![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2A73BF8A1D9611EF81CD75F47CDC24C2.roa
File: 2A73BF8A1D9611EF81CD75F47CDC24C2.roa (raw, json)
Hash identifier: pFmhTqiaygGi+1ZqULcWW+30v6z1+ZdcmUFZhrg1NKE=
Subject key identifier: E9:58:46:A9:4C:2E:6B:9D:82:B6:F8:08:CA:0A:4C:76:1B:D3:46:E6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8D39
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2A73BF8A1D9611EF81CD75F47CDC24C2.roa
Signing time: Wed 29 May 2024 08:33:47 +0000
ROA not before: Wed 29 May 2024 08:33:43 +0000
ROA not after: Sat 07 Sep 2024 08:33:43 +0000
asID: 18013
IP address blocks: 156.225.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 00:16:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36153 (0x8d39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 29 08:33:43 2024 GMT
Not After : Sep 7 08:33:43 2024 GMT
Subject: CN=6656e86b-32fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ad:17:fc:74:4b:9e:3d:e3:16:20:3a:a9:08:
05:ca:79:d4:47:a7:a6:94:86:2f:ed:05:b6:6f:e8:
1a:43:ce:b7:d0:49:ee:69:28:df:1b:61:71:39:42:
6f:a0:af:49:5a:d2:54:84:7f:72:83:37:87:61:d2:
4e:0f:1e:d8:e6:31:5c:ef:09:be:d9:87:0d:4f:55:
8d:95:3c:14:9c:d2:61:56:d6:15:89:cd:50:d7:6a:
e5:0c:3b:17:b4:78:6b:d1:4c:54:f2:7f:3d:df:b0:
bc:36:fe:1f:e6:d9:ea:db:c3:d6:3e:bc:65:e4:20:
3b:fb:fd:89:60:d8:94:5c:8e:1a:cf:11:cc:cc:d3:
89:c3:fa:12:7f:dc:4f:b1:25:50:d4:1f:95:0b:0c:
53:7b:08:1f:3b:f7:fb:d5:a2:6a:93:d9:4e:8a:a2:
d1:1b:e8:d3:41:90:28:8b:29:50:6e:d5:ec:a9:63:
ca:f5:bc:7b:e2:e7:36:30:e4:d1:89:ea:31:f5:9a:
81:e7:ef:29:ae:41:67:f5:5b:c8:9b:e8:ee:66:ae:
29:85:ac:aa:e6:be:65:f4:94:77:fd:74:cc:69:77:
df:8a:bb:47:49:ae:70:6e:c0:2c:d1:6b:88:bd:72:
58:57:6a:b4:d3:16:5f:58:71:ab:4a:96:cd:1f:a8:
1d:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:58:46:A9:4C:2E:6B:9D:82:B6:F8:08:CA:0A:4C:76:1B:D3:46:E6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2A73BF8A1D9611EF81CD75F47CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.58.0/24
Signature Algorithm: sha256WithRSAEncryption
55:85:44:91:44:4d:bf:b3:f1:f6:82:01:b5:1e:10:d9:56:c5:
59:a6:90:4e:db:f7:4f:01:a8:d4:d4:5a:26:e9:dc:15:e8:c3:
cd:dc:9e:b9:d5:94:7f:79:e3:2c:72:2f:8c:23:e7:83:28:cf:
78:6f:ce:a3:8a:89:37:be:01:5c:cb:82:bb:bf:79:57:2b:d4:
7a:49:6b:de:e3:a2:a9:de:4f:9b:71:8f:a4:d8:46:a5:ac:f6:
da:9f:4d:c1:8c:ac:eb:f3:58:1e:4a:ce:0f:50:9a:fa:d5:32:
f7:06:c7:a9:bc:aa:f9:4f:d2:cc:4b:fa:1b:e4:e8:26:da:0b:
b8:fe:04:37:d7:d4:ae:dc:4b:b9:93:d7:c9:24:3b:a9:eb:53:
29:b6:b9:5c:73:05:65:23:b4:54:db:88:26:4f:3c:99:db:d7:
f0:30:74:b8:0b:f5:34:b8:36:14:ab:9c:38:57:63:50:44:b3:
44:d0:93:8c:c6:3e:03:d3:bb:69:2e:c0:44:10:4a:bb:60:08:
f5:13:37:9f:2e:76:a4:30:08:5d:dc:8c:bb:f7:bf:7b:7e:4d:
ff:d2:7f:d9:58:5c:a1:53:ec:14:87:10:58:be:e3:25:d3:8f:
66:de:ad:78:fb:1d:db:2f:1b:9e:1c:da:a7:f3:7a:3a:ba:10:
e8:9e:07:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 02:10:34 2024 by rpki-client on console-ams.rpki-client.org