Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/279E77040CCA11F0B5C32569762E951A.roa
File: 279E77040CCA11F0B5C32569762E951A.roa (raw, json)
Hash identifier: n3dM9W0VllDMxoQH4HmFWfnxziALWusCVqxcAPyWQdw=
Subject key identifier: D7:14:0A:82:5C:1A:BC:6E:E3:17:86:56:9E:3E:1E:40:F8:0A:3B:FF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0148E0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/279E77040CCA11F0B5C32569762E951A.roa
Signing time: Sat 29 Mar 2025 18:18:04 +0000
ROA not before: Sat 29 Mar 2025 18:17:59 +0000
ROA not after: Sun 04 May 2025 18:17:59 +0000
asID: 13335
IP address blocks: 45.192.223.0/24 maxlen: 24
45.192.224.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84192 (0x148e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 29 18:17:59 2025 GMT
Not After : May 4 18:17:59 2025 GMT
Subject: CN=67e8395b-82d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:15:3f:2a:28:d0:6e:6e:7f:b9:56:37:46:12:
28:a1:47:6e:29:2b:e9:52:52:5d:37:de:72:a4:98:
dc:1e:7b:c7:fd:ab:15:69:c7:9a:8d:5b:36:81:70:
ce:20:a5:9a:d9:f8:70:4e:0d:7f:41:f1:3f:bf:38:
ec:c5:f6:b0:cf:61:5e:7d:e2:24:16:d8:70:3b:47:
b1:61:07:e9:42:ac:e2:c1:0d:c7:f6:e1:c2:b3:13:
8e:7d:d4:53:ad:73:be:f5:39:0b:8a:6a:7c:c4:04:
cf:38:1c:da:e5:ce:a0:8d:ce:f6:c7:1e:1e:db:69:
81:a7:96:ce:47:e1:db:e0:58:2d:3a:1c:72:df:64:
4d:0f:6c:68:90:46:1a:85:9d:54:a0:d9:84:90:2a:
64:aa:5b:d7:31:fe:1d:31:d8:56:ff:c4:b9:ce:31:
19:4e:11:b9:5f:25:4e:7d:cd:f6:da:b5:49:be:53:
6a:8d:ec:e6:15:9b:a8:3b:50:a3:01:01:03:21:16:
8e:06:95:78:d4:df:4f:93:18:17:e1:9b:c1:a1:1f:
ac:69:a0:e2:26:80:74:b2:5d:7b:bf:d8:c9:fc:fb:
59:2b:10:1b:32:84:b8:96:e9:9d:16:8e:96:bd:90:
6f:b2:3b:9b:9f:82:4f:77:61:bc:e2:58:da:c0:33:
00:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:14:0A:82:5C:1A:BC:6E:E3:17:86:56:9E:3E:1E:40:F8:0A:3B:FF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/279E77040CCA11F0B5C32569762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.223.0-45.192.224.255
Signature Algorithm: sha256WithRSAEncryption
7d:30:17:2d:6b:9d:c2:52:2a:e8:cc:fc:88:b9:62:a7:7f:c1:
ef:ad:03:f4:ee:97:99:98:36:09:51:79:97:37:c6:7e:c4:23:
a4:84:e4:f7:da:a6:5a:e0:04:e4:2c:48:60:b0:23:20:ab:e8:
33:4f:9d:50:b3:18:61:db:0b:e8:fe:b0:0d:db:d1:96:e9:2d:
9d:4f:d9:2d:e0:bc:d0:8c:20:f7:ca:62:60:a3:e2:e6:4e:e8:
91:d9:5c:aa:10:04:5d:cd:58:76:54:7d:10:0c:c8:0e:b9:78:
90:f5:b3:92:09:cc:b0:62:f5:bd:16:0f:90:7d:4f:d8:d4:95:
11:3a:e9:78:af:b9:a1:10:3c:99:32:48:08:fc:1e:81:ec:76:
21:45:e9:ef:c5:ab:95:d2:f8:18:6d:7c:9f:64:0e:8d:1b:89:
94:83:cd:7d:e6:65:8c:3e:21:f7:46:8b:9f:ed:d5:35:82:00:
a4:e7:49:51:20:cd:b2:b1:4c:fd:85:4a:a9:31:63:78:83:d5:
e4:ac:85:9a:d4:8b:0e:1d:2d:ad:f8:9d:ba:8b:b8:f0:2d:8f:
38:29:bf:42:c6:75:c6:c8:b3:58:6a:c6:0e:d5:21:97:dc:ee:
dd:0b:b1:06:57:ad:85:4b:15:46:c6:96:c3:5f:67:19:24:1f:
fd:b3:ba:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:00:13 2025 by rpki-client