Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B9F581D62CE311F09CA3F6C7DAE4EC9C.roa
File: B9F581D62CE311F09CA3F6C7DAE4EC9C.roa (raw, json)
Hash identifier: 7Nz622kM8Kk2hIBuk6m3o4YjLAT5wTBLPfXH0zQvuGs=
Subject key identifier: 21:58:D3:5F:95:35:A0:02:23:98:9F:A6:EA:B0:25:6E:52:AF:81:00
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015331
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B9F581D62CE311F09CA3F6C7DAE4EC9C.roa
Signing time: Fri 09 May 2025 14:41:44 +0000
ROA not before: Fri 09 May 2025 14:41:39 +0000
ROA not after: Tue 17 Jun 2025 14:41:39 +0000
asID: 6079
IP address blocks: 45.192.64.0/19 maxlen: 24
45.202.32.0/21 maxlen: 24
45.202.40.0/23 maxlen: 24
45.202.42.0/23 maxlen: 24
45.202.44.0/23 maxlen: 24
45.202.124.0/24 maxlen: 24
45.203.192.0/22 maxlen: 24
45.204.78.0/24 maxlen: 24
45.204.112.0/20 maxlen: 24
45.205.76.0/22 maxlen: 24
45.205.80.0/23 maxlen: 24
45.205.86.0/23 maxlen: 24
45.205.88.0/21 maxlen: 24
45.205.96.0/23 maxlen: 24
45.205.152.0/23 maxlen: 24
45.205.156.0/22 maxlen: 24
45.205.160.0/23 maxlen: 24
45.205.170.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86833 (0x15331)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 9 14:41:39 2025 GMT
Not After : Jun 17 14:41:39 2025 GMT
Subject: CN=681e1428-22ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:23:61:11:86:0f:a0:eb:d9:bf:2b:c8:6a:46:
79:aa:f3:17:b4:fd:9b:52:cb:48:26:4a:88:09:44:
2d:97:d6:35:db:f2:e0:1a:02:ac:ca:0c:76:b8:9e:
cd:f0:1e:77:a1:19:05:c3:e2:69:51:d2:83:8e:35:
e0:ed:81:86:cf:ac:f7:f8:bd:42:d4:07:70:3b:d2:
6f:b3:67:5f:75:da:18:e2:65:f3:78:00:fb:12:6a:
92:07:83:b5:7c:c1:34:4a:a2:58:82:7a:4c:a8:53:
0f:f8:31:47:63:94:b6:7d:3d:71:0d:ee:7b:83:20:
5d:b2:10:d5:4e:41:29:7d:12:ba:35:0b:13:f6:ee:
40:eb:c7:82:48:d9:3a:e0:6d:87:44:9c:1d:03:27:
c2:d1:3c:f6:77:6d:5e:56:79:09:12:95:14:65:c3:
19:2e:85:bf:00:bb:e2:e5:87:ab:7b:5d:db:85:88:
f0:06:a7:5a:1d:19:c7:fd:54:49:f0:73:3a:90:66:
e1:16:b8:6c:44:9b:ab:2b:ab:3a:19:c4:5a:a4:be:
8e:04:cf:50:44:ee:2d:22:62:8e:75:a3:f9:0c:c7:
06:1a:9f:3f:16:af:99:bd:64:65:7f:b4:86:4b:42:
4b:6a:58:25:16:ab:a6:ac:89:10:9a:0b:35:e2:7e:
94:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:58:D3:5F:95:35:A0:02:23:98:9F:A6:EA:B0:25:6E:52:AF:81:00
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B9F581D62CE311F09CA3F6C7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.64.0/19
45.202.32.0-45.202.45.255
45.202.124.0/24
45.203.192.0/22
45.204.78.0/24
45.204.112.0/20
45.205.76.0-45.205.81.255
45.205.86.0-45.205.97.255
45.205.152.0/23
45.205.156.0-45.205.161.255
45.205.170.0/23
Signature Algorithm: sha256WithRSAEncryption
51:97:59:ee:69:fe:ef:74:0f:2a:cb:a9:5e:af:59:65:ec:5d:
18:27:fd:dd:d0:b9:ec:e0:23:4c:ba:e6:c4:27:52:56:4c:fc:
f8:98:7b:0a:70:f8:d6:e9:61:1d:9e:19:e0:ee:6d:6b:7e:1a:
5a:d1:c4:76:11:87:9b:79:37:44:d0:6d:41:52:ab:e5:a5:40:
23:7b:6c:6b:e9:9e:40:4e:03:7e:2b:6c:e3:1d:8d:f4:db:ef:
03:c5:9f:d4:20:0d:3e:e0:c8:d2:64:16:3f:d0:f2:8a:19:df:
2e:44:de:b1:10:f0:38:75:45:be:e6:89:1c:1e:d0:da:51:e5:
22:b6:43:63:d4:75:83:c7:52:be:57:79:04:04:5a:cb:6d:a6:
29:26:e3:91:80:22:07:5f:a2:e9:19:df:35:bf:e1:d9:db:68:
31:45:88:c5:03:f1:f5:79:5b:2b:a1:2c:7c:62:96:d2:27:f7:
a9:0c:c0:f8:94:0d:9a:16:bc:e4:45:06:eb:44:ec:f8:f4:be:
b1:c4:d3:c0:e3:35:c8:38:82:7f:00:71:ed:3a:bb:36:66:49:
41:af:8d:70:77:0d:80:0d:71:b8:ad:92:12:5d:bc:c4:50:53:
ee:0d:d0:b1:1e:80:81:6d:e8:3d:2d:ab:95:ea:57:a7:bd:16:
b7:73:55:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:24:12 2025 by rpki-client