Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2D76E7AE266C11F0BA3A4B8ADAE4EC9C.roa
File: 2D76E7AE266C11F0BA3A4B8ADAE4EC9C.roa (raw, json)
Hash identifier: XX3OU0u21oU2A8mfHymqnx47VeJ8F1hbC4aDrPYrKYI=
Subject key identifier: 2A:E9:E2:3B:9D:AB:6D:B2:E4:85:26:E3:23:36:89:70:39:8F:92:6D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01512C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2D76E7AE266C11F0BA3A4B8ADAE4EC9C.roa
Signing time: Thu 01 May 2025 09:10:51 +0000
ROA not before: Thu 01 May 2025 09:10:46 +0000
ROA not after: Fri 14 Apr 2028 09:10:46 +0000
asID: 17561
IP address blocks: 45.199.59.0/24 maxlen: 24
45.199.60.0/24 maxlen: 24
45.199.61.0/24 maxlen: 24
45.199.62.0/24 maxlen: 24
45.199.63.0/24 maxlen: 24
45.199.64.0/24 maxlen: 24
45.199.65.0/24 maxlen: 24
45.199.66.0/24 maxlen: 24
45.199.67.0/24 maxlen: 24
45.199.68.0/24 maxlen: 24
45.199.69.0/24 maxlen: 24
45.199.70.0/24 maxlen: 24
45.199.71.0/24 maxlen: 24
45.199.72.0/24 maxlen: 24
45.199.73.0/24 maxlen: 24
45.199.74.0/24 maxlen: 24
45.199.75.0/24 maxlen: 24
45.199.76.0/24 maxlen: 24
45.199.77.0/24 maxlen: 24
45.199.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 11 May 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86316 (0x1512c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 1 09:10:46 2025 GMT
Not After : Apr 14 09:10:46 2028 GMT
Subject: CN=68133a9b-cb0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:e9:46:5a:4e:00:3f:bc:1a:ce:c1:6f:ec:6f:
4f:e4:05:47:35:ac:a8:3e:a7:da:05:1f:6d:50:5e:
1a:7d:19:52:7b:60:19:99:b4:ee:0b:41:a3:2b:81:
d9:6e:e7:fb:a9:8b:e6:e7:53:a8:6b:5d:53:f9:f3:
34:4b:9c:5e:90:92:f5:49:ff:ec:3d:89:1f:82:c0:
6f:c8:c8:6c:03:c9:f4:0f:bd:f6:59:59:7e:48:ce:
f7:89:40:08:5e:4b:f5:8b:37:38:e2:7d:7c:e3:e3:
04:7b:09:76:a5:f3:8d:d5:76:50:d0:44:38:b1:e2:
ec:2d:ac:0c:74:fd:bb:be:23:82:4c:0d:49:09:49:
fd:df:6d:40:d2:01:0b:78:91:6c:83:2d:ac:04:fb:
31:18:aa:40:fb:75:44:a2:a0:f1:57:38:bc:8a:ac:
85:85:cb:8c:d1:39:b5:6f:5f:66:c2:9d:cb:ef:70:
88:52:b9:63:e5:9e:16:07:ee:a7:ae:2f:a3:4e:92:
77:6c:9a:a3:6d:dd:48:dc:8b:7c:ae:45:54:9f:cb:
16:f5:dc:10:b3:7e:98:d7:a9:a0:96:ad:3c:bb:ed:
57:29:17:02:bc:22:c2:ac:43:a3:c7:ff:9d:9b:c8:
a4:ef:4b:72:79:e7:e0:ff:ba:a7:71:e5:fc:85:bb:
01:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:E9:E2:3B:9D:AB:6D:B2:E4:85:26:E3:23:36:89:70:39:8F:92:6D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2D76E7AE266C11F0BA3A4B8ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.59.0-45.199.78.255
Signature Algorithm: sha256WithRSAEncryption
40:3f:0e:7c:4d:1f:0d:60:20:35:41:60:73:a2:89:bb:af:a3:
18:f2:ca:4c:ab:5d:13:dd:8c:31:d5:51:7f:cb:6c:51:0f:a4:
7b:8a:b2:56:09:80:5f:cb:e7:51:5e:84:24:a2:1f:53:cc:5b:
64:31:47:30:26:a1:30:92:e4:37:a0:6c:00:16:5c:6d:a2:32:
5a:16:e1:b7:db:b8:ec:09:a0:26:f6:ca:3d:c0:50:ef:43:b5:
a8:09:f1:bb:37:ba:30:42:43:bf:7a:b7:df:dc:06:12:36:00:
b7:e3:48:11:fc:a4:7f:af:54:27:b5:db:b5:13:7b:16:23:0f:
d1:19:26:8c:a2:5f:b3:ce:ee:cf:5c:1f:bc:46:88:5f:0b:65:
b7:3d:8b:cf:9c:eb:4c:c1:42:71:86:0e:af:50:58:59:da:8e:
13:65:bc:93:70:69:d2:6b:5a:59:d0:84:c0:3a:ac:57:c7:20:
7b:5d:ee:98:2e:b9:17:3b:fc:e8:51:b4:0c:92:ec:28:7c:44:
b9:ae:f4:d1:73:04:d1:70:8e:f3:d9:9f:60:94:6a:2a:9d:82:
c1:6e:a3:9e:c5:89:c2:42:8f:39:f6:a6:61:99:a2:78:1c:c3:
f7:ed:31:08:95:a6:4a:31:09:71:57:25:4f:92:3e:b0:a7:58:
b1:02:45:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 15:25:12 2025 by rpki-client