Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/945CA24E469A11F0932C07ECDAE4EC9C.roa
File: 945CA24E469A11F0932C07ECDAE4EC9C.roa (raw, json)
Hash identifier: 9U06B1B6/gVe5e8S1I9YvKMTWEOTd6eAC7oqaUqN55Q=
Subject key identifier: 48:CC:DF:00:73:CA:4F:4D:99:B4:53:1A:EA:16:DD:F9:48:95:72:E7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015B2F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/945CA24E469A11F0932C07ECDAE4EC9C.roa
Signing time: Wed 11 Jun 2025 08:03:38 +0000
ROA not before: Wed 11 Jun 2025 08:03:33 +0000
ROA not after: Sun 20 Jul 2025 08:03:33 +0000
asID: 21859
IP address blocks: 45.198.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 18 Jun 2025 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88879 (0x15b2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 11 08:03:33 2025 GMT
Not After : Jul 20 08:03:33 2025 GMT
Subject: CN=6849385a-3000
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:9e:9d:12:6f:da:bd:2f:25:b1:20:33:34:58:
92:e7:03:2e:c4:ff:76:85:8e:46:33:1f:51:fe:40:
7e:28:5b:d0:a2:21:3c:63:d8:bd:f5:69:56:ee:1a:
d0:c0:8c:7c:79:12:a3:e4:76:d2:18:9e:e5:c1:19:
2b:1d:50:15:5c:b7:bc:17:22:b8:c5:99:50:5c:a8:
e6:cf:f8:46:be:14:7b:d3:a7:8b:6c:92:b2:43:58:
bf:e6:e6:d5:6b:ad:ff:27:f6:45:cc:fe:6e:fc:ed:
28:ae:fc:99:9e:0b:77:6c:3f:c4:dd:b6:6c:2d:de:
8e:4b:3e:6f:da:e2:35:53:0f:d7:9a:08:4b:a6:f2:
4a:ce:b8:4f:bd:31:77:d8:30:05:0d:dd:a2:48:89:
66:fa:df:91:d9:0a:78:4d:0a:18:b7:4f:52:e0:2e:
46:99:d0:90:d5:35:ef:a6:c2:a0:92:a2:b1:34:22:
3a:5e:35:41:ba:69:f8:9a:03:49:68:0d:68:1f:33:
10:42:f1:89:48:ca:3f:fa:12:b7:24:a1:db:0e:91:
e8:bb:5f:7a:31:c7:d2:db:d5:e1:36:a0:d9:0b:d5:
2a:53:29:b0:88:73:17:a1:af:45:4e:e5:1e:52:13:
61:b7:ae:a4:d3:2c:f1:2a:71:98:88:50:f9:83:28:
96:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:CC:DF:00:73:CA:4F:4D:99:B4:53:1A:EA:16:DD:F9:48:95:72:E7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/945CA24E469A11F0932C07ECDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.106.0/24
Signature Algorithm: sha256WithRSAEncryption
29:a3:2c:d5:91:4c:51:6b:08:57:b2:c1:2a:59:e9:cf:89:95:
28:f6:5c:26:7f:73:56:3c:14:ea:aa:ff:55:9f:e4:aa:05:53:
41:ee:fc:ee:ca:d6:1c:54:8e:83:86:1e:72:02:f5:31:ae:f6:
d0:1d:40:bc:bf:c5:a9:10:e2:bd:f4:a5:c4:66:5d:76:f3:97:
17:bf:9f:40:c1:64:a6:cf:db:f3:c6:30:64:49:88:ce:a5:ff:
f9:7e:ea:b1:42:60:64:47:b6:cf:e8:bb:e6:0a:48:8c:36:b7:
51:e4:c0:5d:b5:40:4a:44:65:85:6f:28:8d:61:4c:fd:aa:76:
de:89:82:6e:eb:75:e8:d6:8e:15:3e:75:31:56:7b:fa:44:8d:
78:88:44:e8:02:18:04:da:81:fe:7e:40:18:ea:7a:bf:67:06:
39:08:b5:25:a5:91:57:75:ed:79:44:7d:27:37:8d:8c:e8:9a:
9c:31:fc:eb:c6:47:fc:e4:3a:08:29:be:b1:70:f2:d2:e5:88:
ee:a3:3e:6c:5f:03:d0:f8:bf:7f:be:ef:2e:42:10:50:d7:3b:
22:a9:fb:9b:78:69:80:71:84:89:91:0b:7a:83:e0:bd:2e:54:
7f:6f:c9:de:d5:73:dc:39:cc:e4:ca:28:b7:35:0f:8d:47:49:
d3:d9:cc:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 01:35:39 2025 by rpki-client