Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E963670A088311F0B7324B45762E951A.roa
File: E963670A088311F0B7324B45762E951A.roa (raw, json)
Hash identifier: +0JrqhkbLhDyaF+ZSq/WkliqoEnl5woF5GX/PUaxj1g=
Subject key identifier: 59:48:C7:4B:11:E8:AC:CA:C9:99:B6:C1:E6:61:30:1A:03:A3:B9:C9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0147D0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E963670A088311F0B7324B45762E951A.roa
Signing time: Mon 24 Mar 2025 07:45:10 +0000
ROA not before: Mon 24 Mar 2025 07:45:06 +0000
ROA not after: Wed 30 Apr 2025 07:45:06 +0000
asID: 20473
IP address blocks: 45.197.154.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83920 (0x147d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 24 07:45:06 2025 GMT
Not After : Apr 30 07:45:06 2025 GMT
Subject: CN=67e10d86-66d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:29:18:28:d2:79:4b:d0:f0:90:2a:22:a5:3c:
0c:e6:0e:51:4c:dc:54:ac:67:6d:ae:01:4e:34:2c:
7a:1f:b2:5c:79:88:f3:2d:b7:49:49:cf:25:41:61:
11:bf:7f:41:3e:42:68:d1:e3:62:9b:f1:db:bf:a2:
f9:49:f7:66:b3:a9:a4:4b:01:0b:03:26:f9:af:ff:
2a:19:e8:d2:45:c4:3f:8a:75:5a:85:04:72:ff:0e:
6c:fa:35:cf:c5:bc:5e:f0:88:0d:2f:36:39:da:62:
29:6e:df:28:87:e8:38:19:e4:0c:95:61:a0:e8:1b:
54:60:0a:c1:1b:62:69:13:a4:da:eb:3a:a5:cc:4d:
0b:22:f5:75:10:0a:35:1b:70:f7:a6:33:69:b8:06:
9e:cb:a0:62:df:5b:b6:64:9e:d9:ea:de:89:fd:a6:
78:dc:3c:cf:68:fb:22:9e:51:28:60:41:f0:49:0f:
31:91:16:d8:8d:92:ad:7c:49:9c:b5:ca:cb:25:b7:
86:af:d5:65:3f:b2:54:3c:e9:71:e3:6f:de:15:4a:
56:4c:12:0e:c9:a3:8d:59:0b:af:44:65:21:6d:2e:
53:54:bf:bd:f7:82:f1:93:0f:14:0d:95:3f:1d:63:
1a:c7:42:08:d2:56:09:3c:c1:44:0d:7e:c5:09:2f:
af:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:48:C7:4B:11:E8:AC:CA:C9:99:B6:C1:E6:61:30:1A:03:A3:B9:C9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E963670A088311F0B7324B45762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.154.0/24
Signature Algorithm: sha256WithRSAEncryption
67:00:2a:62:4b:5e:1b:49:8c:23:2b:78:57:0a:f6:00:0b:7c:
b1:dd:bb:10:c1:1b:c2:9d:95:0f:95:a5:e3:7c:29:7f:86:65:
43:d8:a9:8b:64:84:00:18:59:d9:36:08:5b:a5:a3:4c:d7:eb:
3e:8d:fe:32:70:44:38:fa:f0:07:a8:3d:7e:6e:a9:44:af:7d:
11:fb:1f:04:b1:40:06:64:92:ac:ce:4a:45:70:4e:8a:86:67:
35:a5:aa:a6:ae:30:3a:ed:7a:ae:25:5a:e9:2a:ca:ab:f1:30:
12:40:79:ae:2f:fe:02:bc:72:01:e7:2e:5e:c2:48:d1:cd:ec:
0a:79:eb:76:54:59:60:ef:ff:d5:f7:a2:f6:96:31:15:fb:5d:
10:ad:cf:8c:6e:19:48:5f:24:c7:6f:db:72:14:7b:7c:0e:3a:
04:2a:81:fd:91:78:50:2a:4f:66:58:36:fd:be:d1:17:f9:79:
92:d3:36:ba:c9:68:83:eb:41:71:9e:74:66:71:3e:1a:19:34:
f4:d9:ba:03:72:74:28:08:a5:b5:9d:2c:1f:04:9f:ec:f6:3c:
e1:2c:37:5d:17:e7:42:fc:86:90:18:0a:7a:fd:54:f8:b1:d3:
56:5e:c7:ca:be:cb:96:df:67:43:11:d7:12:70:4f:d9:c1:24:
b1:73:00:aa
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAUfQMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMzI0MDc0NTA2WhcNMjUwNDMwMDc0NTA2WjAYMRYw
FAYDVQQDEw02N2UxMGQ4Ni02NmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0CkYKNJ5S9DwkCoipTwM5g5RTNxUrGdtrgFONCx6H7JceYjzLbdJSc8l
QWERv39BPkJo0eNim/Hbv6L5Sfdms6mkSwELAyb5r/8qGejSRcQ/inVahQRy/w5s
+jXPxbxe8IgNLzY52mIpbt8oh+g4GeQMlWGg6BtUYArBG2JpE6Ta6zqlzE0LIvV1
EAo1G3D3pjNpuAaey6Bi31u2ZJ7Z6t6J/aZ43DzPaPsinlEoYEHwSQ8xkRbYjZKt
fEmctcrLJbeGr9VlP7JUPOlx42/eFUpWTBIOyaONWQuvRGUhbS5TVL+994Lxkw8U
DZU/HWMax0II0lYJPMFEDX7FCS+vNQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFFlI
x0sR6KzKyZm2weZhMBoDo7nJMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9FOTYzNjcwQTA4ODMxMUYwQjczMjRCNDU3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcWaMA0GCSqGSIb3DQEBCwUA
A4IBAQBnACpiS14bSYwjK3hXCvYAC3yx3bsQwRvCnZUPlaXjfCl/hmVD2KmLZIQA
GFnZNghbpaNM1+s+jf4ycEQ4+vAHqD1+bqlEr30R+x8EsUAGZJKszkpFcE6Khmc1
paqmrjA67XquJVrpKsqr8TASQHmuL/4CvHIB5y5ewkjRzewKeet2VFlg7//V96L2
ljEV+10Qrc+MbhlIXyTHb9tyFHt8DjoEKoH9kXhQKk9mWDb9vtEX+XmS0za6yWiD
60FxnnRmcT4aGTT02boDcnQoCKW1nSwfBJ/s9jzhLDddF+dC/IaQGAp6/VT4sdNW
XsfKvsuW32dDEdcScE/ZwSSxcwCq
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:06:30 2025 by rpki-client