Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/307FB24E483D11F0905F91A0DAE4EC9C.roa
File: 307FB24E483D11F0905F91A0DAE4EC9C.roa (raw, json)
Hash identifier: JigkgWDYIW0ZTPUt3i8wtbqD1IktrNc25FpcnxEDINY=
Subject key identifier: 38:CF:CF:C4:0D:26:8F:87:0F:BC:D4:22:11:23:D4:D2:B5:C1:85:38
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015BAC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/307FB24E483D11F0905F91A0DAE4EC9C.roa
Signing time: Fri 13 Jun 2025 10:00:10 +0000
ROA not before: Fri 13 Jun 2025 10:00:05 +0000
ROA not after: Sat 19 Jul 2025 10:00:05 +0000
asID: 395793
IP address blocks: 45.207.128.0/21 maxlen: 24
45.207.136.0/23 maxlen: 24
45.207.138.0/23 maxlen: 24
45.207.140.0/23 maxlen: 24
45.207.142.0/23 maxlen: 24
45.207.144.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 20 Jun 2025 06:15:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89004 (0x15bac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 13 10:00:05 2025 GMT
Not After : Jul 19 10:00:05 2025 GMT
Subject: CN=684bf6a9-a608
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:da:cf:ba:40:4d:87:b3:a0:39:29:f0:4e:ee:
99:77:52:db:3a:e3:0e:40:aa:a1:3a:58:e7:a4:d6:
75:8e:c7:e2:59:19:f5:3c:9d:e8:b8:be:95:df:e8:
58:44:94:63:07:5e:40:eb:8b:41:ae:0c:71:2d:ed:
df:41:5e:dd:bc:c2:95:b5:be:e8:26:17:ab:fb:61:
6c:c5:65:47:61:69:35:ad:76:b9:b7:1d:fa:d5:09:
55:6a:0e:5b:43:cd:a4:39:ba:b4:98:36:59:9c:c8:
24:e8:70:18:15:1b:a7:fb:58:f9:61:04:43:f2:a5:
85:6a:0c:47:4b:25:49:48:07:62:46:ac:7a:de:b3:
ef:59:b7:f1:44:2e:08:67:a5:44:7c:8c:0f:4d:cd:
51:7c:64:86:e5:84:c3:9d:4f:30:e2:a5:50:68:bd:
d8:06:db:95:21:03:54:82:04:bd:fa:79:da:18:a0:
c9:df:07:2b:be:4d:71:1d:ed:4d:08:ea:61:b1:4b:
a4:09:cb:65:08:2b:76:75:4d:94:95:8a:56:49:62:
49:d9:f8:42:8f:17:b3:9b:fa:86:d8:a9:56:7b:a4:
9c:d7:e6:5c:46:e7:d7:30:ce:a5:d8:2d:d3:aa:90:
e1:42:d6:d8:27:ec:31:cc:78:85:ed:24:69:0f:59:
18:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:CF:CF:C4:0D:26:8F:87:0F:BC:D4:22:11:23:D4:D2:B5:C1:85:38
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/307FB24E483D11F0905F91A0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.128.0-45.207.147.255
Signature Algorithm: sha256WithRSAEncryption
b2:91:0d:93:87:d8:46:51:0f:90:a0:a4:60:46:89:14:e8:f2:
53:ba:fd:e7:43:21:73:a6:11:7e:10:cb:a6:ee:b3:5a:a5:55:
03:f8:0a:74:17:75:36:ed:69:65:3b:a7:3d:c1:2c:aa:62:1a:
53:8d:cb:ec:e9:5a:57:e7:f0:b3:af:42:52:52:39:b4:1f:1a:
08:c1:48:d0:bf:71:6e:dd:4b:96:0e:80:c0:1d:61:0d:c5:62:
9c:0a:11:08:9d:af:d5:6c:10:48:bd:54:0a:96:9f:61:f2:3b:
bc:3a:e2:39:6b:33:6c:5f:da:ba:47:46:09:3a:f7:2e:92:66:
b9:e7:a0:1b:e9:4f:0e:1a:81:2a:91:99:56:71:5b:d1:39:0a:
23:43:4f:f0:02:06:24:a6:e8:21:2e:c5:a9:e0:a4:0e:cf:e0:
a1:93:18:20:88:48:ec:09:f9:fe:8f:29:d2:23:af:d8:7e:20:
07:de:55:8f:c9:ef:bc:73:a9:14:4d:b2:f9:37:58:c7:e8:a5:
49:b3:53:57:c8:33:9a:f2:02:56:b3:6e:88:bf:d1:f0:99:95:
8a:c4:63:36:a1:2a:ec:49:c3:bb:95:09:3a:c8:9c:73:e6:e0:
7d:52:b2:ed:48:f3:15:62:03:fd:fa:92:7f:c4:1b:44:f8:50:
1c:63:88:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 01:26:02 2025 by rpki-client