Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/46CA36C0242811F0B9A42ED7DAE4EC9C.roa
File: 46CA36C0242811F0B9A42ED7DAE4EC9C.roa (raw, json)
Hash identifier: BqWLgS03glfJH6eb9rvSWVcQTbdoQzk3kYU12Gamq1c=
Subject key identifier: 68:33:06:A5:C8:70:96:3D:8E:5C:13:2A:A2:F9:89:82:6C:4E:C0:2E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014F18
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/46CA36C0242811F0B9A42ED7DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 11:59:46 +0000
ROA not before: Mon 28 Apr 2025 11:59:41 +0000
ROA not after: Sat 18 Mar 2028 11:59:41 +0000
asID: 17561
IP address blocks: 45.202.122.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 13 May 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85784 (0x14f18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 28 11:59:41 2025 GMT
Not After : Mar 18 11:59:41 2028 GMT
Subject: CN=680f6db2-30f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0a:2c:9e:36:99:73:d9:69:c9:4a:dd:ae:e6:
5f:62:60:6d:4f:08:58:1c:99:30:d5:03:d4:80:8c:
3d:78:63:a9:29:f4:e1:24:d7:71:5f:5c:93:ac:aa:
b0:62:f4:d7:1c:fa:97:ee:eb:68:31:9f:ba:ef:aa:
c7:c2:07:a6:65:bb:6b:ab:89:75:e9:47:05:df:70:
40:4f:ab:8c:0d:0d:fc:a1:bc:2d:ce:8f:2d:f4:0e:
9a:66:0b:b5:47:16:bf:99:00:12:21:93:9f:9e:0e:
56:bf:17:9d:d7:44:e4:1c:0f:c1:a7:2f:12:dc:4a:
94:01:ce:40:95:7c:7f:e9:19:80:2d:d1:01:57:9d:
fc:85:b7:9c:ee:e7:18:70:c1:0e:08:9e:5a:11:0e:
54:85:13:63:03:f0:e8:4c:02:dd:35:69:b1:c7:b5:
12:60:4c:2d:30:64:06:58:de:3c:a1:33:15:e0:f2:
d3:36:c2:59:4d:c5:cf:f7:9d:a1:f5:f1:47:26:5d:
e7:ee:87:7c:0e:2c:09:eb:c9:97:af:36:ae:27:24:
cf:32:d2:ee:ca:54:8d:f9:74:7e:4a:93:b3:6c:5c:
78:0f:6f:fa:47:3d:06:fe:51:cf:90:9e:d5:a2:47:
dc:47:d0:80:7f:81:22:0b:be:57:db:45:3b:12:98:
68:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:33:06:A5:C8:70:96:3D:8E:5C:13:2A:A2:F9:89:82:6C:4E:C0:2E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/46CA36C0242811F0B9A42ED7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.122.0/24
Signature Algorithm: sha256WithRSAEncryption
57:8a:e2:18:0b:47:c8:4d:4e:75:d7:d3:1c:45:f5:22:b0:ba:
27:d9:1f:04:31:d4:02:60:3d:d9:8a:a6:e2:85:6c:fa:84:2f:
f6:7e:f7:78:74:90:fe:78:21:00:c9:9e:c8:5c:6f:df:f2:05:
9c:d4:31:d7:c0:04:93:1b:81:a0:5c:09:06:6b:1c:1e:c0:43:
3b:12:8a:19:2d:b9:62:ca:24:94:4d:aa:6c:c4:72:79:01:71:
15:b8:0f:1e:22:b1:21:19:e3:5c:bb:16:ca:8d:5e:56:d8:94:
1e:7c:35:36:11:50:3e:62:d7:56:39:6e:f8:50:9d:85:af:1d:
30:1b:00:a9:a4:15:5c:f5:f5:86:55:70:90:22:98:d3:76:bd:
ed:af:14:48:83:2e:c0:38:d0:d0:f0:a3:ec:e1:b1:37:87:16:
11:1d:46:f8:40:12:dc:dd:ae:31:bf:f6:da:10:28:4e:1a:04:
96:22:1e:59:77:5e:0e:cf:a6:50:9f:c4:a6:dd:e3:0b:97:d6:
ea:bc:79:95:52:74:f8:96:aa:95:72:04:51:fa:85:f2:09:03:
37:3b:33:6d:e7:3e:78:aa:46:a8:92:c9:1c:04:e1:73:e3:ec:
f3:f6:ce:c5:f9:9e:e3:2c:0a:51:48:09:a2:b8:47:33:f7:99:
bb:d6:0a:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 10:35:29 2025 by rpki-client