Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DDB515961C8A11F09FC825E2DAE4EC9C.roa
File: DDB515961C8A11F09FC825E2DAE4EC9C.roa (raw, json)
Hash identifier: vnSu8mu6TDegM3p1a6PqaPpWgoG+rH2B5m8LOKLPW8I=
Subject key identifier: 50:E4:A9:A2:50:9B:FD:D8:8C:06:AC:26:3A:93:85:75:F8:9E:97:ED
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014D5B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DDB515961C8A11F09FC825E2DAE4EC9C.roa
Signing time: Fri 18 Apr 2025 19:25:20 +0000
ROA not before: Fri 18 Apr 2025 19:25:15 +0000
ROA not after: Fri 30 May 2025 19:25:15 +0000
asID: 398443
IP address blocks: 45.192.192.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85339 (0x14d5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 18 19:25:15 2025 GMT
Not After : May 30 19:25:15 2025 GMT
Subject: CN=6802a720-9033
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:86:85:16:c9:bd:b7:d8:ed:a4:ef:f1:73:d9:
cb:e1:f7:84:13:2a:3e:eb:b0:67:ab:26:89:c0:74:
43:86:7c:fb:0b:ad:77:c3:6b:e9:e7:9b:ab:0a:41:
85:9f:03:ce:bb:b0:b9:b2:ae:4c:24:90:47:93:02:
6a:01:af:51:30:bb:ed:d8:d9:b1:39:4a:0c:ca:35:
3e:0d:d3:e5:b4:d4:77:95:5d:2c:c0:b5:b8:9d:3e:
78:15:97:5c:95:85:53:32:d6:25:50:8f:83:6d:0b:
c0:72:16:4e:11:9d:e1:aa:0a:55:9f:ac:24:c3:c6:
b2:28:dc:8e:71:78:b3:0e:1a:3f:96:3a:f0:68:96:
bb:4a:af:1f:22:2f:94:78:9e:97:d5:fe:ab:91:55:
a3:f1:81:5c:0c:1a:37:8b:f0:20:fa:30:a4:91:ba:
3f:fa:28:b3:e8:d5:42:ce:f5:34:97:2a:f2:de:ca:
58:6a:00:18:eb:3d:41:9b:e3:f7:cb:f0:25:22:76:
ab:85:a8:22:0a:98:b8:69:a7:1f:d0:11:62:08:4b:
5f:36:fd:a0:4b:1e:d3:88:c1:52:13:6d:c6:e7:3e:
9b:66:74:4d:78:fe:fe:bb:e4:4b:67:c4:c9:49:8d:
6a:55:5d:8d:93:de:95:4b:bb:d8:1a:4a:0b:d9:85:
18:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:E4:A9:A2:50:9B:FD:D8:8C:06:AC:26:3A:93:85:75:F8:9E:97:ED
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DDB515961C8A11F09FC825E2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.192.0/20
Signature Algorithm: sha256WithRSAEncryption
4d:7f:61:b0:b1:6d:5a:fa:0d:a8:d1:1c:8b:bd:95:89:0d:d8:
65:15:33:c8:2d:b4:e5:6b:f9:fc:e2:2d:95:39:aa:3c:53:6f:
ae:01:b2:56:4a:70:72:65:80:13:fb:58:39:12:4e:14:3f:10:
b0:a7:7b:1b:4e:a9:9f:af:6b:c5:c2:c4:29:9f:e7:a1:3b:c8:
e3:8d:47:88:7c:fc:19:fe:96:29:da:6c:27:b9:c8:58:f2:68:
be:05:dd:d7:49:d5:97:0b:a5:4e:e9:7c:fa:ec:e4:c1:7a:8e:
94:f1:47:1b:13:7a:76:12:65:29:07:fe:2e:d4:70:be:5b:11:
2d:2b:ab:08:e4:d5:09:27:75:0e:12:bf:d6:dc:a0:c8:04:17:
47:fc:ed:8f:73:f2:89:8f:a3:f8:ff:2a:92:71:a5:49:d6:9b:
9b:8c:3b:81:2c:d2:84:f7:3b:60:81:00:f4:89:d2:20:a3:7a:
ee:b7:77:bf:55:bd:14:c6:08:8a:9f:51:51:1a:a5:a7:df:25:
a4:fe:1d:6f:ab:4e:b9:02:87:89:83:6b:b3:63:13:e0:76:cf:
29:6d:b5:9f:8e:0d:05:16:28:68:86:55:63:fc:8e:f4:f3:31:
99:fd:5d:49:70:9d:2c:87:15:58:88:fb:4d:c6:67:71:2c:18:
ec:ac:60:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 18:07:32 2025 by rpki-client on console.sobornost.net