Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1803AF74094D11F09419D28F762E951A.roa
File: 1803AF74094D11F09419D28F762E951A.roa (raw, json)
Hash identifier: Fizhjn0KuaMCiN80B5kJp+VW1lpj1Oour200RFNK4VQ=
Subject key identifier: E4:8E:FA:CB:7A:08:51:92:79:D0:08:67:16:F9:36:7C:FF:65:D6:FD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0147F3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1803AF74094D11F09419D28F762E951A.roa
Signing time: Tue 25 Mar 2025 07:45:17 +0000
ROA not before: Tue 25 Mar 2025 07:45:13 +0000
ROA not after: Tue 13 May 2025 07:45:13 +0000
asID: 63139
IP address blocks: 45.197.105.0/24 maxlen: 24
45.197.106.0/24 maxlen: 24
45.197.107.0/24 maxlen: 24
45.197.108.0/24 maxlen: 24
45.197.109.0/24 maxlen: 24
45.197.110.0/24 maxlen: 24
45.197.111.0/24 maxlen: 24
45.197.112.0/24 maxlen: 24
45.197.113.0/24 maxlen: 24
45.197.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83955 (0x147f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 25 07:45:13 2025 GMT
Not After : May 13 07:45:13 2025 GMT
Subject: CN=67e25f0d-70bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:eb:a5:83:e3:38:58:7d:12:58:d2:14:e4:86:
40:5c:6e:09:a6:1c:ec:62:3e:81:7c:57:06:8d:0a:
da:c1:20:60:48:f0:61:77:97:a1:40:7d:92:f5:03:
bb:1d:42:32:4c:19:25:01:f0:12:45:71:89:1e:bd:
90:70:e3:04:0a:85:67:4f:39:39:ff:14:e6:27:e6:
f0:c7:99:53:af:2e:4e:e5:95:e1:84:4c:29:fb:1d:
e9:54:87:e9:74:58:75:79:f7:ad:c3:6c:98:55:dd:
7a:7a:63:92:95:34:ac:f9:10:09:ac:00:5c:7a:e5:
9b:ba:dd:f0:9b:3f:e7:6b:09:e2:46:93:d1:02:58:
0f:1f:0c:58:48:60:e2:1f:c6:25:12:99:54:b2:1b:
e1:ac:59:8a:5a:48:51:f5:3f:d0:c1:48:e0:4b:89:
a9:bc:ce:ab:91:47:c6:f1:fa:28:25:b3:27:d0:d2:
59:1c:cd:1a:6d:9b:2f:00:5c:ab:7c:e6:fe:8f:29:
90:00:a1:fc:10:69:7a:ae:bb:90:84:c1:fb:06:9c:
20:b1:e1:22:26:ae:17:5d:4b:f7:e6:f2:b7:77:e2:
06:01:d1:a6:90:3c:92:df:6e:68:b8:90:32:bc:51:
dd:8b:15:4f:fe:02:be:1a:d1:93:91:4e:8f:c7:54:
ad:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:8E:FA:CB:7A:08:51:92:79:D0:08:67:16:F9:36:7C:FF:65:D6:FD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1803AF74094D11F09419D28F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.105.0-45.197.114.255
Signature Algorithm: sha256WithRSAEncryption
13:45:2a:4d:20:a8:d6:c7:7c:1b:e5:da:45:c9:29:90:9e:c4:
21:07:73:4e:a3:78:1c:14:84:1a:fe:ab:11:a4:44:a2:21:78:
81:d1:18:1e:86:81:ee:8e:93:07:16:5e:85:16:60:e5:cc:ad:
5c:66:29:87:ea:d8:18:17:38:6a:0e:00:30:7a:1b:7f:28:a2:
c0:0d:c0:c8:a1:d8:83:05:74:2c:72:9c:48:c7:93:dc:6a:fd:
e3:6a:99:37:5e:e8:43:7f:9f:80:63:46:86:ad:57:db:fc:80:
12:0b:49:10:76:79:0e:8d:37:4e:99:1d:52:4b:0f:81:e8:18:
b9:80:45:d2:f8:ec:f1:c6:0a:c2:87:8f:f3:1c:03:da:3a:00:
69:59:69:d6:67:c9:da:80:b4:33:62:e0:a9:78:8b:47:02:e9:
2c:b3:cb:2e:47:02:8e:39:b7:5c:5e:04:fd:2a:1c:6d:48:44:
32:5a:b9:7d:af:22:82:04:b9:7b:4d:2d:b3:63:7d:63:24:7f:
da:2b:c0:0a:0b:c3:7e:1c:6a:c7:fb:26:eb:9a:b3:18:98:c3:
94:15:73:21:e7:e4:76:e3:92:aa:27:e3:a4:c3:a1:fc:74:28:
bf:a6:e1:45:8f:7c:e9:ae:da:82:7d:96:11:98:4f:fc:b4:71:
ff:5f:46:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:18:02 2025 by rpki-client