Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4905CEB0315011F08D66C3E9DAE4EC9C.roa
File: 4905CEB0315011F08D66C3E9DAE4EC9C.roa (raw, json)
Hash identifier: SYuMY85UwB3nEkZv4unnOpsYN1M7MD6Bvdxj+oYU5OI=
Subject key identifier: 6D:DB:74:65:95:49:1D:0F:1B:64:91:B6:A4:61:28:60:EA:C5:5F:95
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015457
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4905CEB0315011F08D66C3E9DAE4EC9C.roa
Signing time: Thu 15 May 2025 05:48:54 +0000
ROA not before: Thu 15 May 2025 05:48:49 +0000
ROA not after: Wed 04 Jun 2025 05:48:49 +0000
asID: 21859
IP address blocks: 45.198.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Jun 2025 05:48:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87127 (0x15457)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 15 05:48:49 2025 GMT
Not After : Jun 4 05:48:49 2025 GMT
Subject: CN=68258046-3463
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a3:4a:41:e5:74:95:72:02:23:5c:a0:33:68:
1f:94:09:e0:6f:78:2b:64:a3:d6:27:72:79:78:4c:
7f:d0:91:6f:ac:77:f2:98:d5:5f:b0:54:77:29:4d:
b8:44:ef:ec:fa:04:e5:f0:d2:61:e0:bc:fe:91:3c:
04:54:eb:1c:fc:6e:c2:41:9f:85:7c:ea:b4:48:0d:
32:b2:27:6e:7f:96:f4:be:14:66:92:11:9d:c3:2a:
91:83:84:8e:88:bc:94:b2:78:59:11:81:96:89:88:
25:8a:82:e7:45:3a:fa:c7:c8:6c:50:5a:06:e2:be:
a9:e3:a7:4d:d0:a2:fd:55:34:5f:17:cc:08:b9:55:
7d:c1:c5:6b:ad:e4:7a:4c:65:48:e4:29:36:c8:d8:
b5:67:46:b0:8b:6e:52:c5:69:99:1b:08:58:55:78:
59:fe:3d:d6:b2:6a:bb:49:84:99:ce:95:ef:1c:9d:
32:cf:f7:70:64:e2:fd:85:f2:a0:bf:0a:22:a6:16:
67:e2:63:d4:2f:e1:d9:f9:27:8c:e8:11:8c:97:52:
9e:0d:53:ed:8e:b6:43:99:2b:cd:d2:04:55:b4:5f:
6e:7c:a2:24:89:41:5c:5f:3f:a5:7d:3f:35:7a:bf:
b6:26:dd:0e:8b:c2:2b:cf:32:89:f6:8d:52:d2:bb:
50:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:DB:74:65:95:49:1D:0F:1B:64:91:B6:A4:61:28:60:EA:C5:5F:95
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4905CEB0315011F08D66C3E9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.106.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:61:05:42:2d:00:33:dc:db:9f:de:5a:37:85:66:7e:bc:ef:
b8:bb:38:17:a4:a4:85:ec:d0:f0:8a:91:2a:6c:46:3a:d6:d9:
f7:b9:4b:c2:2a:22:3e:d1:d9:96:ac:32:cd:a0:fc:26:14:b0:
10:bf:60:3a:97:57:91:69:c9:fa:cf:01:f5:c2:07:d5:0b:94:
d0:e9:d1:db:fc:be:fc:1d:cd:d8:a7:19:80:db:6a:ac:75:20:
4e:a5:eb:1a:40:3e:59:0c:5d:c9:90:09:ab:f1:2f:89:58:5b:
5e:73:52:ab:c5:11:0c:19:28:20:ed:c3:e1:a4:49:2a:3c:5e:
e2:4d:c8:e4:60:68:9b:e6:9c:f2:a1:c4:36:58:25:5e:52:6a:
06:46:d7:5f:34:e5:37:de:93:c0:cc:20:9d:d3:fa:56:b1:89:
e5:ec:cb:c1:6f:52:bc:87:64:0e:6e:06:d2:35:50:9a:b5:e7:
85:b0:6c:90:f5:c1:a4:b8:4a:ed:da:a6:bd:48:30:c5:a9:9c:
4a:f3:77:d9:e6:8e:d9:26:d0:07:02:6c:ff:8c:2d:25:20:d4:
ec:b1:c2:d5:0c:0a:fd:15:49:38:37:e8:e4:07:7f:56:3b:cd:
35:0e:6c:24:28:c7:10:96:76:6f:60:ca:29:7f:11:de:9e:e9:
30:66:2c:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:37:35 2025 by rpki-client