Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2240CEF800C511F0B58CE965762E951A.roa
File: 2240CEF800C511F0B58CE965762E951A.roa (raw, json)
Hash identifier: bikLgRSfFu+ErJ505JWWbm63uL5mNgv9YTB1p9Ki/kc=
Subject key identifier: 4A:18:DC:15:0E:4E:FC:7C:9F:31:8A:0E:A0:A0:F1:0E:1F:3A:94:58
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014606
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2240CEF800C511F0B58CE965762E951A.roa
Signing time: Fri 14 Mar 2025 11:11:53 +0000
ROA not before: Fri 14 Mar 2025 11:11:49 +0000
ROA not after: Thu 24 Apr 2025 11:11:49 +0000
asID: 149766
IP address blocks: 45.196.243.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83462 (0x14606)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 14 11:11:49 2025 GMT
Not After : Apr 24 11:11:49 2025 GMT
Subject: CN=67d40ef9-5550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f4:d7:93:f0:29:03:09:78:6c:da:ad:3b:2c:
12:a4:ec:d5:9f:22:21:f1:6f:39:4c:eb:df:e8:86:
16:ba:91:ca:da:a3:ca:26:84:c4:e0:43:4c:74:84:
1a:ae:62:00:e5:51:dd:af:ed:81:d6:be:17:04:0b:
63:c6:a7:a6:dc:58:11:30:72:df:d7:ca:52:3e:50:
c2:98:49:db:e1:a4:9e:ed:82:0c:6b:19:9e:42:5b:
a0:05:e1:3c:4b:bf:06:c6:9c:32:e8:16:ec:26:9a:
99:40:40:08:ee:6f:5e:24:c3:88:ed:09:75:56:dc:
ad:1a:25:61:64:5c:ef:00:ef:7b:91:ef:9b:01:3f:
5d:e0:aa:74:31:68:3f:c4:07:41:29:a9:bf:27:fc:
cb:e1:4c:5d:92:05:6e:34:eb:7c:f2:fb:f3:02:28:
76:1c:9f:77:f5:a7:c0:01:4d:28:df:ef:8e:f0:2c:
83:b3:e8:71:c3:df:1e:94:08:a1:1b:39:50:17:e1:
76:9e:37:89:27:92:94:c2:25:6d:ef:ba:20:72:03:
f2:7c:fd:3c:1d:ef:19:d6:c6:53:b2:a6:36:b1:37:
fb:61:e8:f1:6d:5e:ac:de:25:77:36:8b:81:4b:8a:
5f:62:f6:12:76:f6:9b:a3:96:57:c9:36:00:7a:57:
e8:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:18:DC:15:0E:4E:FC:7C:9F:31:8A:0E:A0:A0:F1:0E:1F:3A:94:58
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2240CEF800C511F0B58CE965762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.243.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:3a:eb:84:e5:7c:a7:de:d6:ac:f5:7e:4b:af:d9:62:a6:81:
95:c1:7b:90:f2:9b:a8:a1:7d:7f:90:f4:3f:2e:63:a1:25:ac:
18:ef:3f:54:ba:93:a6:5a:49:64:3a:35:14:8b:fa:1a:6e:c6:
4c:fc:97:a9:de:d1:30:69:40:58:f2:d1:cf:87:c1:5d:1c:00:
73:ad:a5:03:64:88:f7:c4:c6:73:92:0d:72:dd:11:ce:4b:6c:
15:1e:7c:37:2e:02:41:f1:1c:a2:e5:0b:8d:ab:4f:9d:bf:0b:
96:34:3b:3e:74:12:d4:5c:f4:f2:20:d5:b2:49:41:da:75:88:
16:d3:5a:5c:6f:29:c1:d3:dc:c6:08:08:c5:48:71:3e:c2:0c:
63:c1:5f:36:2b:c1:a1:92:db:d4:32:61:6f:e3:db:64:f0:0a:
68:d1:00:b5:44:a0:ce:1a:2f:df:8f:93:76:27:32:7c:f7:b8:
22:2e:86:22:fe:9c:8d:b7:97:3d:67:fb:49:20:04:60:e0:27:
5a:2f:a7:3d:eb:ff:d9:d4:68:e5:70:00:ad:9a:ec:a4:12:51:
07:56:d3:08:87:4a:82:6c:3e:5c:07:62:9e:ca:2f:17:c8:07:
17:74:4c:6a:94:a8:8b:e7:c8:9a:b1:2c:77:58:95:89:f8:bb:
c5:bc:f6:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:03:35 2025 by rpki-client