Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/71D77B943AD911F0B571AF81DAE4EC9C.roa
File: 71D77B943AD911F0B571AF81DAE4EC9C.roa (raw, json)
Hash identifier: NE5QG9+AyeYHJWfTrSsD6pJ/aqTn2eEi6XNSFZMisTk=
Subject key identifier: 4C:E1:84:45:67:9D:EB:21:BB:86:ED:47:A2:45:08:80:59:7F:CB:91
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0157CC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/71D77B943AD911F0B571AF81DAE4EC9C.roa
Signing time: Tue 27 May 2025 09:03:25 +0000
ROA not before: Tue 27 May 2025 09:03:20 +0000
ROA not after: Mon 30 Jun 2025 09:03:20 +0000
asID: 62468
IP address blocks: 45.204.192.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88012 (0x157cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 27 09:03:20 2025 GMT
Not After : Jun 30 09:03:20 2025 GMT
Subject: CN=68357fdc-12a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c6:b8:19:73:70:a4:04:36:16:74:33:ff:e8:
59:ed:57:ea:e3:d4:94:f8:d6:3f:74:64:03:ce:7f:
dc:06:fd:dd:fc:20:ac:2d:c5:c6:37:72:17:5d:cc:
04:fa:87:ea:41:21:e5:25:21:43:9d:76:a5:ea:28:
ae:bb:ac:3f:58:bd:06:f8:e8:1b:f3:b7:1f:1f:b3:
f1:bc:cc:02:70:4d:97:58:e7:8e:f8:96:77:65:67:
3c:6f:9c:7d:3b:fd:c3:60:75:5a:f8:76:1e:8f:4c:
a0:90:19:80:6c:19:cd:0e:27:51:38:75:cc:b4:3c:
e7:54:04:e6:0b:d9:42:09:05:79:d0:a9:73:f0:2a:
55:f2:a8:1f:cd:07:19:b9:10:a0:0e:5b:5f:1b:c1:
e3:2a:4d:67:0a:81:f9:fa:21:1f:bb:0f:e6:b1:e1:
11:46:f5:02:4b:6f:ae:1f:d0:5b:08:0d:31:ef:93:
7f:02:46:38:16:35:50:b2:c3:99:44:5b:74:2a:77:
cb:64:c0:07:d7:7e:17:97:61:08:b0:0e:1d:6e:ca:
8a:58:b6:f2:fb:8f:e5:99:17:5f:89:61:74:25:5d:
7f:00:43:7e:5d:e6:66:11:00:9e:14:e8:1c:cd:54:
93:58:31:86:6a:2d:72:5d:51:29:d3:b5:57:46:37:
ce:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:E1:84:45:67:9D:EB:21:BB:86:ED:47:A2:45:08:80:59:7F:CB:91
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/71D77B943AD911F0B571AF81DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.192.0/19
Signature Algorithm: sha256WithRSAEncryption
3c:ba:bd:3d:84:5d:0a:c7:a0:99:e8:4c:07:2f:80:96:40:85:
4a:d0:6c:3a:44:99:b2:06:e6:6b:cd:58:e9:38:55:c7:e4:55:
4d:0a:9a:a1:94:80:a9:f0:2e:6d:3d:63:88:b8:0b:fb:b3:2f:
48:0e:a2:8b:34:4d:a1:17:6e:5a:11:8e:59:9f:54:18:91:4e:
6b:2a:2f:b0:e7:46:ef:84:c7:b9:fc:76:5e:d6:8e:7a:c3:e9:
1d:cc:3a:87:6b:15:da:05:89:ef:21:bb:e2:e5:d6:67:e6:fd:
0c:e7:f8:24:ee:bd:c4:c4:c6:31:57:89:8f:67:bc:15:2a:3f:
1b:99:ef:50:58:01:da:fd:fa:35:f6:b7:15:c1:56:6d:a2:ae:
24:38:47:fc:56:29:dc:ac:c0:44:40:9f:c5:5f:40:8e:ea:c8:
06:dc:82:8e:a2:e2:4c:f5:63:bd:35:a1:18:09:70:33:f4:c4:
f7:e3:d5:39:ba:8d:1b:00:cc:3e:4f:07:d5:39:8b:b4:8a:13:
5c:04:1e:ec:3e:9e:78:88:61:b9:06:88:8b:1f:d5:f1:36:b7:
f5:2d:f2:9d:db:da:c4:51:02:ef:7a:eb:2e:cc:fe:8f:11:07:
07:8c:57:39:76:ba:c3:0e:13:2e:0b:fc:55:da:9d:e5:3e:c4:
4e:4d:8c:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:35:04 2025 by rpki-client