![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC46765E1D0E11EF851B45337DDC24C2.roa
File: DC46765E1D0E11EF851B45337DDC24C2.roa (raw, json)
Hash identifier: 5ggvOed7Siec8eJeALDfHrz2cWx9J4hebDp/B+P1spU=
Subject key identifier: DA:EB:F0:0D:0E:9A:5C:A7:84:96:81:B5:E3:DA:5E:3D:4C:38:E7:2D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8C98
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC46765E1D0E11EF851B45337DDC24C2.roa
Signing time: Tue 28 May 2024 16:25:13 +0000
ROA not before: Tue 28 May 2024 16:25:09 +0000
ROA not after: Wed 03 Jul 2024 16:25:09 +0000
asID: 18013
IP address blocks: 156.224.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 00:16:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35992 (0x8c98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 28 16:25:09 2024 GMT
Not After : Jul 3 16:25:09 2024 GMT
Subject: CN=66560569-fd23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:61:9f:4c:fb:56:b0:79:ce:ec:84:93:4d:ef:
67:c8:09:c1:a0:0f:e3:84:ee:71:b3:6e:4c:6f:e4:
61:17:02:a8:fe:f5:b2:b1:4b:b4:dc:8d:a9:81:d8:
4b:51:fc:72:8f:92:95:95:61:4e:49:bb:16:66:54:
1c:98:84:f0:49:ac:3e:df:fd:4c:56:57:81:d3:ab:
4a:83:7c:bd:b8:e8:01:f6:f7:b3:e0:f1:67:1c:d2:
86:76:6a:d1:f9:98:02:e3:cc:5c:df:23:15:ae:9a:
4f:a5:cd:0a:33:d6:38:50:4c:15:2d:64:92:df:3d:
a8:39:37:9c:c7:53:af:05:63:0b:df:1a:90:53:ed:
cf:ae:98:35:ec:84:c5:fb:02:02:0a:38:65:29:8b:
30:d3:1f:9d:8b:ad:c1:7d:30:e1:4e:23:72:25:39:
5a:17:c3:69:fc:5b:90:e3:22:d2:b3:33:3a:00:42:
e1:49:4e:75:1f:e9:a1:d8:37:a4:dc:da:8b:c9:20:
da:24:48:ec:07:6b:9b:ec:4d:dc:60:01:0b:ce:71:
be:0a:8c:d5:e5:cd:b1:54:d8:cd:94:28:ec:89:eb:
b5:15:cb:b5:e8:8d:2e:75:fe:7b:5e:b4:a5:1e:2b:
f3:ec:1a:e9:ca:96:69:0d:03:90:71:99:d5:bb:8c:
26:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:EB:F0:0D:0E:9A:5C:A7:84:96:81:B5:E3:DA:5E:3D:4C:38:E7:2D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC46765E1D0E11EF851B45337DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.224.80.0/24
Signature Algorithm: sha256WithRSAEncryption
15:11:74:de:f7:ea:ce:8b:d7:22:7e:6a:67:da:79:40:47:14:
a3:c0:cd:d9:fd:93:a6:7e:bc:f7:4d:fb:3c:75:2e:f7:01:d2:
f3:f5:f5:1a:a5:a7:a0:c3:a6:33:92:e6:07:7d:9a:19:31:1a:
2c:a7:5f:3f:04:bc:44:ff:69:58:4e:89:3a:f9:48:88:6b:16:
55:fa:46:22:8d:17:cb:56:ed:04:7a:2e:6a:d1:29:62:3e:81:
01:be:9e:cf:5b:da:1b:dc:62:c1:8b:5d:69:4e:81:66:66:11:
7d:17:86:86:63:3f:52:cc:ae:62:82:f9:90:24:fc:3f:92:70:
5d:b9:6b:33:d2:19:e3:13:55:85:cb:91:e4:9d:5f:2c:86:9c:
b9:69:38:e8:0e:7e:7f:0f:6f:c9:2d:f5:0e:46:bc:83:0e:e6:
50:05:0e:fe:96:08:43:9a:5a:ab:2c:a5:25:f8:be:fd:08:c9:
84:78:bc:d6:49:d8:25:33:ef:1f:18:47:68:b1:8b:9b:1b:f8:
cc:c0:6f:3a:cf:b8:3a:7b:8d:6a:e4:f1:fa:57:67:f1:74:6d:
a2:11:74:0d:36:3f:fc:17:f5:35:3d:e8:b8:bb:ca:53:90:8a:
84:74:3b:b6:1f:32:15:eb:0f:68:a9:bb:9b:08:e5:c0:f2:75:
f6:4e:b8:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 02:10:43 2024 by rpki-client on console-ams.rpki-client.org