Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8000438E1E1611F0A385B4B8DAE4EC9C.roa
File: 8000438E1E1611F0A385B4B8DAE4EC9C.roa (raw, json)
Hash identifier: iOc19wXRUMjRQBxK1cnEJOCSFw7IT0QmJXF4t2A+eUs=
Subject key identifier: 7B:5C:9B:CF:8F:1D:CC:EF:E4:D4:C5:E5:FB:10:D8:FB:56:BF:30:3C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014DAB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8000438E1E1611F0A385B4B8DAE4EC9C.roa
Signing time: Sun 20 Apr 2025 18:37:24 +0000
ROA not before: Sun 20 Apr 2025 18:37:18 +0000
ROA not after: Sun 27 Apr 2025 18:37:18 +0000
asID: 39600
IP address blocks: 45.195.212.0/24 maxlen: 24
45.195.213.0/24 maxlen: 24
45.195.214.0/24 maxlen: 24
45.195.215.0/24 maxlen: 24
45.197.8.0/24 maxlen: 24
45.197.9.0/24 maxlen: 24
45.197.10.0/24 maxlen: 24
45.197.11.0/24 maxlen: 24
45.197.28.0/24 maxlen: 24
45.197.29.0/24 maxlen: 24
45.197.30.0/24 maxlen: 24
45.197.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 18:37:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85419 (0x14dab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 20 18:37:18 2025 GMT
Not After : Apr 27 18:37:18 2025 GMT
Subject: CN=68053ee4-f026
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6d:04:47:84:af:f8:44:0d:74:73:9e:76:b3:
c8:55:e7:9e:d3:fe:2e:63:62:1b:ac:c4:ab:88:8a:
7d:00:93:4b:3a:93:dc:e5:89:c8:fc:44:3e:c6:a8:
b3:19:b1:ba:cc:02:62:44:d7:df:90:4d:1f:72:ae:
ea:c4:7c:49:98:9a:48:ec:07:a9:a2:64:7c:af:7e:
c4:9e:19:4f:b4:85:14:d3:f6:4b:00:45:0e:c7:da:
a7:8e:e4:cd:f9:bc:4e:08:65:72:aa:b7:2e:13:54:
c2:2d:87:1e:97:6c:2c:eb:8a:7d:54:63:e8:05:84:
74:47:57:be:ad:99:c6:ba:fe:90:bb:b8:73:3c:1f:
b0:d1:bf:74:38:8c:1a:65:da:05:51:58:8d:cf:a0:
e5:24:49:ca:b2:96:a5:b5:9a:b1:4f:10:28:e7:7f:
61:d1:26:ed:01:06:ec:af:61:b0:21:05:9d:85:f2:
96:22:d4:26:cc:f5:a5:ec:98:3a:30:7f:ee:6c:06:
f2:b0:53:9d:a4:d4:57:de:a8:f3:a0:b0:a3:a1:18:
3f:63:cd:f0:c0:69:43:93:67:1e:0b:45:f1:ed:96:
1b:62:61:52:9f:d4:57:aa:00:80:74:7d:2f:c7:dc:
2a:3c:41:f4:06:e3:e7:b5:53:aa:8c:89:85:16:40:
3d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:5C:9B:CF:8F:1D:CC:EF:E4:D4:C5:E5:FB:10:D8:FB:56:BF:30:3C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8000438E1E1611F0A385B4B8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.212.0/22
45.197.8.0/22
45.197.28.0/22
Signature Algorithm: sha256WithRSAEncryption
54:a2:b1:03:20:6b:84:83:07:d8:9a:c8:e7:be:08:29:38:74:
e5:1b:3a:e7:9c:74:b9:45:35:12:8d:54:4a:9f:27:54:d0:34:
dc:86:fd:17:b7:e7:88:1f:df:48:19:ee:c0:06:66:bd:02:7e:
d2:f6:c4:43:49:5f:7a:cb:7e:29:af:a6:4f:54:5d:5e:fb:40:
87:cb:87:8b:71:7e:f4:07:c2:11:c0:55:04:92:2e:a0:f5:e2:
b8:1c:bf:98:c9:de:f5:c0:16:bc:a5:8f:c3:8a:71:19:3e:45:
fd:4d:3f:db:43:a0:4b:76:51:fd:0e:7b:26:f7:ab:c8:8b:80:
c7:4c:0e:84:bd:9d:c1:71:ec:cb:23:10:0e:5f:32:24:2d:87:
29:fa:e8:c1:fe:53:d0:54:6d:9f:78:94:2f:2d:30:ab:64:ca:
88:b8:aa:3b:77:35:cf:75:8f:43:9b:8e:89:e8:23:22:f6:16:
84:32:a8:68:2c:4f:72:d6:44:9f:8a:0a:c3:92:bb:57:a5:06:
39:60:2f:ab:22:8e:d9:af:45:72:99:d4:5c:6c:2b:60:df:ce:
f0:2e:a0:ee:84:a5:1c:b3:6f:5e:2e:03:17:68:bb:48:ec:4e:
ab:45:a8:e4:63:62:f7:9d:c5:98:b9:fe:3d:44:fa:81:4d:37:
dc:b9:75:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:00:26 2025 by rpki-client