Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D46B9766F64D11EFB84A1378762E951A.roa
File: D46B9766F64D11EFB84A1378762E951A.roa (raw, json)
Hash identifier: j/vcGOFTQD1pIhMzMmuM6lPETMpLrXN498FIM0S4m0E=
Subject key identifier: 2D:20:AB:B6:E7:54:49:B5:E0:EF:96:D6:D0:C3:BE:0F:EC:F8:D5:48
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013F88
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D46B9766F64D11EFB84A1378762E951A.roa
Signing time: Sat 01 Mar 2025 03:32:41 +0000
ROA not before: Sat 01 Mar 2025 03:32:37 +0000
ROA not after: Sun 22 Feb 2026 03:32:37 +0000
asID: 984
IP address blocks: 45.196.242.0/24 maxlen: 24
45.201.48.0/24 maxlen: 24
45.201.54.0/24 maxlen: 24
45.201.58.0/24 maxlen: 24
45.201.63.0/24 maxlen: 24
45.201.64.0/24 maxlen: 24
45.201.72.0/24 maxlen: 24
45.201.78.0/24 maxlen: 24
45.201.80.0/24 maxlen: 24
45.201.90.0/24 maxlen: 24
45.201.94.0/24 maxlen: 24
45.201.97.0/24 maxlen: 24
45.201.115.0/24 maxlen: 24
45.201.121.0/24 maxlen: 24
45.204.73.0/24 maxlen: 24
45.206.8.0/24 maxlen: 24
45.206.11.0/24 maxlen: 24
45.206.12.0/24 maxlen: 24
45.206.13.0/24 maxlen: 24
45.206.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81800 (0x13f88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 1 03:32:37 2025 GMT
Not After : Feb 22 03:32:37 2026 GMT
Subject: CN=67c27fd9-4e70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:15:32:70:67:56:0f:a9:17:cb:04:5b:75:96:
71:98:be:7d:82:45:8f:16:e5:48:6f:4d:a2:3e:4d:
27:40:29:09:97:3d:9f:4d:bd:9c:90:b6:c0:38:a1:
48:46:1b:79:98:9d:cb:03:51:ab:64:6d:e0:0b:a4:
be:b1:b9:ea:54:75:54:1e:8b:e7:e1:89:14:3b:71:
75:d0:3a:1f:a9:92:a6:49:02:09:8b:23:33:85:52:
09:6c:e8:7e:64:71:4d:79:f9:91:ba:d4:f2:09:e1:
b4:ea:79:ec:04:ab:0b:1c:7e:f1:a9:ec:ba:0b:c0:
b7:5e:c4:2a:cc:05:9c:ff:c0:86:0a:3c:ef:cf:8f:
62:fd:10:b6:5c:7d:61:48:e1:3b:ba:91:0f:65:5a:
98:34:dc:33:b2:11:28:1b:3a:bc:04:cc:11:29:ef:
e3:99:db:54:6c:9c:42:20:34:c9:24:d5:e5:fc:30:
d9:7e:1d:c6:cc:c9:ef:fc:e8:f0:2f:9f:f0:27:be:
a9:7b:ef:3f:21:21:9d:7b:20:c7:a5:40:18:c6:cd:
26:e1:b1:e7:3a:86:59:d1:9d:c2:d1:47:84:1e:f6:
4e:f2:ce:fa:fc:23:dc:ed:42:33:2f:a8:d7:0c:c1:
18:00:20:6c:3e:d7:85:89:43:b9:24:01:95:5c:cb:
94:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:20:AB:B6:E7:54:49:B5:E0:EF:96:D6:D0:C3:BE:0F:EC:F8:D5:48
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D46B9766F64D11EFB84A1378762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.242.0/24
45.201.48.0/24
45.201.54.0/24
45.201.58.0/24
45.201.63.0-45.201.64.255
45.201.72.0/24
45.201.78.0/24
45.201.80.0/24
45.201.90.0/24
45.201.94.0/24
45.201.97.0/24
45.201.115.0/24
45.201.121.0/24
45.204.73.0/24
45.206.8.0/24
45.206.11.0-45.206.13.255
45.206.61.0/24
Signature Algorithm: sha256WithRSAEncryption
95:b7:bc:f6:e4:75:1c:57:a4:04:20:a7:8d:ad:65:b4:bb:ba:
20:59:06:8a:50:31:b9:a8:1f:99:52:0d:c6:d2:70:89:e8:77:
5e:44:c2:b5:85:d2:e1:5d:d4:16:5e:2f:94:66:af:7e:4e:57:
e8:ed:96:88:d2:12:ce:ed:01:1e:5e:82:b3:3d:94:c5:5b:c8:
75:91:88:d6:77:2f:fa:b9:b6:aa:df:27:33:cd:78:f3:75:3a:
6e:5c:a2:73:72:83:f4:84:f2:0e:6c:34:2f:07:b4:0d:55:01:
a9:8d:69:7f:82:b4:88:47:a6:4f:78:d0:59:5d:f8:1b:96:c7:
4d:99:a6:02:41:3e:30:6f:ea:29:72:5a:7c:a5:92:d1:42:19:
73:13:21:cf:61:31:d7:8e:d5:41:4d:35:c7:3b:05:6c:2c:a7:
d3:8e:1b:9e:d9:4d:4e:01:84:a0:ed:3a:46:e9:98:97:cd:3b:
b8:e9:1a:3d:5e:50:4d:28:da:6e:c0:25:7e:e9:25:1d:5b:3b:
79:34:fb:c8:a4:36:e7:8c:17:3d:5f:88:33:8f:b6:50:11:28:
f9:cb:a2:4d:de:5a:30:1e:6e:67:c2:7f:67:c7:8a:20:a4:66:
68:40:db:a4:23:86:f1:5c:ea:94:1e:47:dd:16:ee:5e:fb:d6:
66:03:ba:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:19:46 2025 by rpki-client