Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/14A7025A3BC911F087A0A994DAE4EC9C.roa
File: 14A7025A3BC911F087A0A994DAE4EC9C.roa (raw, json)
Hash identifier: RTJbhevqqdAnMguM7skGBbe8xT2dn5FST6wZxDACdFw=
Subject key identifier: 24:BC:91:23:6D:14:9F:38:54:8A:23:11:6D:7E:48:9F:C0:7B:9B:AD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01587D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/14A7025A3BC911F087A0A994DAE4EC9C.roa
Signing time: Wed 28 May 2025 13:38:47 +0000
ROA not before: Wed 28 May 2025 13:38:42 +0000
ROA not after: Sun 27 Jul 2025 13:38:42 +0000
asID: 203020
IP address blocks: 45.198.193.0/24 maxlen: 24
45.198.194.0/23 maxlen: 24
45.198.196.0/22 maxlen: 24
45.198.200.0/21 maxlen: 24
45.198.208.0/20 maxlen: 24
45.198.224.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88189 (0x1587d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 28 13:38:42 2025 GMT
Not After : Jul 27 13:38:42 2025 GMT
Subject: CN=683711e7-3631
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:2a:8b:a7:8f:84:4b:40:31:60:56:1a:5b:89:
2a:8d:56:d0:e6:ea:2c:6c:b8:89:a1:8a:2e:de:fc:
e2:54:07:a1:72:a9:fe:22:5e:a9:f6:d1:eb:80:1a:
b9:45:69:e7:af:bb:9b:81:69:e2:33:cc:b2:2c:02:
42:97:98:32:ad:d6:d7:38:d3:11:cc:b0:0c:b9:6b:
a5:17:9a:1b:15:95:c4:2e:3a:df:07:65:21:30:cf:
7b:94:1f:ca:7f:73:28:4b:e9:31:39:13:34:cc:7a:
ea:96:9c:95:cc:7d:98:5d:58:c7:2d:6d:3c:44:ca:
f0:44:74:2f:24:74:f7:ba:52:ed:8c:70:e0:67:73:
ff:3c:39:50:52:22:6b:60:5c:65:b9:01:66:9f:74:
9c:14:80:09:2a:32:f0:6f:87:37:a7:24:39:8f:fb:
87:f0:63:8a:2e:92:32:43:f4:bc:4d:71:ff:f5:1b:
3f:4d:c2:ee:f1:c6:ce:03:27:5d:e5:c1:dc:7c:f2:
ff:1a:09:6f:ac:f6:ac:3a:b7:57:64:ae:2d:75:ed:
76:e6:6b:c5:63:bf:9b:2b:fe:2d:c4:ab:b1:43:e9:
60:e8:de:dc:91:36:41:23:87:dc:24:31:4e:98:ef:
f5:2a:df:24:e8:39:9a:7f:ae:ad:25:e2:70:d3:48:
f8:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:BC:91:23:6D:14:9F:38:54:8A:23:11:6D:7E:48:9F:C0:7B:9B:AD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/14A7025A3BC911F087A0A994DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.193.0-45.198.224.255
Signature Algorithm: sha256WithRSAEncryption
59:b6:eb:f3:8d:36:d8:2b:1e:74:4f:3c:58:e3:ad:57:33:cf:
36:b2:e0:26:ee:9d:cf:a7:55:d0:70:13:a0:9b:4f:bb:b2:c5:
a1:78:40:1f:bc:e6:cd:e5:a2:66:79:41:cc:34:75:d4:20:20:
5e:65:f0:4b:12:c8:b9:0d:f4:b9:bf:b2:aa:df:e0:1b:b2:01:
2b:b2:a0:d4:df:99:9a:09:13:d3:f9:27:0f:91:c5:85:47:32:
2c:d9:01:eb:fd:af:33:75:28:98:2c:e5:d8:7c:e8:7c:b3:b8:
c5:31:93:61:67:62:a6:17:d6:85:d2:ee:46:78:1b:20:36:08:
59:dd:9b:97:78:ba:61:a7:95:06:70:8a:75:df:57:a5:82:e5:
14:82:7f:27:94:c1:24:35:0c:b4:4e:91:4d:eb:71:b4:75:3a:
05:1b:8f:ab:a4:70:2c:c3:41:19:85:bb:b6:b4:42:0a:f7:cd:
9c:74:91:f1:31:87:6c:bf:68:33:24:03:16:67:cf:a9:f0:93:
19:b6:53:73:fb:58:13:bc:c3:8b:0a:69:60:4f:45:e3:d7:5e:
be:c6:d0:ee:cf:4c:7a:69:fe:cd:31:49:ba:46:42:8f:39:1a:
61:60:39:86:8f:6d:9e:0f:84:ba:7d:89:64:f5:7f:2a:90:64:
6b:1d:56:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:42:37 2025 by rpki-client