Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/12B53108FE4B11EF9F0EDE79762E951A.roa
File: 12B53108FE4B11EF9F0EDE79762E951A.roa (raw, json)
Hash identifier: Lp2kTfo1QWqzKbGjPr4Q44xKwtyJZLMSKmMndqr0gng=
Subject key identifier: E3:C2:92:42:C5:B5:72:BE:6B:BD:B2:54:66:5F:C2:B4:AB:5A:76:78
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0144D1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/12B53108FE4B11EF9F0EDE79762E951A.roa
Signing time: Tue 11 Mar 2025 07:33:06 +0000
ROA not before: Tue 11 Mar 2025 07:33:01 +0000
ROA not after: Wed 09 Apr 2025 07:33:01 +0000
asID: 139646
IP address blocks: 45.200.14.0/23 maxlen: 24
45.200.16.0/23 maxlen: 24
45.200.18.0/23 maxlen: 24
45.200.20.0/22 maxlen: 24
45.200.24.0/21 maxlen: 24
45.200.32.0/19 maxlen: 24
45.201.214.0/23 maxlen: 24
45.201.216.0/21 maxlen: 24
45.201.224.0/21 maxlen: 24
45.201.240.0/20 maxlen: 24
45.204.0.0/24 maxlen: 24
45.207.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83153 (0x144d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 11 07:33:01 2025 GMT
Not After : Apr 9 07:33:01 2025 GMT
Subject: CN=67cfe732-aa89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b5:c1:70:38:dc:7f:2c:81:50:e3:f9:0f:68:
d7:de:5d:91:52:f2:08:c0:07:f7:0d:67:74:61:95:
51:56:50:03:b0:79:26:14:71:4f:45:48:c2:9c:5e:
ab:03:2e:f1:b0:a9:97:ba:13:3d:62:15:e8:e1:3a:
38:b0:1c:77:77:13:dd:4c:92:6d:2f:3b:f5:ba:37:
33:67:7b:ec:27:71:15:bc:c1:5f:09:54:1f:7a:9f:
20:40:e6:8e:d6:0c:bd:48:94:28:4c:75:05:4e:d8:
5e:52:a7:f8:f4:48:e9:08:93:07:7f:e5:01:66:e6:
42:04:6a:88:f6:46:41:7a:f6:78:72:3a:65:bf:92:
1e:10:0b:80:13:a4:e1:59:7d:f0:0e:29:3e:1c:41:
91:1d:d7:d1:f2:c3:53:68:ac:4f:98:1a:38:d8:68:
66:fc:46:bb:03:bf:d1:b2:a9:6e:82:61:81:38:dc:
db:74:be:90:f6:cd:62:50:2f:bd:95:d0:2a:7f:4f:
f0:5f:58:60:d5:e9:cf:30:87:55:24:e4:e0:90:d5:
f0:89:73:e7:d7:87:80:72:43:b9:ee:c7:01:84:5f:
be:6f:95:ef:2e:b3:56:89:07:98:50:d2:54:27:ef:
dd:cf:19:b5:86:e8:78:11:f6:93:9b:a0:7e:ae:d7:
3f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:C2:92:42:C5:B5:72:BE:6B:BD:B2:54:66:5F:C2:B4:AB:5A:76:78
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/12B53108FE4B11EF9F0EDE79762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.14.0-45.200.63.255
45.201.214.0-45.201.231.255
45.201.240.0/20
45.204.0.0/24
45.207.224.0/19
Signature Algorithm: sha256WithRSAEncryption
39:aa:79:de:68:9f:f5:27:4d:93:6c:48:11:25:83:21:90:e2:
48:f1:05:ed:47:4a:92:7f:f4:e9:83:bf:dd:fe:b1:30:3d:70:
38:51:6f:a1:f6:54:0a:8a:6b:52:9f:fd:5a:ce:04:1c:fa:b9:
00:48:36:fe:ff:dc:22:de:de:c3:74:81:2d:e2:c7:1f:00:03:
ba:96:b3:35:09:48:9c:cb:28:1a:ce:74:b6:3e:89:45:03:08:
d3:29:60:f1:f2:e3:33:59:9d:d8:9d:8c:db:6e:0d:a5:8b:db:
53:1e:65:2b:e7:ea:c2:9d:55:8c:9a:5e:b5:37:ef:fb:96:06:
39:ba:bf:cd:01:3a:1f:2b:cf:22:2b:47:11:43:e9:ca:17:c5:
66:12:04:a7:0a:a9:93:14:aa:0b:37:87:90:12:c3:b2:21:a1:
a2:fa:39:b0:2e:2e:37:d6:70:43:50:ae:4e:74:77:19:bf:f7:
87:d2:63:3c:ac:13:59:90:aa:96:a6:c8:58:ea:53:3a:87:b2:
bb:40:6a:29:4c:13:bb:98:88:e9:2d:49:48:a8:21:1b:70:6f:
6a:a3:e3:0e:4e:a4:e0:a8:e4:09:60:60:09:43:93:05:0f:91:
41:34:75:c6:bf:cd:d2:e8:16:89:1a:60:2a:e9:a1:7b:28:bd:
a1:5e:a3:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:06:27 2025 by rpki-client