Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EE5845A2273F11F0905AC591DAE4EC9C.roa
File: EE5845A2273F11F0905AC591DAE4EC9C.roa (raw, json)
Hash identifier: qvuyqw4TCJCnnH+7eV2xgqP7vfiPH5AMKChO4b58ISc=
Subject key identifier: B9:65:06:D2:AC:50:2E:DA:31:A6:92:D6:5B:DA:0D:AF:EB:6C:CD:B7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015183
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EE5845A2273F11F0905AC591DAE4EC9C.roa
Signing time: Fri 02 May 2025 10:26:39 +0000
ROA not before: Fri 02 May 2025 10:26:34 +0000
ROA not after: Mon 01 Jun 2026 10:26:34 +0000
asID: 984
IP address blocks: 45.202.203.0/24 maxlen: 24
45.206.56.0/24 maxlen: 24
45.206.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 12 May 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86403 (0x15183)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 2 10:26:34 2025 GMT
Not After : Jun 1 10:26:34 2026 GMT
Subject: CN=68149ddf-bc35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:78:17:16:96:81:d3:6b:c1:c3:a9:6d:a4:37:
48:66:fd:cd:27:cc:f3:7f:71:83:52:9e:95:9f:8d:
53:e2:73:47:17:3b:e0:9c:d5:ac:03:77:0f:e2:6d:
7c:b7:f3:0f:92:54:49:4f:87:b1:b9:f0:4c:4a:21:
32:f9:18:78:53:a2:3e:a6:bc:49:79:f5:26:42:a5:
04:bc:40:c0:94:25:6d:30:c7:32:27:60:32:9d:a7:
1a:22:0e:b3:a4:13:00:82:cf:61:02:53:7e:4e:3e:
76:ad:1a:c3:fc:ba:79:0b:57:8e:86:1c:0f:2d:2c:
55:e0:4d:b9:99:54:b1:df:df:00:80:f6:07:30:c3:
55:bb:6b:54:34:a9:c8:49:a1:e9:5a:05:e5:61:2a:
ec:ae:09:77:bb:68:68:51:e6:08:f7:95:5a:81:e1:
aa:ca:14:47:91:68:ca:cd:3a:83:73:a7:9b:2c:36:
0d:38:32:4f:f9:06:c5:62:3d:22:e1:0e:0c:80:ad:
98:ec:89:73:68:a8:ba:95:69:73:44:60:e0:8c:2a:
34:61:45:03:6a:c5:a7:d6:db:55:6a:b5:2f:cc:69:
c1:01:84:2e:b1:37:76:4c:7b:ba:26:52:cf:a7:e5:
0a:e8:f3:90:e1:53:8a:4a:1b:6e:6f:4d:13:ed:3e:
67:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:65:06:D2:AC:50:2E:DA:31:A6:92:D6:5B:DA:0D:AF:EB:6C:CD:B7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EE5845A2273F11F0905AC591DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.203.0/24
45.206.56.0/24
45.206.59.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:6e:15:4a:ca:56:cd:e9:66:6d:71:40:87:86:64:83:ec:a5:
2a:3c:92:50:8e:81:03:01:fa:8a:cb:2c:f9:14:5e:16:b7:f7:
c2:7d:a9:74:52:d3:bb:cf:bf:a7:bf:a7:aa:ac:e7:c7:9b:02:
92:50:e3:f7:0f:85:54:ee:64:65:2d:20:f6:b2:ca:e5:c6:3c:
37:cb:d3:40:1f:8d:8d:f7:c0:c2:5d:f5:c0:8d:26:61:cb:2c:
1a:cb:7e:be:b5:f3:c4:bf:73:55:6f:fb:02:00:3b:a8:82:b0:
54:ad:49:2a:36:1c:6e:aa:bb:3a:54:3b:14:65:70:23:d0:ab:
9b:a8:43:58:94:e2:d5:9b:44:43:1c:02:3f:55:56:c6:40:7f:
39:30:96:43:99:77:c9:32:89:a4:c3:65:15:66:fd:66:03:65:
64:9a:6a:0b:d1:13:97:47:a1:24:27:0b:aa:e9:af:26:54:57:
7f:61:19:7d:da:40:40:b8:cd:4d:61:a6:ab:4d:dc:81:4c:f8:
cc:71:13:07:bd:90:92:26:a6:b6:c2:a2:05:23:bd:ed:05:09:
12:26:80:11:d2:71:fb:61:a8:ec:c5:ca:eb:9a:87:89:28:4c:
ba:05:68:34:e5:da:de:3a:ac:72:db:f5:f1:01:25:48:91:3e:
69:4d:b3:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 18:50:07 2025 by rpki-client