Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BE03B1222A5311F0B0E1D9AADAE4EC9C.roa
File: BE03B1222A5311F0B0E1D9AADAE4EC9C.roa (raw, json)
Hash identifier: IHI8agNEFzb4aLa/mfMBAXHvpnyMQXKoS9L9zDHl4m0=
Subject key identifier: 81:B9:C4:0D:7A:05:B0:9A:FC:11:67:DD:C9:83:7D:AD:86:A8:6F:04
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015235
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BE03B1222A5311F0B0E1D9AADAE4EC9C.roa
Signing time: Tue 06 May 2025 08:26:01 +0000
ROA not before: Tue 06 May 2025 08:25:56 +0000
ROA not after: Thu 05 Jun 2025 08:25:56 +0000
asID: 273079
IP address blocks: 45.194.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86581 (0x15235)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 6 08:25:56 2025 GMT
Not After : Jun 5 08:25:56 2025 GMT
Subject: CN=6819c799-a22a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:9e:09:9e:9b:e6:96:d2:31:aa:33:39:85:dc:
7a:b5:27:0f:6e:d0:cf:dd:db:2f:f6:69:5b:b2:6b:
61:00:1e:83:5c:af:e8:d5:67:87:fb:42:c8:70:cf:
b7:9f:ea:a1:28:c0:c2:92:0e:8c:a2:27:6f:87:b0:
79:d2:81:b0:15:c0:90:a5:0a:97:58:87:31:44:ec:
42:06:13:e9:79:7f:a7:cc:0c:9f:0c:60:6c:bc:3f:
78:f3:33:e5:82:95:a0:75:30:62:c6:e7:ba:9f:d3:
cd:c1:8a:09:d0:83:fb:2a:9c:89:6c:53:3d:18:a5:
b3:11:5e:2c:89:38:12:b7:81:a2:a3:02:91:cf:ea:
b2:8d:5d:13:15:41:1d:f5:c0:7c:92:9b:16:18:92:
38:c7:7a:35:89:7d:67:d1:d0:bf:96:dd:a3:b5:85:
a5:d2:e8:fb:a3:17:a5:6b:50:e1:17:e8:6a:86:1a:
01:40:9f:14:7a:de:ae:4d:45:fe:a5:45:15:75:8f:
56:8e:5c:3a:fd:87:d8:b5:28:d0:41:e6:22:1e:85:
54:4c:1f:1f:eb:06:5a:c2:5a:89:ee:ab:2c:6f:cb:
ba:02:57:4d:cb:30:4b:58:74:32:a7:e5:ff:f6:de:
3a:f3:4f:fe:ea:1c:18:a9:d0:06:a5:7f:28:1f:41:
2e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:B9:C4:0D:7A:05:B0:9A:FC:11:67:DD:C9:83:7D:AD:86:A8:6F:04
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BE03B1222A5311F0B0E1D9AADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.45.0/24
Signature Algorithm: sha256WithRSAEncryption
52:77:1f:98:8a:c2:3d:0d:db:b0:a6:8d:b9:66:6b:ea:15:7c:
d8:e8:9f:20:12:10:50:3c:3a:14:24:00:55:ae:1f:50:79:c7:
9d:9f:e5:33:9f:60:db:62:b4:4c:9a:0a:fe:32:a7:81:af:c5:
97:36:c8:ac:3e:1c:1f:ac:e7:4a:7d:6b:f8:e0:24:5a:36:53:
1e:e5:89:9e:7d:1d:73:d8:03:76:0d:b1:4c:a9:0e:2b:59:ec:
e6:e1:b0:ba:6a:3f:94:ff:4a:d9:9e:e6:35:83:62:af:cc:3c:
e6:31:82:9e:a3:39:ca:ad:e5:77:43:d3:8d:44:90:12:87:ff:
b5:f3:52:37:58:c9:b5:94:65:aa:14:8a:3d:c1:db:75:2c:a1:
3b:6b:91:8b:ae:d5:e5:03:3f:99:69:42:6b:1c:ea:d0:5d:c8:
e2:43:bb:fe:ff:93:43:e5:d2:fa:83:07:25:d7:75:cd:6f:ac:
d9:66:01:b8:ef:ce:77:b0:13:bb:d8:b2:be:e7:e6:36:dd:49:
d7:5d:50:c3:a6:3b:fa:b3:df:d4:22:7b:bd:03:df:82:db:9b:
43:ce:1c:72:49:c1:fc:3d:3c:72:cc:a1:f1:b7:e0:e1:66:6d:
9e:4a:95:f5:16:7c:be:5d:c6:ba:95:e8:b8:2d:de:f4:ac:fc:
d1:de:cd:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 06:07:21 2025 by rpki-client