Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/95A83AFEF86711EFA5125BAE762E951A.roa
File: 95A83AFEF86711EFA5125BAE762E951A.roa (raw, json)
Hash identifier: 9i7DhOoauHbS4fi5RA9JmmlyRmDogfDy0FMYPaEYjA4=
Subject key identifier: 09:94:56:EE:E8:D3:79:FC:6A:DA:32:95:F2:82:12:57:54:F1:A0:52
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014251
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/95A83AFEF86711EFA5125BAE762E951A.roa
Signing time: Mon 03 Mar 2025 19:42:05 +0000
ROA not before: Mon 03 Mar 2025 19:42:01 +0000
ROA not after: Sat 15 Mar 2025 19:42:01 +0000
asID: 137899
IP address blocks: 45.207.192.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 15 Mar 2025 00:26:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82513 (0x14251)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 3 19:42:01 2025 GMT
Not After : Mar 15 19:42:01 2025 GMT
Subject: CN=67c6060d-77ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ec:84:23:d1:48:5a:e5:87:0c:d7:ad:5f:5e:
ec:3e:c1:42:94:00:d0:0f:b6:06:65:b9:72:23:1a:
b4:f4:11:f8:1e:94:95:5d:ea:21:65:d9:c3:a3:06:
2a:cd:77:6e:f9:ca:1a:86:8b:cc:13:fe:32:35:15:
e7:16:d9:43:47:1a:6d:17:84:28:f7:53:b8:02:3d:
53:68:46:f4:50:a9:af:56:c2:c6:f3:91:f2:2d:83:
0d:a5:64:d5:96:ae:f6:ba:db:42:36:0d:8c:ae:4b:
66:4f:f1:ce:09:54:31:cc:e3:a9:0f:5a:e8:2a:40:
ae:ea:f5:78:8e:3a:f5:6d:9b:59:00:f1:2f:fa:c3:
bc:56:fe:12:ff:39:64:09:b2:a7:d4:f9:55:86:06:
e6:15:e9:de:19:22:b9:24:f5:0a:b1:3a:61:3a:ee:
62:9c:55:76:6a:07:e0:17:c9:5a:ce:84:b5:b4:25:
8a:02:a0:11:5b:77:d6:1e:16:e2:44:c6:45:50:9d:
a4:0f:04:fd:95:8e:85:59:e3:db:45:3e:d4:03:e3:
8c:e1:d8:5c:b6:2a:a6:50:1d:0e:bc:92:73:4e:82:
55:96:f3:12:07:de:27:bd:39:f7:28:42:2e:23:3a:
62:e4:a0:e8:b6:2e:62:22:df:a0:01:e9:fc:f8:d2:
5f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:94:56:EE:E8:D3:79:FC:6A:DA:32:95:F2:82:12:57:54:F1:A0:52
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/95A83AFEF86711EFA5125BAE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.192.0/19
Signature Algorithm: sha256WithRSAEncryption
a4:c7:17:93:ee:08:57:ae:f5:4c:60:c6:52:11:f4:27:d9:84:
36:a6:9a:70:eb:54:5b:36:45:bc:2e:4d:82:ea:d5:bb:a1:96:
09:34:86:2c:41:6e:d3:66:6d:08:bb:29:87:97:99:cc:cc:51:
6d:ac:c6:4a:9e:1b:fd:2a:82:0c:93:11:38:30:0b:fe:47:1c:
0c:20:85:ce:49:a6:58:5d:b0:e8:5f:51:1c:9e:ac:67:72:6a:
00:37:6c:a6:10:67:e6:a4:e7:3f:da:d1:ee:1f:b2:87:b6:96:
c7:78:60:74:73:8e:a2:a6:5a:3e:cc:21:dc:a9:3b:f0:18:84:
ea:0a:25:28:af:e2:fe:c8:48:68:83:20:0c:a9:8b:1b:0e:77:
70:4a:3f:0c:1b:24:09:8c:1d:6e:bf:35:a8:22:9c:00:1a:65:
49:08:92:4d:78:4c:e9:51:1f:db:c1:c1:61:66:31:75:ac:04:
27:e8:c1:c2:64:a8:a8:50:6e:2c:4f:3a:e0:44:00:fa:8c:d6:
98:e1:64:31:b1:81:6a:36:e1:4c:c5:9b:a0:f4:88:62:2a:0c:
4c:98:a6:cc:e3:3b:46:5f:ad:27:d7:25:03:f5:0b:eb:1c:5e:
ac:36:90:2a:35:e4:65:c3:8c:94:c7:29:80:d4:a2:24:52:81:
3e:82:b7:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 06:30:24 2025 by rpki-client