Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/315ADDD8244311F09046048DDAE4EC9C.roa
File: 315ADDD8244311F09046048DDAE4EC9C.roa (raw, json)
Hash identifier: f6+xdz2xgy06udkBUcwVnZLU9Sdq/G9r4p3Z798BxCQ=
Subject key identifier: 4F:2D:3A:10:D2:AC:56:CB:3E:E3:1F:64:45:41:99:CB:93:68:FD:AA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014F95
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/315ADDD8244311F09046048DDAE4EC9C.roa
Signing time: Mon 28 Apr 2025 15:12:26 +0000
ROA not before: Mon 28 Apr 2025 15:12:22 +0000
ROA not after: Sun 26 Apr 2026 15:12:22 +0000
asID: 984
IP address blocks: 45.192.0.0/24 maxlen: 24
45.192.27.0/24 maxlen: 24
45.192.29.0/24 maxlen: 24
45.192.30.0/24 maxlen: 24
45.192.31.0/24 maxlen: 24
45.194.65.0/24 maxlen: 24
45.197.129.0/24 maxlen: 24
45.197.143.0/24 maxlen: 24
45.203.135.0/24 maxlen: 24
45.205.84.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85909 (0x14f95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 28 15:12:22 2025 GMT
Not After : Apr 26 15:12:22 2026 GMT
Subject: CN=680f9ada-bd4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0f:18:36:77:51:f4:88:05:5c:6c:7c:ed:1f:
9a:42:7c:9c:3d:cf:6e:df:4d:09:88:3d:48:b7:b6:
e3:98:2f:53:38:be:6c:0d:af:9d:37:90:1e:df:84:
4a:47:6c:33:b7:2d:23:b0:f1:15:71:41:e4:9b:4f:
aa:8f:05:64:69:2e:ce:26:c7:dd:1c:66:c7:a6:8e:
1d:cf:76:86:6f:5c:9a:24:81:3e:a6:29:ef:a0:43:
82:55:9f:9b:7e:33:b9:c7:46:84:07:43:8f:e9:36:
5c:0c:ab:45:c6:81:eb:f9:3d:26:96:53:61:ac:e8:
69:30:a1:03:9f:4b:2f:27:b5:19:b5:57:a0:ee:ab:
b8:8c:83:1a:2d:d3:a6:ea:98:f0:c7:cb:91:1e:9a:
85:24:db:e1:59:c5:df:c1:d6:93:de:07:de:c6:7a:
7d:1d:77:1f:ce:8f:c8:13:18:39:0e:53:50:85:5a:
6e:7a:3b:25:bd:31:0b:1d:85:5b:05:6e:7c:35:2f:
4a:85:cc:41:b2:dd:26:11:f3:89:fd:16:27:6f:ca:
11:30:10:7d:b3:88:c8:de:94:82:6d:ec:33:8d:f2:
a7:df:dc:c1:11:59:66:88:87:55:b2:cd:09:d4:38:
15:e9:33:25:95:3d:3e:c3:67:ed:b8:da:6d:12:aa:
af:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:2D:3A:10:D2:AC:56:CB:3E:E3:1F:64:45:41:99:CB:93:68:FD:AA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/315ADDD8244311F09046048DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.0.0/24
45.192.27.0/24
45.192.29.0-45.192.31.255
45.194.65.0/24
45.197.129.0/24
45.197.143.0/24
45.203.135.0/24
45.205.84.0/24
Signature Algorithm: sha256WithRSAEncryption
31:31:38:86:b6:80:4c:7b:5c:f0:ec:e1:d8:d4:43:24:a8:17:
19:1a:1c:ea:e1:9a:03:91:1d:43:4e:3c:f0:33:5d:93:a7:ab:
05:60:ff:b3:d3:f4:72:ee:06:90:8e:af:f6:6c:38:5b:9f:f7:
04:b0:2b:df:8e:8c:6f:cc:cf:d8:c4:a5:75:71:ac:5b:bd:bc:
6c:a9:86:98:29:75:1e:95:94:28:e0:d1:f5:f4:a3:b9:da:ad:
3c:8b:6c:0e:62:f5:b2:bc:38:09:b6:36:fd:68:e2:53:8e:71:
0a:09:fa:28:43:ae:0e:a9:2b:04:95:09:99:4a:e5:cb:4e:33:
e9:50:96:3b:c7:d7:a7:15:10:ef:1d:e3:56:d3:a8:e5:11:54:
23:21:1e:49:89:0b:a9:1a:26:8f:68:2c:38:d2:be:4a:1f:e5:
6b:e0:40:c2:88:ca:73:cd:2b:50:41:b7:71:c7:1f:ed:b4:e7:
18:a7:bb:0b:d1:e7:ee:44:8f:c5:ac:b9:81:68:5d:79:f4:da:
27:be:74:cc:a8:69:f9:27:33:40:4b:42:8e:18:ad:a6:4b:a3:
d5:4a:b5:50:81:b8:8d:c2:f3:21:60:e8:4a:70:3c:e3:64:74:
a1:f0:c3:de:83:6e:0f:14:a3:ac:00:9f:44:01:66:99:57:85:
de:23:a9:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:27:01 2025 by rpki-client