Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B9FED5464CFB11F09BB6668CDAE4EC9C.roa
File: B9FED5464CFB11F09BB6668CDAE4EC9C.roa (raw, json)
Hash identifier: YKtijbMeDRu7NsBaMshDZnxrMRkzAIPVy33jiEUUwuw=
Subject key identifier: C2:F2:B9:EB:E0:D4:06:25:A2:24:25:9D:91:32:CD:8B:2F:9C:82:70
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015D32
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B9FED5464CFB11F09BB6668CDAE4EC9C.roa
Signing time: Thu 19 Jun 2025 10:54:09 +0000
ROA not before: Thu 19 Jun 2025 10:54:05 +0000
ROA not after: Sat 26 Jul 2025 10:54:05 +0000
asID: 395793
IP address blocks: 45.198.183.0/24 maxlen: 24
45.198.184.0/24 maxlen: 24
45.206.65.0/24 maxlen: 24
45.206.66.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 01 Jul 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89394 (0x15d32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 19 10:54:05 2025 GMT
Not After : Jul 26 10:54:05 2025 GMT
Subject: CN=6853ec51-5c25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:5b:a6:3b:a7:97:4c:6d:6a:e4:9c:f4:a4:62:
31:cf:f5:f1:b6:5c:73:ce:57:a4:b0:93:63:32:a4:
52:9e:97:20:94:75:e7:b0:cb:f3:3c:26:7c:fc:d3:
a6:1d:c1:7e:88:f1:c2:68:f0:8f:8d:fb:63:c7:2f:
4b:70:78:86:ac:08:9a:a3:33:eb:68:82:5e:6e:a9:
bb:4c:77:7b:7b:4c:12:3c:0f:7e:25:ec:4f:4b:03:
9d:07:40:1e:49:3e:74:9b:d0:f9:30:17:9b:a3:cb:
74:37:e8:e5:15:c7:d7:1c:3c:6d:49:22:b6:d2:b4:
43:18:e8:e1:8b:dc:97:3e:54:90:1f:f1:cd:63:97:
c1:ed:b4:41:ed:d3:26:1d:f9:3a:c1:be:da:90:7a:
5d:25:ab:55:f5:ad:da:5c:b9:3b:4b:1c:13:ad:ac:
59:ab:31:7f:f5:27:08:dc:ca:60:92:2b:72:4a:df:
d9:be:43:a2:fd:02:8f:16:3c:ac:ba:9a:6a:79:92:
42:5a:78:de:6e:ae:56:97:b9:5d:c7:a6:0a:0c:6a:
96:4b:11:bf:d0:03:33:0e:07:ea:3b:0e:3d:ac:8f:
6d:59:d8:1d:ce:e8:63:16:df:43:8d:1a:7c:00:68:
67:d5:7d:b1:16:c0:0a:6a:27:59:c1:75:b1:f4:2f:
b2:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:F2:B9:EB:E0:D4:06:25:A2:24:25:9D:91:32:CD:8B:2F:9C:82:70
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B9FED5464CFB11F09BB6668CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.183.0-45.198.184.255
45.206.65.0-45.206.66.255
Signature Algorithm: sha256WithRSAEncryption
6a:e7:71:7a:c6:0e:c0:4f:49:a2:09:d7:25:f7:2c:70:76:37:
c6:01:d5:53:3e:b7:63:0b:0a:f3:99:82:0c:14:51:d2:0a:26:
ed:75:e7:f0:9c:1f:ad:2e:d3:6e:8e:bc:34:af:67:5e:44:00:
72:b1:17:4b:63:87:1c:c8:55:85:e8:79:ca:58:ca:dc:37:32:
29:db:d6:44:b7:1a:22:c1:9a:d6:3a:05:57:08:fb:f8:2a:9d:
6c:b7:de:5c:6b:34:0f:66:a7:de:f5:d6:ec:ac:80:9a:c2:a0:
9e:f0:c8:0a:a4:6e:27:92:dd:b3:14:e1:64:af:60:59:01:3c:
83:bc:ae:a5:01:0d:f0:c1:f7:f2:a3:8e:3a:08:51:e9:2b:6a:
5c:5d:a4:92:11:17:52:9f:4b:10:b4:af:a3:0c:da:c9:a7:8e:
36:5e:cb:b4:0c:36:f4:65:54:f5:28:90:8d:53:51:6a:2b:ae:
e7:eb:85:65:31:f9:21:d0:33:5b:09:40:85:e7:1e:eb:37:33:
5b:6a:be:25:1c:75:75:ad:8b:9e:2a:31:55:21:6d:1a:e8:8c:
e4:e5:3f:db:eb:24:e5:97:00:ac:70:ad:0e:73:60:b0:8a:1f:
a2:2c:b9:4a:a4:b2:c6:99:2e:a6:c8:97:bc:49:2d:eb:87:41:
14:54:6f:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 20:27:56 2025 by rpki-client