Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0660A7B21C7711F081E3FFDEDAE4EC9C.roa
File: 0660A7B21C7711F081E3FFDEDAE4EC9C.roa (raw, json)
Hash identifier: KGmSBTS4AkNNCIHR2Bt9mHO+xqtWotoU/P8vlfm92wY=
Subject key identifier: 6F:B8:85:DA:3B:93:FE:36:96:E5:35:E5:4C:65:39:28:8E:FC:3D:99
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014D35
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0660A7B21C7711F081E3FFDEDAE4EC9C.roa
Signing time: Fri 18 Apr 2025 17:03:19 +0000
ROA not before: Fri 18 Apr 2025 17:03:14 +0000
ROA not after: Tue 27 May 2025 17:03:14 +0000
asID: 202656
IP address blocks: 45.195.161.0/24 maxlen: 24
45.195.168.0/24 maxlen: 24
45.195.189.0/24 maxlen: 24
45.199.221.0/24 maxlen: 24
45.199.222.0/24 maxlen: 24
45.199.223.0/24 maxlen: 24
45.199.224.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 29 Apr 2025 00:26:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85301 (0x14d35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 18 17:03:14 2025 GMT
Not After : May 27 17:03:14 2025 GMT
Subject: CN=680285d6-7fbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cb:ca:b4:2e:45:a2:5c:f5:24:8f:04:47:75:
5b:ae:e8:ec:f0:4d:aa:cb:16:31:65:53:85:bb:a6:
19:2a:59:56:ae:d0:3b:d3:e3:8b:58:c8:d7:0d:43:
fd:4c:a0:a9:e8:06:d0:07:f7:35:62:98:30:e9:ab:
94:b2:9f:f3:ed:64:22:59:10:73:61:78:d2:e0:35:
12:e6:2e:ef:74:4e:c6:a2:cf:f9:37:0e:0e:be:ab:
73:59:01:57:64:e0:fd:55:41:70:8a:be:d8:8e:89:
6a:2b:77:b3:6b:e3:bd:96:61:e4:a2:bc:54:e9:5f:
76:32:16:a3:9d:34:24:97:80:5f:21:21:0c:13:01:
fb:0a:70:20:bf:ae:55:80:de:07:63:3e:95:5c:26:
fc:2e:f7:36:ef:0e:24:44:c4:73:3c:00:76:a9:58:
6f:2a:04:c6:7b:80:3b:cc:c5:19:fa:d0:1e:85:a0:
ca:1a:b4:4e:69:c3:62:9f:09:41:d2:72:57:0e:62:
33:28:02:16:16:0c:f4:73:f4:d9:a9:1f:62:ad:40:
28:5f:27:89:ff:f1:40:8b:88:52:7f:b5:01:46:85:
b9:5c:42:02:5c:1b:9c:9f:59:0f:e4:f0:b9:a6:69:
a0:71:40:26:f0:11:cd:69:e7:93:78:41:dc:5f:df:
ae:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:B8:85:DA:3B:93:FE:36:96:E5:35:E5:4C:65:39:28:8E:FC:3D:99
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0660A7B21C7711F081E3FFDEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.161.0/24
45.195.168.0/24
45.195.189.0/24
45.199.221.0-45.199.224.255
Signature Algorithm: sha256WithRSAEncryption
80:40:56:47:93:31:53:ac:7e:8e:68:5e:0a:6e:5d:3c:4f:01:
a5:db:89:96:da:ce:dd:4c:5f:37:16:b0:31:a5:8a:86:ce:a5:
fe:fe:44:a4:cf:7c:96:e4:d3:54:e9:48:5e:07:34:42:b2:7f:
6b:02:19:67:52:0a:0b:4f:5f:da:0a:2f:8f:20:85:61:3c:6f:
fa:c8:68:7c:5b:f8:e0:b2:16:63:1d:cc:64:15:cb:7a:70:62:
55:8f:7e:49:8f:6e:96:01:2b:e4:f3:3a:cf:c6:2c:92:41:a1:
e5:80:94:b1:c7:8e:2c:fd:9c:63:99:65:db:d5:6c:e7:36:37:
22:2a:f7:8e:a1:07:62:6d:da:a0:cc:a7:59:39:64:af:0c:2e:
20:a4:98:60:08:9e:86:40:0d:38:df:69:27:75:7b:e6:5b:08:
05:46:12:97:04:98:b7:b7:b2:3f:3d:a3:88:d7:59:5b:b7:9f:
70:a2:ec:19:36:9b:47:4a:9a:ec:8b:9d:95:e7:0d:b5:03:19:
db:ee:76:3c:da:af:98:b1:02:c9:f9:68:51:5e:85:c6:cc:44:
29:61:aa:0b:49:c8:87:d3:20:3c:81:04:46:fb:ed:ca:67:9b:
cc:91:10:44:e1:71:52:21:52:89:9f:a6:df:43:d7:89:ea:4d:
c5:34:22:0a
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Apr 27 14:53:56 2025 by rpki-client on console.sobornost.net