Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41A82C102BE411F088D1F4A2DAE4EC9C.roa
File: 41A82C102BE411F088D1F4A2DAE4EC9C.roa (raw, json)
Hash identifier: kaKVnS+8Y/CFFgRU08lmKW/KnZWr69dcNT3rYvkxRvo=
Subject key identifier: D2:02:4F:72:DF:D4:85:DF:9D:1C:9D:16:9D:43:B2:5F:D6:F1:9D:4D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0152BD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41A82C102BE411F088D1F4A2DAE4EC9C.roa
Signing time: Thu 08 May 2025 08:13:01 +0000
ROA not before: Thu 08 May 2025 08:12:56 +0000
ROA not after: Sun 18 May 2025 08:12:56 +0000
asID: 149014
IP address blocks: 45.192.160.0/22 maxlen: 24
45.192.172.0/22 maxlen: 24
45.192.176.0/24 maxlen: 24
45.192.177.0/24 maxlen: 24
45.192.178.0/23 maxlen: 24
45.192.180.0/22 maxlen: 24
45.192.184.0/22 maxlen: 24
45.192.188.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 15 May 2025 00:26:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86717 (0x152bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 8 08:12:56 2025 GMT
Not After : May 18 08:12:56 2025 GMT
Subject: CN=681c678c-fdaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e5:8b:e7:60:3e:81:32:96:7a:ee:37:86:e1:
ec:78:1b:5a:12:23:2f:39:d5:f0:99:fd:21:6e:ce:
68:d9:6d:a9:1e:37:45:a4:23:2e:83:02:ca:e7:52:
bc:a7:8c:25:58:67:e4:bd:f5:3b:b3:55:3b:ea:ea:
11:63:c8:54:a0:a5:0a:0b:d2:18:23:32:0d:66:cf:
cc:77:86:b3:27:75:09:04:84:70:8e:15:60:c0:0c:
19:8f:93:26:9c:02:83:32:b1:2e:73:40:40:8f:05:
d1:58:7f:26:63:fa:cb:a1:b0:63:f3:0a:2b:68:e6:
cd:29:06:7f:80:ff:0a:fc:07:3e:51:0f:92:c6:75:
bd:a0:49:60:09:ab:c5:83:fd:06:d7:87:9a:83:5a:
01:cb:d3:90:f1:50:4c:39:66:2f:a9:44:25:d7:ba:
d4:28:e3:65:18:9d:ee:d6:ba:ec:b6:d7:8f:ec:b3:
6b:b7:b4:06:10:68:d1:14:af:89:97:c6:35:83:24:
d8:cd:fa:32:85:35:e3:54:94:eb:63:95:c1:35:82:
f5:af:c4:07:2e:bd:5e:6b:dd:2a:4f:9d:a8:d9:6f:
3d:eb:87:24:8a:61:59:22:aa:3b:50:c1:a1:39:91:
91:86:ad:7d:68:71:3a:43:df:6d:d3:4e:92:2c:eb:
44:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:02:4F:72:DF:D4:85:DF:9D:1C:9D:16:9D:43:B2:5F:D6:F1:9D:4D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41A82C102BE411F088D1F4A2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.160.0/22
45.192.172.0-45.192.191.255
Signature Algorithm: sha256WithRSAEncryption
35:e2:cb:9b:d2:44:8e:a8:50:4b:d7:05:6b:bd:e2:da:43:68:
ae:a7:9f:e6:5b:2c:89:55:40:b6:7d:5f:04:11:29:4c:47:47:
7a:81:4f:6d:80:af:95:40:0d:ca:d2:66:e7:7c:ec:0f:bc:c7:
35:42:94:35:97:47:9a:83:5b:2c:16:14:6d:6b:53:5d:93:d5:
79:78:f2:17:03:78:4b:82:44:b3:35:51:17:31:a9:18:ac:d0:
8a:c9:17:d6:2c:5a:ea:7b:51:70:b4:db:c8:29:fa:14:38:0c:
99:77:2c:4b:7b:26:44:99:f7:69:48:a3:d2:0e:aa:28:6f:55:
83:d0:e7:53:95:e8:bb:c3:83:5d:d5:71:de:f3:ab:45:4a:01:
78:41:63:9a:5a:c7:d0:d5:fb:30:56:3b:60:bf:fe:65:30:92:
93:70:02:94:9e:05:d1:fc:d6:4e:53:f0:7c:aa:f8:34:18:30:
8e:b6:cf:ff:9d:f4:ba:57:8d:ad:bb:5f:2f:46:ec:02:de:80:
83:e9:13:56:cd:f6:6e:45:a5:a7:03:39:f4:ad:33:2d:ee:5d:
46:17:72:bf:6d:c2:df:22:a2:ca:15:95:bc:32:d6:cb:da:9a:
e2:50:be:13:9d:18:4a:d9:98:b8:aa:f9:f1:74:89:5f:3a:b4:
f5:6b:79:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 13:24:47 2025 by rpki-client