Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3B6E652FCCF11EF819C497E762E951A.roa
File: E3B6E652FCCF11EF819C497E762E951A.roa (raw, json)
Hash identifier: Wicv5Gk+1ZoIxxsO895YA/7IG3qnxldsJxok5SwBm9o=
Subject key identifier: CD:E5:46:67:B4:6E:CB:5C:D5:0D:93:F3:F0:A7:4F:E5:EB:04:B0:02
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01444E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3B6E652FCCF11EF819C497E762E951A.roa
Signing time: Sun 09 Mar 2025 10:18:48 +0000
ROA not before: Sun 09 Mar 2025 10:18:44 +0000
ROA not after: Tue 15 Apr 2025 10:18:44 +0000
asID: 54801
IP address blocks: 45.194.85.0/24 maxlen: 24
45.195.60.0/24 maxlen: 24
45.195.192.0/24 maxlen: 24
45.195.196.0/24 maxlen: 24
45.195.197.0/24 maxlen: 24
45.197.1.0/24 maxlen: 24
45.197.2.0/24 maxlen: 24
45.197.4.0/24 maxlen: 24
45.197.5.0/24 maxlen: 24
45.199.191.0/24 maxlen: 24
45.202.8.0/24 maxlen: 24
45.202.9.0/24 maxlen: 24
45.202.10.0/24 maxlen: 24
45.202.11.0/24 maxlen: 24
45.202.63.0/24 maxlen: 24
45.204.1.0/24 maxlen: 24
45.204.64.0/24 maxlen: 24
45.204.71.0/24 maxlen: 24
45.207.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83022 (0x1444e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 9 10:18:44 2025 GMT
Not After : Apr 15 10:18:44 2025 GMT
Subject: CN=67cd6b08-62ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:85:de:4b:a1:2e:aa:52:65:1a:bf:d0:bc:72:
be:76:f1:17:8d:96:d7:50:56:8c:91:46:44:7a:b2:
85:b8:c1:37:df:c8:c9:9a:84:28:e2:45:0e:a2:bc:
5b:01:48:7f:7d:ab:33:83:5b:46:e7:92:71:63:3c:
9c:f1:12:25:07:72:e5:1a:94:86:12:08:68:1e:9e:
ed:3f:90:d1:7a:23:3f:14:16:b8:0b:03:b2:fb:6c:
0f:e4:85:bb:f2:16:6f:a5:a0:14:0a:f1:33:d7:1b:
02:80:74:b7:a7:f1:dd:dc:09:28:4a:a7:c9:dc:f0:
66:be:c6:51:cd:50:1f:28:07:87:f5:96:a1:1a:ff:
44:96:7e:52:7c:cb:d5:c8:38:66:1e:18:36:25:93:
4c:08:ae:5a:c1:13:0e:3e:b8:1a:32:7e:a4:da:8c:
29:a1:1e:46:cb:c4:4a:ec:82:98:da:53:b8:06:ab:
68:63:cf:34:35:d5:f2:b5:85:5b:f1:da:70:ae:ac:
60:d8:f4:97:95:07:2c:71:18:12:4e:c1:d5:e2:89:
0a:ea:75:fa:7e:3b:13:11:08:3f:61:ee:71:02:67:
c9:39:a6:bb:d4:a7:cd:bb:b6:08:c0:4a:cb:6a:6a:
e6:d3:79:4c:1b:5f:cf:ca:49:c6:88:03:80:c4:d3:
47:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:E5:46:67:B4:6E:CB:5C:D5:0D:93:F3:F0:A7:4F:E5:EB:04:B0:02
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3B6E652FCCF11EF819C497E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.85.0/24
45.195.60.0/24
45.195.192.0/24
45.195.196.0/23
45.197.1.0-45.197.2.255
45.197.4.0/23
45.199.191.0/24
45.202.8.0/22
45.202.63.0/24
45.204.1.0/24
45.204.64.0/24
45.204.71.0/24
45.207.163.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:2b:91:ab:6d:bc:55:89:3c:35:45:f3:18:a4:70:68:f0:10:
e4:42:f7:94:d1:3d:e0:84:17:6a:08:9a:b0:2b:85:12:bf:bf:
8a:f6:af:24:4b:c4:8c:19:fa:c5:88:7a:42:0d:02:d1:e4:b1:
4c:70:b1:45:4b:24:a2:69:70:c0:3f:ff:29:0d:8d:61:89:27:
7b:85:f2:4f:9e:d5:4e:d8:59:11:25:da:6b:49:db:71:db:9f:
e3:a2:67:d4:94:1e:1f:0b:0a:44:37:e3:7a:7d:3c:bf:d6:d4:
ed:d8:b7:9d:6b:25:4b:f5:8c:93:29:9f:b9:00:57:d4:5d:f7:
70:35:03:6a:15:1b:2c:62:a8:e0:e1:e4:66:10:c4:bf:bc:22:
8f:f1:75:97:47:36:bc:7c:5f:09:7b:86:4f:bc:e8:a1:b3:88:
52:c7:b0:d7:80:53:c9:cf:23:88:95:78:eb:17:5e:b7:68:2e:
fa:13:f4:d5:a8:fc:d5:37:55:53:f1:26:2f:45:7f:c2:41:12:
c4:eb:6d:64:07:b7:5a:bd:02:24:d2:40:7d:73:15:30:37:a8:
1c:0a:89:6d:10:79:52:67:85:7f:a7:5d:cb:1f:db:89:33:87:
72:5a:b3:70:40:ad:70:f3:db:80:8a:e3:6a:82:3c:cb:c8:19:
a9:9c:03:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:11:56 2025 by rpki-client