Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363DCF2/A18531B6DCBE11EFBE2B50BB762E951A/19688CE6E71411EFBF287786762E951A.roa
File: 19688CE6E71411EFBF287786762E951A.roa (raw, json)
Hash identifier: 3SpAXKAI2oMnzDMtmx8bxJNcSrUMhykMz+m286lYBPc=
Subject key identifier: 96:28:3B:09:B3:28:D3:35:79:E6:A4:CA:33:0C:A9:F6:93:19:5C:03
Certificate issuer: /CN=F363DCF2AR/serialNumber=C4BBCDEF9DC7E68F9184C80C08718C206EDDF70B
Certificate serial: 3D
Authority key identifier: C4:BB:CD:EF:9D:C7:E6:8F:91:84:C8:0C:08:71:8C:20:6E:DD:F7:0B
Authority info access: rsync://rpki.afrinic.net/repository/arin/xLvN753H5o-RhMgMCHGMIG7d9ws.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363DCF2/A18531B6DCBE11EFBE2B50BB762E951A/19688CE6E71411EFBF287786762E951A.roa
Signing time: Sun 09 Feb 2025 18:31:38 +0000
ROA not before: Sun 09 Feb 2025 18:31:35 +0000
ROA not after: Mon 31 Dec 2035 18:31:35 +0000
asID: 30992
IP address blocks: 129.0.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363DCF2/A18531B6DCBE11EFBE2B50BB762E951A/xLvN753H5o-RhMgMCHGMIG7d9ws.crl
rsync://rpki.afrinic.net/repository/member_repository/F363DCF2/A18531B6DCBE11EFBE2B50BB762E951A/xLvN753H5o-RhMgMCHGMIG7d9ws.mft
rsync://rpki.afrinic.net/repository/arin/xLvN753H5o-RhMgMCHGMIG7d9ws.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 14 Apr 2025 00:26:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61 (0x3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363DCF2AR, serialNumber=C4BBCDEF9DC7E68F9184C80C08718C206EDDF70B
Validity
Not Before: Feb 9 18:31:35 2025 GMT
Not After : Dec 31 18:31:35 2035 GMT
Subject: CN=67a8f48a-cbbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:20:fc:45:12:2c:65:39:ee:f7:0f:2c:72:b4:
df:04:9d:4a:be:c2:51:63:f3:57:66:a6:e8:61:4d:
90:0b:fe:6a:90:23:03:71:5e:62:d0:f0:1e:49:1d:
8a:31:23:01:25:b4:47:14:00:52:9e:87:9f:92:b1:
95:93:47:40:f7:85:9a:85:9a:42:d5:3a:b4:24:e2:
0d:5c:81:8c:8d:24:af:66:f0:29:6f:7f:a3:d7:6e:
cd:c1:9d:ca:82:1c:9e:88:24:21:f2:ee:58:03:6f:
9a:d2:c5:e9:23:80:bf:c2:33:a2:fc:48:3a:99:dc:
81:4f:14:cb:21:44:11:c2:99:e2:00:b3:ca:17:ae:
30:e7:92:95:49:a8:e2:a5:79:93:f8:d3:c8:e3:bf:
12:c2:7e:a0:6b:76:85:6e:b5:01:53:ab:70:d3:83:
7c:69:0c:df:81:13:ce:61:40:d5:91:d8:78:37:29:
e0:7d:96:1a:d7:8a:70:1f:1e:ea:c2:ee:38:f9:21:
4b:d8:dd:b7:91:1a:63:db:6d:6a:c3:b9:bf:08:26:
f1:32:7b:09:1c:18:81:65:cf:38:46:57:93:56:94:
80:a5:49:50:29:24:85:18:ee:34:ca:57:d8:78:45:
d4:5f:06:e8:19:62:22:db:b8:6c:55:12:fc:e0:18:
a6:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:28:3B:09:B3:28:D3:35:79:E6:A4:CA:33:0C:A9:F6:93:19:5C:03
X509v3 Authority Key Identifier:
keyid:C4:BB:CD:EF:9D:C7:E6:8F:91:84:C8:0C:08:71:8C:20:6E:DD:F7:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363DCF2/A18531B6DCBE11EFBE2B50BB762E951A/xLvN753H5o-RhMgMCHGMIG7d9ws.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/xLvN753H5o-RhMgMCHGMIG7d9ws.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363DCF2/A18531B6DCBE11EFBE2B50BB762E951A/19688CE6E71411EFBF287786762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
129.0.82.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:5b:20:40:76:0d:f4:97:4c:9d:f6:ca:db:37:89:da:89:4e:
67:d8:0f:f3:c6:8d:e3:51:d5:58:51:dd:24:9a:81:4a:fc:fa:
eb:e0:ce:c3:12:e8:46:d1:37:3e:8c:19:94:a2:96:13:bc:34:
3d:43:7d:3e:19:97:7c:70:62:fe:1c:b3:87:2f:fb:03:f1:56:
7c:ed:f4:0f:9c:4b:13:76:60:ff:0e:cc:0c:e5:65:23:0b:05:
7b:4a:72:52:f0:4f:f6:ca:d0:a1:44:dd:a5:b1:bd:5c:5f:e5:
91:b3:35:86:f0:b2:1d:59:ce:8a:ac:4f:3c:e6:c0:c1:47:3c:
7f:fa:3c:eb:b9:15:ce:67:2a:c5:75:6a:dc:e6:10:87:5d:b2:
b1:b1:56:b9:ed:de:2e:82:c5:ef:7d:33:70:37:00:0f:2f:3c:
6a:5c:c0:5e:71:dd:c6:6e:28:7d:e0:87:92:6d:e5:3b:f2:8f:
41:a3:69:9d:7a:54:ef:f1:d5:8c:82:6c:75:d4:bf:b4:50:23:
53:74:f4:7a:3c:26:cf:02:37:e2:06:45:d3:3f:46:7e:73:f1:
5b:4a:ea:cd:e8:fe:f3:fc:59:c7:68:80:2f:79:8d:40:3e:2a:
ee:d1:3d:ad:6f:4c:0d:b7:38:26:47:9a:0a:01:17:e3:43:58:
e0:6e:6b:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 22:42:40 2025 by rpki-client