Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6A4BAB8C1C5411F0BC0E2A7CDAE4EC9C.roa
File: 6A4BAB8C1C5411F0BC0E2A7CDAE4EC9C.roa (raw, json)
Hash identifier: zB5V9kpbBxCz7Rdg6qFFoSAaTgHkbnCSrdaoqymQ6cM=
Subject key identifier: 9F:82:2C:85:06:0A:44:32:2F:24:C8:FB:5E:14:51:83:84:C9:2C:7C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014CEA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6A4BAB8C1C5411F0BC0E2A7CDAE4EC9C.roa
Signing time: Fri 18 Apr 2025 12:55:34 +0000
ROA not before: Fri 18 Apr 2025 12:55:29 +0000
ROA not after: Sat 24 May 2025 12:55:29 +0000
asID: 57043
IP address blocks: 45.207.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85226 (0x14cea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 18 12:55:29 2025 GMT
Not After : May 24 12:55:29 2025 GMT
Subject: CN=68024bc6-e275
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a1:46:71:d0:52:04:c7:f0:6f:61:d1:7a:9e:
4e:18:2e:4a:96:b9:df:a7:de:ce:11:40:78:4d:6e:
a5:a0:84:75:42:39:26:e2:6c:60:28:32:63:90:8b:
27:d9:bb:f5:af:d1:6e:35:38:f5:9d:f0:e9:da:41:
c8:f7:dd:b8:9d:8f:00:30:2b:98:38:1c:18:1f:00:
f9:c7:13:22:70:7c:6e:3c:66:04:1d:21:aa:60:34:
64:c6:72:3d:c1:6c:bb:ab:82:04:b0:b2:bf:e6:ed:
e4:4e:3c:3c:d9:ae:20:41:5c:f4:9b:48:82:a4:59:
4f:ca:c2:dc:fe:e7:ac:ab:60:fe:fb:3f:75:15:7c:
ea:73:c0:b8:14:67:f4:7a:ce:85:3f:f8:fa:58:01:
10:f4:ae:70:7c:39:1f:69:4f:85:78:19:f5:19:38:
6f:e5:8f:6d:07:76:f4:5a:09:a9:f6:91:26:f3:30:
27:7b:b7:55:5b:1c:35:82:be:96:55:97:82:74:98:
b3:6a:4e:24:04:51:36:b2:b4:a5:de:45:88:5a:c7:
ed:64:c0:c2:67:84:68:55:84:df:48:42:ee:eb:b7:
d1:cc:b8:6e:07:8a:41:1e:c0:87:71:16:ed:ab:2d:
19:6d:d2:4b:be:90:a7:cc:97:6a:73:99:ec:c9:b3:
54:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:82:2C:85:06:0A:44:32:2F:24:C8:FB:5E:14:51:83:84:C9:2C:7C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6A4BAB8C1C5411F0BC0E2A7CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.167.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:70:c1:12:21:32:83:f8:a9:a2:75:02:03:07:39:4f:78:f2:
2e:74:0a:f1:ca:c8:79:08:64:31:fa:a6:2e:e7:1b:1e:d3:4c:
68:5b:7d:48:05:74:16:41:a4:21:c6:59:e6:58:1f:1f:13:08:
02:50:c8:e1:b6:e1:3b:79:78:ff:67:c6:b8:88:f8:f7:e4:f1:
cb:63:40:1e:17:51:2b:43:29:66:77:fe:53:4c:c5:8b:0b:0a:
be:0b:4b:02:99:0a:87:69:51:90:71:e9:0a:8a:c4:c4:c0:f5:
94:ed:3a:76:1b:c8:79:41:d9:0d:27:bd:aa:15:4e:51:2f:d2:
d2:49:c3:89:98:73:8f:36:f3:a9:c4:f8:bf:28:f5:1d:a6:2f:
62:9f:61:c7:8c:40:c9:74:4d:6b:76:68:77:5e:67:55:34:66:
27:e0:08:fa:57:ad:18:23:16:3b:db:b3:c5:45:5d:34:ca:03:
b6:47:56:25:62:cb:17:fc:fb:e6:7b:b7:ef:98:9e:c5:9c:f4:
ae:c8:f9:77:f5:51:a0:15:6d:1c:1b:78:49:36:69:79:97:e3:
92:e2:e3:23:25:27:de:0c:22:59:0d:8b:d1:a3:cc:85:27:3c:
95:26:db:6d:41:f4:ad:31:50:94:1b:99:c9:fc:12:1e:28:59:
06:88:20:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:00:21 2025 by rpki-client