Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CCFDF78838A311F0B0673E98DAE4EC9C.roa
File: CCFDF78838A311F0B0673E98DAE4EC9C.roa (raw, json)
Hash identifier: c6KpXyOqa9UJgQzU/89fj3Ul4CMYmLAWW3/RAUe7KDY=
Subject key identifier: B5:FC:20:C1:3D:67:75:9F:74:A2:20:F1:C4:45:D7:E2:55:7C:AB:13
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01575C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CCFDF78838A311F0B0673E98DAE4EC9C.roa
Signing time: Sat 24 May 2025 13:34:22 +0000
ROA not before: Sat 24 May 2025 13:34:17 +0000
ROA not after: Mon 30 Jun 2025 13:34:17 +0000
asID: 2914
IP address blocks: 45.196.70.0/24 maxlen: 24
45.196.71.0/24 maxlen: 24
45.196.72.0/24 maxlen: 24
45.196.73.0/24 maxlen: 24
45.196.74.0/24 maxlen: 24
45.196.75.0/24 maxlen: 24
45.196.76.0/24 maxlen: 24
45.196.77.0/24 maxlen: 24
45.196.78.0/24 maxlen: 24
45.196.79.0/24 maxlen: 24
45.196.80.0/24 maxlen: 24
45.196.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87900 (0x1575c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 24 13:34:17 2025 GMT
Not After : Jun 30 13:34:17 2025 GMT
Subject: CN=6831cade-65d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:86:42:38:ef:e2:00:fe:14:5a:4c:ee:0b:5c:
3e:24:c1:08:02:02:20:9a:f0:5c:49:77:91:9c:07:
50:12:77:d9:09:7e:2c:53:9e:fa:52:e9:b5:40:03:
ce:37:da:13:ba:22:8a:da:bd:ea:0b:e7:89:d8:c8:
e4:00:fa:ff:cc:b4:92:da:e7:a7:2e:1a:aa:4c:b2:
63:de:26:d1:81:1e:4f:75:b5:80:4b:23:8e:b2:99:
44:e3:3d:97:f4:3a:b9:c4:65:b8:c2:bf:26:74:68:
ac:13:65:2e:2b:8c:ec:6e:37:32:af:11:47:f4:70:
1b:d2:db:ba:7a:9e:69:8d:9b:e7:64:4a:40:e7:c5:
91:24:2f:57:23:3f:e6:8a:36:3d:63:54:4d:dd:63:
1e:d6:f8:d5:3b:7b:19:90:bb:15:81:dc:0f:62:78:
8b:60:c5:8a:0a:2a:db:36:db:35:05:61:d4:5f:01:
75:f4:61:a0:ae:e0:75:de:7d:d9:3f:f0:56:d9:89:
a4:19:a4:4d:81:3d:50:2a:d3:e5:b1:7c:ba:a0:e0:
8b:f5:74:b2:59:4c:8b:02:91:8d:dd:e2:d0:2a:11:
f4:9e:cc:98:9e:9e:4b:67:9d:bf:51:0f:3d:9f:9c:
03:d2:55:08:51:13:96:97:fa:59:cc:e1:17:86:7a:
47:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:FC:20:C1:3D:67:75:9F:74:A2:20:F1:C4:45:D7:E2:55:7C:AB:13
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CCFDF78838A311F0B0673E98DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.70.0-45.196.81.255
Signature Algorithm: sha256WithRSAEncryption
44:92:fc:d9:ac:8c:e0:c0:d2:fe:cf:9d:ae:8b:d6:1c:7b:37:
45:b4:9e:c7:1e:7a:f3:aa:c9:77:86:03:30:6c:7b:f7:24:20:
a5:b4:6c:3b:e2:26:37:1f:53:5b:0f:1f:9f:72:fd:b2:50:ea:
87:ad:ca:76:1a:51:dd:ec:f2:c9:37:a9:fa:5b:86:72:28:d7:
dd:cb:f9:2f:a8:3f:e8:b9:dc:05:a3:b3:3a:e6:18:ff:84:36:
01:fb:7b:2d:b6:00:f7:db:0b:b5:e2:e7:de:ad:dc:40:8c:3c:
15:5f:8e:1b:97:51:83:b2:6c:d4:e9:32:22:d4:6b:2e:54:39:
06:03:04:cd:9b:7c:48:fa:06:66:97:9d:ed:b5:50:11:8c:41:
93:30:73:85:b7:d7:0e:9a:df:54:db:fb:3e:9e:e2:f6:c4:64:
41:7a:0f:04:78:fe:cb:92:62:26:40:8b:25:15:e8:72:06:41:
5a:45:83:14:5e:bf:42:5e:22:bd:7a:b9:c6:59:30:18:3d:cd:
e7:d2:15:5a:74:38:75:50:af:ed:c5:70:08:3f:7b:d4:2c:07:
3c:ce:a5:26:d6:e3:25:27:a0:b2:0b:e7:cd:b0:b9:4f:41:bf:
1d:32:00:fb:f7:fe:07:58:f2:ea:8e:0d:7a:1f:2d:e1:22:68:
18:a3:d6:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:23:50 2025 by rpki-client