Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A8832BA4F47311EF98C354AE762E951A.roa
File: A8832BA4F47311EF98C354AE762E951A.roa (raw, json)
Hash identifier: joxyJvAi0lhMYGag7JHLnyAV2pZb6rKGwgc7/vcs3qk=
Subject key identifier: CB:DF:3C:DD:FB:99:D5:9F:BC:E8:B5:24:F1:FE:CD:16:A4:2B:11:A8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0136C3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A8832BA4F47311EF98C354AE762E951A.roa
Signing time: Wed 26 Feb 2025 18:58:26 +0000
ROA not before: Wed 26 Feb 2025 18:58:22 +0000
ROA not after: Thu 19 Feb 2026 18:58:22 +0000
asID: 984
IP address blocks: 45.201.84.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79555 (0x136c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 26 18:58:22 2025 GMT
Not After : Feb 19 18:58:22 2026 GMT
Subject: CN=67bf6452-6bde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:46:c6:88:bf:88:d8:8a:d2:18:83:56:be:ad:
09:64:d0:e5:f0:dd:b9:10:c1:a5:e2:21:37:74:00:
c9:ba:f5:fb:d7:38:f6:fb:47:5d:0d:77:f2:d6:b4:
ac:c5:40:f4:53:48:cf:df:86:ca:33:97:20:95:03:
d8:a4:d9:aa:d7:d1:f9:91:76:6d:41:3c:8e:bf:90:
f7:a6:73:04:f6:e4:f5:1c:a0:66:07:54:ad:9a:90:
58:4d:34:08:5e:ee:8c:37:ce:4a:ff:c6:ae:34:2a:
f7:41:a2:d1:e8:38:c7:39:53:a2:3c:f8:fd:18:10:
8f:c1:9a:6b:33:05:02:3f:ae:bc:49:3b:57:56:c6:
95:90:7b:cd:28:6c:bb:23:7a:d7:7b:80:8f:bf:e7:
52:d0:ff:19:de:3a:ce:77:3b:3a:d5:46:72:dd:88:
67:23:eb:cd:c6:f1:db:bf:d3:4e:44:b1:af:2c:58:
d6:74:9d:01:fb:a9:1d:a9:79:17:54:c1:ed:5c:db:
84:df:5c:e4:28:61:26:7a:aa:ed:e7:e4:5d:6d:5c:
6c:ed:41:1d:60:2b:02:da:bd:f3:d4:52:4d:a6:b3:
1b:14:f6:f9:19:bd:c7:90:3b:3e:7d:00:fd:d0:16:
d6:3d:68:7b:45:fb:fe:78:f8:5a:5f:12:8c:b0:5f:
db:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:DF:3C:DD:FB:99:D5:9F:BC:E8:B5:24:F1:FE:CD:16:A4:2B:11:A8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A8832BA4F47311EF98C354AE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.84.0/24
Signature Algorithm: sha256WithRSAEncryption
67:50:6b:32:e1:d9:df:4d:57:16:32:78:b9:a3:b7:34:0c:ba:
ab:4c:ea:c1:23:89:4b:88:60:32:bd:87:0d:0b:54:7a:ee:d2:
76:df:8a:73:0a:3d:6e:88:73:42:9a:4a:55:b0:9c:cd:f4:62:
34:73:a8:4d:2d:d2:07:22:a2:9f:db:66:0b:0a:95:eb:97:2d:
9d:7e:7c:4c:8b:5e:86:d5:fd:bc:b2:fb:93:6b:d4:99:df:bd:
fd:3a:f5:e9:b4:c8:15:2f:83:e6:1c:1e:de:33:21:b8:8d:25:
77:24:76:97:59:08:96:04:2d:eb:2f:30:da:df:84:cc:bd:25:
19:62:1e:7e:6c:81:dd:d5:b5:44:68:c0:6c:5f:b4:a7:e8:07:
95:51:8f:86:bb:e8:d4:38:65:2a:81:a5:a5:b3:53:c7:cf:55:
a6:28:2c:e1:e1:e2:b1:a1:bf:6e:14:aa:4c:ae:98:74:b5:56:
fc:37:58:96:15:6f:c2:71:6b:fd:73:26:55:2b:1d:d9:7a:4c:
ff:6f:22:f3:30:67:f0:ba:3e:76:83:c1:fc:6d:e3:d7:a4:8d:
58:a6:2a:d1:22:60:4d:53:6b:3b:21:81:e1:41:c6:60:55:71:
d3:20:9b:c8:c1:da:84:a6:5c:0e:21:15:55:3f:1b:75:5e:77:
ec:b8:2e:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:22:32 2025 by rpki-client