Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C4742CEC694D11F0B5E6CEC3DAE4EC9C.roa
File: C4742CEC694D11F0B5E6CEC3DAE4EC9C.roa (raw, json)
Hash identifier: iru5VQ+K76GsLGH4ZDgSQY/b8sk3tmDRYpJAEwBxMD4=
Subject key identifier: 0E:B4:A1:32:A7:3B:98:18:A1:82:DE:2A:BA:2B:FD:86:56:CF:60:5C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0167C2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C4742CEC694D11F0B5E6CEC3DAE4EC9C.roa
Signing time: Fri 25 Jul 2025 11:51:58 +0000
ROA not before: Fri 25 Jul 2025 11:51:54 +0000
ROA not after: Wed 27 Aug 2025 11:51:54 +0000
asID: 147176
IP address blocks: 45.201.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 06 Aug 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92098 (0x167c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 25 11:51:54 2025 GMT
Not After : Aug 27 11:51:54 2025 GMT
Subject: CN=68836fde-5f69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ed:cd:33:ba:35:59:bb:28:aa:ca:09:17:42:
87:20:d7:f1:4b:54:f8:c8:30:19:f2:f3:e9:d9:1f:
bb:65:a1:5d:f8:76:8b:9c:ed:57:ad:a6:65:e2:4d:
bb:62:4a:52:8d:60:10:26:27:c4:d3:e8:ed:51:b3:
e0:b9:e4:f5:4a:d6:e1:6b:b9:86:5b:3b:51:b2:a8:
d5:19:b1:04:a6:0e:37:67:60:91:c7:0e:9f:7e:4f:
aa:93:c0:c9:a5:35:f8:74:ab:22:65:64:cb:39:c6:
e2:7d:82:a5:40:c0:a8:19:7a:fd:2e:83:1c:39:9d:
1a:3b:2f:3d:39:3d:71:f1:7d:b1:5c:51:ad:04:86:
27:63:74:95:34:18:59:ad:8d:52:c1:a0:1b:d6:44:
3a:c5:7c:05:85:a4:72:19:91:e8:1f:79:ef:da:ae:
d2:e2:ed:e0:44:d8:a1:c1:87:d0:49:ca:6d:4c:47:
da:2a:e0:f6:28:3c:ec:8f:6f:fb:4d:43:98:e1:3b:
ef:a5:65:dc:8b:7b:a8:b9:44:22:b3:44:48:96:4d:
32:48:cb:0e:63:37:b4:1d:e3:56:49:ce:bf:66:7d:
df:5a:f2:52:08:07:8d:36:28:8b:04:0c:50:8f:5e:
75:97:ed:a7:7c:11:36:02:7c:52:a1:db:c5:d2:c9:
b6:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:B4:A1:32:A7:3B:98:18:A1:82:DE:2A:BA:2B:FD:86:56:CF:60:5C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C4742CEC694D11F0B5E6CEC3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.27.0/24
Signature Algorithm: sha256WithRSAEncryption
29:9c:39:d0:a5:67:2f:d4:c0:c4:6a:20:49:55:90:63:13:96:
85:09:82:0d:81:de:52:ba:7f:40:0b:e0:a3:65:a5:ad:41:bf:
26:da:0b:be:66:00:14:31:b5:aa:0c:45:f0:d9:23:29:64:58:
22:f9:a7:ed:52:19:51:c6:82:cc:3b:f4:dc:5d:d3:7f:a1:75:
b1:10:5d:0d:96:23:17:f3:67:2f:92:0b:67:6d:aa:1f:69:76:
98:4b:84:d8:7a:f7:10:15:67:90:a7:6d:47:77:56:b1:3f:4a:
f5:d7:5c:28:83:6b:8d:0b:f7:72:56:37:13:01:f6:a8:89:e6:
3e:c5:a2:16:49:c8:d0:f3:80:2e:13:41:ac:07:4c:d9:f8:9d:
74:95:51:44:a3:23:a0:3e:57:7d:15:a9:66:c5:72:4b:24:25:
0d:0e:66:ec:63:f6:52:4c:cd:d2:b3:a2:78:ff:9e:9e:8b:32:
b2:2a:2a:4e:dc:58:bf:5a:45:59:70:49:20:d9:87:c9:8b:d2:
72:e7:da:3d:81:1e:80:20:ab:e1:53:98:f5:fc:2b:0f:38:e5:
64:b8:71:09:31:bc:36:d6:10:7f:e7:42:6d:36:65:ac:a4:fa:
39:2e:60:9a:42:2b:ea:3f:b8:46:32:4a:7f:51:e4:9e:e6:d1:
60:5a:9e:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 07:46:04 2025 by rpki-client