Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7661AD20332B11F094B689CEDAE4EC9C.roa
File: 7661AD20332B11F094B689CEDAE4EC9C.roa (raw, json)
Hash identifier: iysc3rWBbl1gOiSAmn/nuV06A/WqHSU9ZWQQ2l73wAc=
Subject key identifier: 69:C0:49:E2:26:2B:29:FF:A8:59:BA:06:BA:14:13:5C:B3:0A:AD:5C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015591
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7661AD20332B11F094B689CEDAE4EC9C.roa
Signing time: Sat 17 May 2025 14:30:22 +0000
ROA not before: Sat 17 May 2025 14:30:17 +0000
ROA not after: Mon 09 Jun 2025 14:30:17 +0000
asID: 400898
IP address blocks: 45.202.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87441 (0x15591)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 17 14:30:17 2025 GMT
Not After : Jun 9 14:30:17 2025 GMT
Subject: CN=68289d7d-7532
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:60:3e:39:21:7f:a3:5b:ad:04:40:54:15:b2:
0d:37:6e:1a:96:78:23:2c:4b:96:6b:84:f5:ed:b4:
61:51:43:6c:39:d7:04:5a:ec:f2:fb:c7:f6:d4:e5:
da:98:15:b5:aa:0e:fb:a5:90:cf:17:eb:fe:fc:67:
5f:ec:fd:e0:1e:c0:1c:59:ea:7d:42:55:37:3b:dc:
0d:64:db:d7:b6:e0:24:9a:aa:6b:6c:56:06:b6:0b:
78:4b:95:c5:4e:c5:72:8e:4f:0d:55:9c:e3:3f:1a:
db:f1:26:58:07:9d:b3:79:1a:c9:db:8d:67:e7:59:
94:dc:59:46:1f:ac:02:95:ae:2b:41:4a:e3:21:85:
3b:48:94:1f:b9:7d:df:5b:3f:10:f4:c2:ab:48:da:
31:4c:eb:78:7f:ab:6b:7c:80:b7:f6:d0:14:dc:0e:
11:68:e5:4a:15:53:38:fd:7f:9d:cd:e1:9a:14:02:
35:ab:60:9e:44:49:b8:66:cc:e1:2b:64:7e:1f:64:
49:a9:af:32:42:8e:9d:69:3d:2e:cb:13:a1:ef:bd:
16:4f:da:04:e1:80:87:65:18:3e:93:6c:9b:26:02:
30:1f:a5:07:39:13:1b:35:32:c3:1b:61:c5:4d:48:
49:01:18:3f:37:c2:b7:af:7b:c7:65:01:6d:42:19:
a9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:C0:49:E2:26:2B:29:FF:A8:59:BA:06:BA:14:13:5C:B3:0A:AD:5C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7661AD20332B11F094B689CEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.107.0/24
Signature Algorithm: sha256WithRSAEncryption
61:db:c3:cc:8f:0c:8e:b0:e3:9e:84:bf:0d:16:27:3f:36:e0:
92:c8:59:7c:16:05:d9:5f:dc:2b:dc:3d:37:a5:1f:19:47:8a:
3c:84:6e:d5:1b:ed:76:68:36:92:f8:1b:00:b5:8e:0a:28:12:
bf:ed:99:50:47:73:0d:39:01:a5:2d:eb:cb:ed:d3:ae:40:3b:
60:9e:f5:54:5c:65:99:85:26:55:95:ab:33:1e:e6:6a:a2:fa:
d1:63:2d:dc:fe:54:28:4b:02:57:fe:39:ea:ce:8c:f9:e4:d0:
d1:2c:35:45:94:9e:b3:2f:1a:93:8a:6c:68:98:16:8c:f6:6f:
1b:23:40:6b:d3:15:00:34:f0:8d:e3:4e:6b:e7:70:4d:95:fa:
72:99:0c:c7:33:81:7b:3d:28:ca:ce:19:87:3a:d6:93:4d:4f:
97:73:89:56:03:e9:7c:b0:2e:8c:3a:7a:75:16:b9:25:66:73:
fd:31:c7:ff:fc:a1:d0:10:61:ec:5e:9c:03:54:e8:61:f3:8e:
19:64:39:b3:e5:7c:92:12:72:3d:09:a6:4b:56:19:56:f7:1e:
fa:ca:7b:27:32:f2:5d:54:71:cd:e5:a7:27:e6:d4:3c:47:33:
4f:97:d9:72:4b:a9:0b:43:f7:d6:9f:11:b0:1a:b5:93:ab:c5:
09:52:97:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:51:20 2025 by rpki-client