Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E9B4126615F011F0967016F16DB8BCC6.roa
File: E9B4126615F011F0967016F16DB8BCC6.roa (raw, json)
Hash identifier: /i4PW/Gb6EkyjcQt6/6WujnL3nbkFTfbiSnlBbguxhQ=
Subject key identifier: 10:B0:14:BC:59:D4:65:9C:33:DE:6F:B5:3F:B3:B1:04:B6:A7:4E:94
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014B76
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E9B4126615F011F0967016F16DB8BCC6.roa
Signing time: Thu 10 Apr 2025 09:48:11 +0000
ROA not before: Thu 10 Apr 2025 09:48:07 +0000
ROA not after: Sun 18 May 2025 09:48:07 +0000
asID: 6079
IP address blocks: 45.192.64.0/19 maxlen: 24
45.202.32.0/21 maxlen: 24
45.202.40.0/23 maxlen: 24
45.202.42.0/23 maxlen: 24
45.202.44.0/23 maxlen: 24
45.202.124.0/24 maxlen: 24
45.203.192.0/22 maxlen: 24
45.204.78.0/24 maxlen: 24
45.204.112.0/20 maxlen: 24
45.205.76.0/22 maxlen: 24
45.205.80.0/23 maxlen: 24
45.205.86.0/23 maxlen: 24
45.205.88.0/21 maxlen: 24
45.205.96.0/23 maxlen: 24
45.205.152.0/23 maxlen: 24
45.205.156.0/22 maxlen: 24
45.205.160.0/23 maxlen: 24
45.205.170.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84854 (0x14b76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 10 09:48:07 2025 GMT
Not After : May 18 09:48:07 2025 GMT
Subject: CN=67f793da-926d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:22:98:e6:21:18:a3:98:b7:74:ec:c3:a9:13:
5e:cc:ef:be:b1:e3:fe:ef:fa:91:40:9e:2a:e0:85:
4d:cb:6c:49:12:d0:84:6e:ae:21:c8:45:4c:6c:81:
93:60:3f:7d:9e:5e:c5:aa:69:6d:94:dc:85:99:70:
89:42:5f:33:3a:26:00:2e:83:20:65:0a:ab:a0:eb:
bb:97:ea:3c:e0:fb:b6:d5:ea:37:4f:77:90:a7:9c:
41:eb:30:68:4a:32:7f:5a:5b:ae:6c:65:3b:ed:f4:
1a:a7:ce:b3:7f:47:7f:27:49:82:6a:a7:31:9f:74:
90:c9:5a:f0:63:41:c5:83:bd:b9:73:a1:87:7d:1c:
e7:53:0d:6c:14:98:16:81:f5:cd:34:be:f6:18:e3:
db:ba:6e:ec:93:ab:83:be:44:a6:97:e5:2a:c9:f3:
32:6a:c7:79:83:46:82:de:8c:02:75:28:02:1a:c1:
74:db:f6:13:e0:e6:65:87:8b:c3:5a:cb:d8:df:e7:
38:27:76:43:0e:b5:b4:6f:7d:73:41:8f:ad:47:14:
41:cd:8a:13:c3:ec:1d:82:5f:b2:27:0a:7f:bf:1b:
20:1f:5f:d1:5f:fe:c5:b9:9b:b1:f6:54:63:08:ff:
ac:eb:a0:6f:36:ed:b6:76:47:b4:d7:96:ad:f6:d4:
03:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:B0:14:BC:59:D4:65:9C:33:DE:6F:B5:3F:B3:B1:04:B6:A7:4E:94
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E9B4126615F011F0967016F16DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.64.0/19
45.202.32.0-45.202.45.255
45.202.124.0/24
45.203.192.0/22
45.204.78.0/24
45.204.112.0/20
45.205.76.0-45.205.81.255
45.205.86.0-45.205.97.255
45.205.152.0/23
45.205.156.0-45.205.161.255
45.205.170.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:cf:2c:52:08:1e:30:66:78:7f:32:68:df:2a:cd:fc:4c:b2:
be:92:61:5d:62:6d:a1:7a:db:41:c1:6d:05:a8:3d:7d:c9:e5:
fa:eb:c8:e0:f0:ce:c0:87:f6:37:4d:93:84:07:d2:28:4b:a5:
0b:8f:c7:2d:be:3c:38:92:a0:e5:7a:9d:24:bb:6d:11:79:41:
67:c6:02:2c:0d:a0:7e:db:56:f0:ca:25:24:76:40:9f:74:cf:
3c:94:55:82:3b:52:57:9a:e3:79:42:7b:12:c3:e3:a5:9e:85:
12:6e:5d:e9:70:d8:dc:a9:9e:21:e2:a6:83:e0:99:93:ba:0b:
02:a4:9c:fe:41:6f:a3:bb:bc:23:bd:d2:e3:9f:62:9e:5f:4b:
43:cb:1b:32:1c:7b:a9:93:af:87:c1:83:df:93:0b:2d:40:55:
3f:05:ff:8f:02:71:fd:c0:b0:f4:9e:f4:54:d2:fd:6c:65:30:
a0:ce:61:6f:ee:af:7f:08:cd:35:a7:b2:c2:ca:f0:88:1c:48:
94:cd:90:22:4a:f8:15:67:12:d6:3a:2f:2e:90:6d:70:3d:e2:
72:60:9e:42:e3:2b:5b:2b:f7:3e:32:88:46:38:b9:54:1d:b8:
bd:ba:fb:e4:f1:9b:67:f8:23:e5:90:d0:e6:5a:70:95:ad:26:
3d:65:0f:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 18:07:40 2025 by rpki-client on console.sobornost.net