Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/43CBECCC267911F087B5D8DFDAE4EC9C.roa
File: 43CBECCC267911F087B5D8DFDAE4EC9C.roa (raw, json)
Hash identifier: fJ5OR3nlwjNupTvf1iaNg+IGDr4pn+MVtWm/F8xLVu8=
Subject key identifier: 7A:1C:3A:A5:AC:6A:CE:D5:78:F5:47:A3:91:8E:D0:2D:49:63:A7:47
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015142
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/43CBECCC267911F087B5D8DFDAE4EC9C.roa
Signing time: Thu 01 May 2025 10:44:32 +0000
ROA not before: Thu 01 May 2025 10:44:27 +0000
ROA not after: Mon 01 May 2028 10:44:27 +0000
asID: 17561
IP address blocks: 45.202.70.0/24 maxlen: 24
45.203.123.0/24 maxlen: 24
45.203.124.0/24 maxlen: 24
45.203.125.0/24 maxlen: 24
45.203.126.0/24 maxlen: 24
45.203.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 07 May 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86338 (0x15142)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 1 10:44:27 2025 GMT
Not After : May 1 10:44:27 2028 GMT
Subject: CN=68135090-1ef7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:11:3d:96:03:16:9f:c8:77:82:76:ee:4e:1a:
d0:b9:48:52:69:86:27:d7:3e:5f:23:d5:36:23:95:
78:90:c7:62:4e:c2:b4:58:fe:19:d7:cc:d8:c2:05:
9c:d4:98:88:23:d8:e9:ff:ba:11:0e:ff:65:38:24:
44:e4:20:5f:06:46:ff:ee:69:6b:5c:fe:05:b6:b2:
3a:6f:f5:dc:f6:43:fa:fc:70:71:b1:d9:9d:6e:e9:
0b:60:b0:92:f0:2b:30:e3:14:01:64:5d:0d:7d:f7:
cc:a3:54:b7:10:d5:fb:e9:a1:d3:8e:8c:06:a4:9e:
95:75:c7:da:d0:4a:e6:dc:bd:8e:91:9b:c2:3f:2f:
95:23:a5:1e:8a:fb:48:e0:84:07:2c:67:99:88:25:
4e:14:6f:fb:3c:31:ac:4c:8f:e5:44:16:17:e2:b6:
d1:62:d2:2a:53:f9:19:3f:07:d6:3a:40:b7:83:c2:
c3:d3:cf:07:6b:72:56:73:82:90:83:bd:81:0b:41:
bd:e1:a9:f6:02:30:99:85:a6:71:26:8e:1e:b0:d8:
98:af:4b:ab:1a:99:43:0f:c7:21:d4:21:38:d2:a6:
17:6e:c3:b7:3e:87:a4:36:1b:46:1f:ad:1d:91:19:
40:09:01:a9:a9:c0:0f:d9:0d:92:92:6f:6e:99:13:
6e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:1C:3A:A5:AC:6A:CE:D5:78:F5:47:A3:91:8E:D0:2D:49:63:A7:47
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/43CBECCC267911F087B5D8DFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.70.0/24
45.203.123.0-45.203.127.255
Signature Algorithm: sha256WithRSAEncryption
0a:eb:b6:e8:84:80:a6:d7:cb:1d:0e:4d:7f:40:a2:38:af:90:
e1:fb:ed:a7:23:ea:36:0e:42:4a:7d:4e:0c:29:e2:5d:31:32:
92:f7:d6:83:93:55:68:13:8c:39:5a:03:9e:c9:2e:8a:e0:f8:
16:a4:97:38:30:99:e7:45:26:db:a7:29:4f:c9:a0:95:a1:f8:
fc:8f:69:85:b7:09:e5:37:05:5f:50:8e:21:b8:ca:13:71:99:
31:4f:fa:29:9a:12:39:27:0b:de:05:7b:1d:e8:c7:7d:f9:78:
be:29:12:46:aa:3e:b7:39:ad:09:f6:3e:11:bb:26:43:48:70:
e5:5f:af:08:4b:e9:82:06:41:1e:e5:9a:77:0e:23:5b:8f:d4:
b9:0f:9e:21:47:81:76:49:19:8e:f9:38:f3:fa:69:b2:85:41:
b5:f5:aa:c9:40:0a:2f:cb:d9:17:5b:11:ef:5e:df:5a:a2:15:
91:fc:3d:dc:02:9b:fa:82:59:32:0a:81:ae:54:1b:2b:5e:64:
8f:3a:4f:0c:35:6d:58:85:30:bb:ed:23:b6:f4:3c:ce:d8:29:
99:e5:44:67:0d:01:fb:f8:5b:05:d7:b4:b4:19:57:7e:a0:a5:
1a:71:42:22:ec:e2:30:17:6a:66:dd:b1:2a:7f:d5:3a:2d:df:
83:15:9c:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 06:40:30 2025 by rpki-client