Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5D818EBA332111F0A551FF8CDAE4EC9C.roa
File: 5D818EBA332111F0A551FF8CDAE4EC9C.roa (raw, json)
Hash identifier: sSOiJWbCzA7U705UqbZqwPVJR955WiCBMSYrvkcy0ys=
Subject key identifier: 79:09:E3:64:02:C1:8A:75:5F:A1:91:74:E6:24:77:AA:97:D0:AB:7E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01557B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5D818EBA332111F0A551FF8CDAE4EC9C.roa
Signing time: Sat 17 May 2025 13:18:05 +0000
ROA not before: Sat 17 May 2025 13:17:59 +0000
ROA not after: Sun 08 Jun 2025 13:17:59 +0000
asID: 44559
IP address blocks: 45.196.106.0/24 maxlen: 24
45.196.107.0/24 maxlen: 24
45.202.192.0/24 maxlen: 24
45.202.193.0/24 maxlen: 24
45.202.198.0/24 maxlen: 24
45.202.200.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87419 (0x1557b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 17 13:17:59 2025 GMT
Not After : Jun 8 13:17:59 2025 GMT
Subject: CN=68288c8d-0afa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d1:34:52:95:ad:0d:be:d7:d3:1f:06:75:3d:
96:27:42:3f:32:d9:cf:88:45:3f:15:12:bb:33:53:
31:f6:e4:c2:64:fa:bc:54:18:cf:c2:a4:3b:c0:eb:
7f:35:f8:4f:ce:07:1f:9c:11:40:ed:b7:f1:f9:c2:
01:ed:d1:a7:c0:a2:72:a2:3b:b0:dd:09:de:22:aa:
6e:98:27:c8:3e:dc:36:e4:35:88:af:4f:96:ff:c3:
f2:92:01:fe:4e:05:e4:84:ce:6c:55:9b:2e:5c:bc:
b8:37:96:fe:af:3c:61:23:53:b2:3d:0b:c5:60:31:
cc:ac:61:ea:32:5a:30:2f:31:6e:64:42:93:ed:0d:
03:8d:8a:87:ae:d9:ec:43:f4:ac:b0:b3:56:f6:38:
21:94:f0:ea:39:6c:bf:a9:b4:dc:c7:73:02:92:61:
a1:0f:6b:0d:21:b1:f2:0b:09:af:b2:1d:68:34:73:
53:80:a5:5f:3f:10:43:d7:0f:d2:0b:c3:c8:b8:cd:
9b:14:4c:b4:04:b0:d0:de:e0:15:e7:61:c1:98:ce:
0d:7d:06:d9:64:57:6a:b7:55:3c:ad:c8:38:b0:c0:
77:28:84:86:d2:98:b8:ab:17:96:c4:f1:03:59:65:
22:ba:d7:99:fd:db:63:00:19:43:72:09:f5:06:24:
42:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:09:E3:64:02:C1:8A:75:5F:A1:91:74:E6:24:77:AA:97:D0:AB:7E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5D818EBA332111F0A551FF8CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.106.0/23
45.202.192.0/23
45.202.198.0/24
45.202.200.0/24
Signature Algorithm: sha256WithRSAEncryption
00:81:2d:d5:ee:f1:e6:34:ab:25:4e:f9:be:8a:00:f5:84:67:
3f:6f:54:00:24:20:89:d3:ed:e6:ba:a2:40:e1:a7:76:a1:0d:
91:7c:b8:cb:b6:39:bd:1d:f2:1e:a9:58:f5:87:1d:5b:a1:6f:
59:65:82:e7:15:dc:7c:ce:ac:0e:0c:73:87:bf:e0:a7:87:ba:
cf:dc:53:ca:7f:e4:64:d1:94:5a:55:ad:6a:de:de:3d:d7:e0:
61:de:14:cb:92:ba:6d:01:68:3a:83:7a:49:db:42:3a:76:64:
c3:16:6a:fc:b2:47:26:62:29:ee:6a:cc:f4:17:d0:ba:a4:9a:
1f:6a:96:78:38:0a:40:a3:92:e6:fa:7b:ec:3e:e9:a4:65:13:
74:8a:1c:30:e7:67:44:0e:ef:f8:e2:09:32:08:e0:0c:4d:b3:
e3:a6:63:d7:1b:89:8e:0f:71:8b:1c:0f:81:29:7b:85:ed:ab:
7b:a1:1e:39:78:ed:78:3a:58:f7:f9:af:f1:df:84:3f:15:16:
e9:aa:3f:78:d1:c3:40:c1:e2:da:c1:56:00:79:00:26:96:36:
70:54:1a:11:e2:39:f7:dd:19:40:39:39:15:24:33:8e:72:ef:
47:6e:11:e5:7c:c8:9f:ee:b1:1d:46:8e:72:26:78:66:09:f6:
ae:d6:29:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:39:18 2025 by rpki-client