Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E459EF74106A11F0861D8F74762E951A.roa
File: E459EF74106A11F0861D8F74762E951A.roa (raw, json)
Hash identifier: tye0juPJMWOx0DZ3c14IjU+R/dbmwGU6qd+AJmMLJZE=
Subject key identifier: BD:9C:79:81:A7:48:B3:95:47:D2:D7:47:8D:2A:5A:BC:0E:B3:85:30
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014996
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E459EF74106A11F0861D8F74762E951A.roa
Signing time: Thu 03 Apr 2025 09:06:13 +0000
ROA not before: Thu 03 Apr 2025 09:06:09 +0000
ROA not after: Wed 09 Jul 2025 09:06:09 +0000
asID: 142002
IP address blocks: 45.195.8.0/24 maxlen: 24
45.195.9.0/24 maxlen: 24
45.195.10.0/24 maxlen: 24
45.197.12.0/24 maxlen: 24
45.197.13.0/24 maxlen: 24
45.197.14.0/24 maxlen: 24
45.197.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84374 (0x14996)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Apr 3 09:06:09 2025 GMT
Not After : Jul 9 09:06:09 2025 GMT
Subject: CN=67ee4f85-ad28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4d:ab:d8:55:a0:6e:6a:42:c3:78:a3:d6:1d:
39:39:cf:0c:0c:59:45:b1:36:0f:36:db:f1:23:ac:
4c:75:9f:61:68:a2:ba:96:ef:9d:16:40:ce:cc:2c:
5c:05:a8:20:c4:d5:d7:4e:1d:c9:b5:bd:71:ac:40:
14:12:d6:18:06:ae:2b:ad:fc:f2:e4:53:37:26:67:
89:7c:c9:a2:9b:3e:93:26:9f:bc:8b:66:07:50:68:
90:1c:ec:64:ba:50:6b:47:74:70:81:5b:6c:9b:44:
32:6e:24:6d:82:1b:a1:fd:50:01:33:f1:cd:de:58:
4c:59:f0:41:6a:34:fc:94:43:45:0c:b4:38:7d:a4:
b5:cc:43:21:27:0a:e9:c9:cf:83:c9:8b:b7:d8:48:
99:13:85:f1:92:aa:a7:66:b0:32:4b:d2:11:a8:c7:
13:1c:3f:e2:0b:5c:2f:5d:37:94:46:1a:84:fa:fe:
a6:a3:0a:3b:b5:bf:ed:db:9d:25:84:66:1d:ab:46:
bc:4e:45:45:01:73:68:1b:03:ee:08:4f:26:69:36:
f6:ff:17:70:09:40:99:b7:a4:b7:e5:e6:6b:6b:ad:
4f:59:37:12:12:73:e4:a2:24:be:3e:46:99:df:e3:
e8:e3:a0:4a:1f:6e:a6:ea:b0:ce:83:57:c4:2d:5f:
85:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:9C:79:81:A7:48:B3:95:47:D2:D7:47:8D:2A:5A:BC:0E:B3:85:30
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E459EF74106A11F0861D8F74762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.8.0-45.195.10.255
45.197.12.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:f6:5b:9a:ef:6a:04:ba:bf:c9:a2:f9:4f:3a:2e:7e:2b:61:
6c:f1:7b:51:ce:07:a9:f3:e8:0f:f5:a8:89:a3:46:ff:36:6d:
0b:7b:d6:5c:ce:f1:ba:af:24:d6:f7:82:b1:b3:b6:bc:41:09:
01:da:01:3a:8f:8f:52:18:db:16:4b:b5:48:82:9e:85:7b:2f:
fa:de:31:37:1d:b9:01:65:96:9f:a4:29:86:da:66:40:b4:c7:
78:6f:3d:fa:0a:3a:dc:29:32:51:b2:4e:15:d5:c4:85:b1:35:
c2:f4:f3:ae:85:d3:f8:97:09:42:45:38:e4:be:88:80:a8:8b:
4c:c8:33:bb:98:28:47:66:cf:b9:60:c8:da:ea:64:62:09:90:
22:e1:84:36:6c:ae:76:fe:41:2d:01:b8:1b:a1:49:ac:d3:1a:
f4:92:1f:6b:22:7f:e1:c6:cd:5e:fb:42:e6:e2:94:ec:47:ae:
18:12:89:c0:66:9c:38:a9:33:1f:e1:77:55:27:f0:d9:c8:f6:
7a:bd:4c:05:77:cf:e8:91:cc:fb:ad:94:86:c8:1f:c9:87:50:
0e:cd:54:68:46:64:98:f1:c2:9e:78:fa:d9:b4:a3:12:87:28:
7f:b8:d5:8a:b1:37:48:5b:03:b8:0f:a9:39:b2:73:97:11:be:
41:d1:51:55
-----BEGIN CERTIFICATE-----
MIIFjzCCBHegAwIBAgIDAUmWMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNDAzMDkwNjA5WhcNMjUwNzA5MDkwNjA5WjAYMRYw
FAYDVQQDEw02N2VlNGY4NS1hZDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEApU2r2FWgbmpCw3ij1h05Oc8MDFlFsTYPNtvxI6xMdZ9haKK6lu+dFkDO
zCxcBaggxNXXTh3Jtb1xrEAUEtYYBq4rrfzy5FM3JmeJfMmimz6TJp+8i2YHUGiQ
HOxkulBrR3RwgVtsm0QybiRtghuh/VABM/HN3lhMWfBBajT8lENFDLQ4faS1zEMh
Jwrpyc+DyYu32EiZE4XxkqqnZrAyS9IRqMcTHD/iC1wvXTeURhqE+v6mowo7tb/t
250lhGYdq0a8TkVFAXNoGwPuCE8maTb2/xdwCUCZt6S35eZra61PWTcSEnPkoiS+
PkaZ3+Po46BKH26m6rDOg1fELV+FaQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFL2c
eYGnSLOVR9LXR40qWrwOs4UwMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9FNDU5RUY3NDEwNkExMUYwODYxRDhGNzQ3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBAMtwwgDBAAtwwoDBAItxQww
DQYJKoZIhvcNAQELBQADggEBAAz2W5rvagS6v8mi+U86Ln4rYWzxe1HOB6nz6A/1
qImjRv82bQt71lzO8bqvJNb3grGztrxBCQHaATqPj1IY2xZLtUiCnoV7L/reMTcd
uQFllp+kKYbaZkC0x3hvPfoKOtwpMlGyThXVxIWxNcL0866F0/iXCUJFOOS+iICo
i0zIM7uYKEdmz7lgyNrqZGIJkCLhhDZsrnb+QS0BuBuhSazTGvSSH2sif+HGzV77
QubilOxHrhgSicBmnDipMx/hd1Un8NnI9nq9TAV3z+iRzPutlIbIH8mHUA7NVGhG
ZJjxwp54+tm0oxKHKH+41YqxN0hbA7gPqTmyc5cRvkHRUVU=
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:14:36 2025 by rpki-client