Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4F1BACAA3AD011F0A97FA7C5DAE4EC9C.roa
File: 4F1BACAA3AD011F0A97FA7C5DAE4EC9C.roa (raw, json)
Hash identifier: jZQ4ZpTAHBkaZ43lQHN339XU3FJ5P4ErDrIBFpil0u8=
Subject key identifier: 64:C6:1B:A0:4E:2E:B9:F2:F4:7A:25:2E:AD:3A:67:14:82:CE:D7:EC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0157AD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4F1BACAA3AD011F0A97FA7C5DAE4EC9C.roa
Signing time: Tue 27 May 2025 07:58:01 +0000
ROA not before: Tue 27 May 2025 07:57:55 +0000
ROA not after: Mon 23 Jun 2025 07:57:55 +0000
asID: 203020
IP address blocks: 45.201.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87981 (0x157ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 27 07:57:55 2025 GMT
Not After : Jun 23 07:57:55 2025 GMT
Subject: CN=68357089-cd51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:1d:8c:a1:ae:f3:9f:6e:9e:9b:4c:e0:19:1c:
de:fd:2a:82:bb:f1:6f:c4:70:da:23:63:58:8f:3d:
dd:35:62:1c:0b:99:30:08:ad:9f:a2:61:15:7c:fa:
1d:58:79:b0:dd:33:0d:40:50:0c:51:32:92:a8:0d:
f8:29:75:ed:58:4b:5a:34:92:47:8e:fd:b7:50:ff:
2e:f7:c7:6e:63:ed:0e:a4:50:c9:d2:cb:79:c6:8b:
90:5f:b7:08:59:62:75:b9:29:64:50:f8:09:88:6d:
d2:c9:16:17:36:f1:6f:dd:a2:7f:19:de:1c:aa:3b:
20:80:c8:aa:0f:a9:5b:1b:98:21:01:d9:39:02:32:
c3:f8:5f:27:d3:b2:1f:6a:df:51:d4:6c:c7:e0:99:
cf:67:e7:17:52:a8:67:9b:d5:17:c0:49:0e:6e:8f:
d9:66:95:fa:be:5c:7c:05:81:2d:a4:b4:a2:12:7b:
57:41:8e:32:d9:5b:46:dc:59:23:af:fe:94:0f:72:
e2:f8:f9:45:3b:40:c1:9c:63:88:27:3c:0a:9a:22:
fb:58:6a:7e:10:14:a8:0f:f6:88:98:cd:21:37:98:
1a:37:3e:cc:16:2d:79:be:de:a2:74:a6:23:7a:51:
98:d9:4b:d3:1a:64:26:87:aa:11:1f:7c:c9:34:31:
32:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:C6:1B:A0:4E:2E:B9:F2:F4:7A:25:2E:AD:3A:67:14:82:CE:D7:EC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4F1BACAA3AD011F0A97FA7C5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.64.0/18
Signature Algorithm: sha256WithRSAEncryption
04:6e:96:a7:68:d8:85:93:bd:f9:5b:16:88:46:08:4d:aa:c9:
25:c1:e7:a9:32:0d:33:02:b0:ac:4d:5a:4b:43:97:d5:de:2c:
00:e9:b1:95:31:74:7d:ab:e0:a7:de:ec:55:03:0c:7f:75:5f:
fd:cb:29:3b:50:24:31:2e:a2:2a:17:2f:58:0e:0a:9f:aa:85:
fa:08:33:ca:75:5a:c1:ed:e4:7d:e9:35:2a:31:54:2d:66:33:
82:0e:37:b6:4a:2f:a8:71:4c:e0:0b:8d:c2:d8:40:13:86:a7:
3b:ff:1d:74:5d:d0:95:be:59:c6:cc:34:14:90:40:f6:5d:01:
ec:8e:ec:1c:b5:22:f2:14:41:ae:85:60:a0:e4:c1:d2:49:20:
09:cf:a2:25:75:4e:5b:4f:ec:3a:db:59:56:a7:91:92:43:71:
2b:7c:81:a2:3c:4b:eb:4c:2a:94:69:c9:57:82:c4:f0:26:df:
88:84:17:65:e5:b6:1b:69:b9:ae:58:91:12:80:2c:b7:a3:49:
fb:24:92:20:56:d4:fa:4a:4e:92:49:09:72:4c:d0:86:09:2a:
24:ea:a3:45:53:17:29:df:bb:ca:ae:86:98:1e:87:7d:c5:9d:
e3:da:f3:96:b0:4f:5c:07:3b:e4:ee:6e:cd:04:fb:e4:28:21:
70:f8:22:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:33:00 2025 by rpki-client