E9:76
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01518E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/24319A6A27F011F0A43335AFDAE4EC9C.roa
Signing time: Sat 03 May 2025 07:28:01 +0000
ROA not before: Sat 03 May 2025 07:27:55 +0000
ROA not after: Mon 09 Jun 2025 07:27:55 +0000
asID: 6079
IP address blocks: 45.202.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 13 May 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86414 (0x1518e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 3 07:27:55 2025 GMT
Not After : Jun 9 07:27:55 2025 GMT
Subject: CN=6815c580-0d45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:39:91:36:8a:cb:1d:33:d6:67:94:81:b8:f4:
f7:2f:1d:f5:c0:5b:37:c8:80:db:bb:cd:7c:50:39:
f9:ce:af:9b:08:61:11:c9:e7:e1:5c:8b:da:c5:8b:
cc:d0:3a:cc:49:0d:0e:c6:4a:2e:03:e2:41:b9:13:
86:ef:9d:13:d9:fd:02:d8:b2:8d:77:b8:80:47:98:
17:16:b5:aa:e1:b0:06:ac:23:ee:e1:66:bc:22:22:
e8:76:4d:7f:6d:b8:a8:72:01:a3:43:63:12:32:3b:
76:54:42:22:7d:e8:04:e2:04:ed:41:71:a3:01:fa:
e4:3b:c1:33:00:9f:44:5c:dc:d6:ad:e1:0c:64:b9:
09:03:b4:be:77:e8:a0:56:e3:1b:aa:1c:c0:e9:48:
b1:86:d8:6b:4d:50:2d:05:b7:18:c2:01:91:bd:cf:
f0:f6:78:31:94:8a:4c:5e:02:31:c8:d5:f9:dc:c0:
fc:20:31:6c:11:64:9c:50:5a:9c:47:01:c2:ca:25:
0c:80:c5:ae:40:3c:31:71:00:01:1c:88:22:79:b5:
13:e1:d9:a8:4f:12:03:1e:a3:ef:a4:0a:ff:77:2b:
2f:e5:15:7e:12:07:2a:02:3b:bd:c0:24:f7:98:3f:
cb:ed:f8:e2:f1:1c:e3:77:e2:ce:9f:02:c1:b2:a1:
dd:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:54:B7:40:F1:D7:E2:AE:60:AC:B1:48:BD:42:B4:3C:F9:EC:E9:76
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/24319A6A27F011F0A43335AFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.114.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:b0:71:0a:cf:49:0f:f2:0d:e8:8f:57:df:b4:00:4c:e4:5c:
11:9e:17:e1:94:27:11:b7:fc:e3:9d:b2:b1:85:81:0f:6f:52:
db:30:1a:19:03:86:22:e8:a8:2b:fe:07:9a:ba:61:f1:46:61:
eb:bc:64:dc:e4:ae:1a:15:2f:e1:f3:3a:1f:02:db:88:2b:a6:
d5:31:45:71:d4:7f:1a:3c:ac:aa:a9:55:91:5b:fd:07:93:27:
33:79:c6:07:83:ca:d8:21:c2:a7:27:5f:12:d3:58:f7:d6:08:
04:d8:75:2b:e6:8d:5f:81:62:26:83:7e:27:49:2a:4e:1f:92:
90:0b:d4:a4:a0:54:96:78:f1:f0:7c:d6:95:32:73:69:0b:bb:
31:5a:10:b0:74:72:99:4c:82:0d:15:4e:eb:4b:72:91:16:fb:
21:f4:3b:42:19:74:83:f7:ea:e2:c6:53:a4:7f:34:ea:3a:31:
f7:c1:91:b8:dc:00:3a:db:1e:cc:a7:ca:d2:8d:10:fa:56:7b:
ee:bd:ec:c2:e2:d7:01:c6:ea:a9:1c:2b:d5:ca:28:5a:28:9c:
64:5b:86:66:2b:bf:37:61:ff:1b:fa:9a:5e:8d:b7:92:c1:39:
14:c1:b1:35:08:48:bf:71:de:5f:d4:17:6a:10:78:1e:38:7a:
7c:1e:27:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 17:11:48 2025 by rpki-client