Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363DCF2/A18531B6DCBE11EFBE2B50BB762E951A/314121A0E71611EFB3368E93762E951A.roa
File: 314121A0E71611EFB3368E93762E951A.roa (raw, json)
Hash identifier: tq07saenMGK8v+QpcyKGWS+QKHYWt2hPvwm5vAiTTyg=
Subject key identifier: C6:CD:2B:72:42:BF:B1:A2:68:43:D5:56:8A:D5:1D:7D:AC:68:4C:CA
Certificate issuer: /CN=F363DCF2AR/serialNumber=C4BBCDEF9DC7E68F9184C80C08718C206EDDF70B
Certificate serial: 47
Authority key identifier: C4:BB:CD:EF:9D:C7:E6:8F:91:84:C8:0C:08:71:8C:20:6E:DD:F7:0B
Authority info access: rsync://rpki.afrinic.net/repository/arin/xLvN753H5o-RhMgMCHGMIG7d9ws.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363DCF2/A18531B6DCBE11EFBE2B50BB762E951A/314121A0E71611EFB3368E93762E951A.roa
Signing time: Sun 09 Feb 2025 18:46:37 +0000
ROA not before: Sun 09 Feb 2025 18:46:34 +0000
ROA not after: Mon 31 Dec 2035 18:46:34 +0000
asID: 30992
IP address blocks: 129.0.87.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363DCF2/A18531B6DCBE11EFBE2B50BB762E951A/xLvN753H5o-RhMgMCHGMIG7d9ws.crl
rsync://rpki.afrinic.net/repository/member_repository/F363DCF2/A18531B6DCBE11EFBE2B50BB762E951A/xLvN753H5o-RhMgMCHGMIG7d9ws.mft
rsync://rpki.afrinic.net/repository/arin/xLvN753H5o-RhMgMCHGMIG7d9ws.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 14 Apr 2025 00:26:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71 (0x47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363DCF2AR, serialNumber=C4BBCDEF9DC7E68F9184C80C08718C206EDDF70B
Validity
Not Before: Feb 9 18:46:34 2025 GMT
Not After : Dec 31 18:46:34 2035 GMT
Subject: CN=67a8f80d-39e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c2:64:3c:5b:1f:e3:dd:15:b6:8a:f9:73:09:
ca:5a:d1:97:9d:de:82:29:e6:bb:1e:30:10:e1:d1:
a1:30:4d:c3:34:5f:35:16:18:db:80:9b:83:2d:59:
a9:d7:06:d3:94:c3:5d:4b:d0:d2:1d:c1:cc:00:72:
ac:87:6a:ca:d7:70:a5:ea:d0:35:95:5d:02:bc:34:
a6:06:03:a9:a0:9f:2d:1a:54:77:44:e2:3d:0b:45:
d5:81:b5:26:e2:c0:03:de:76:80:a2:9d:96:22:ff:
b6:19:19:e8:83:f2:75:d3:23:60:5b:46:04:49:19:
2b:03:da:ec:9d:47:cc:3a:fb:63:eb:98:b6:36:bd:
26:a4:44:fa:4c:c4:bc:16:f3:66:90:1a:0e:f5:d5:
a8:2f:6a:ea:ff:71:af:b8:cf:a6:0f:ac:d6:90:7c:
10:4d:19:2e:be:df:6a:7f:18:c6:7a:e5:c6:4f:8c:
cc:73:c9:4a:4c:2f:08:0f:bc:6c:e5:4a:4c:1f:14:
3b:d8:ba:75:09:8e:3f:10:ab:64:80:dd:d7:2d:8a:
a0:47:2c:7b:87:ba:e5:c8:29:33:eb:f1:f6:87:b1:
1d:9f:54:c3:e1:fb:e2:27:b2:ac:86:e6:da:82:ee:
54:d5:93:f4:cd:10:52:94:0a:9a:5d:6c:d1:5f:56:
cf:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:CD:2B:72:42:BF:B1:A2:68:43:D5:56:8A:D5:1D:7D:AC:68:4C:CA
X509v3 Authority Key Identifier:
keyid:C4:BB:CD:EF:9D:C7:E6:8F:91:84:C8:0C:08:71:8C:20:6E:DD:F7:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363DCF2/A18531B6DCBE11EFBE2B50BB762E951A/xLvN753H5o-RhMgMCHGMIG7d9ws.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/xLvN753H5o-RhMgMCHGMIG7d9ws.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363DCF2/A18531B6DCBE11EFBE2B50BB762E951A/314121A0E71611EFB3368E93762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
129.0.87.0/24
Signature Algorithm: sha256WithRSAEncryption
84:e9:04:52:4a:01:0e:19:ea:58:99:d3:a3:c4:07:93:1e:f9:
f4:70:15:7e:de:74:d1:86:f3:9a:5c:dd:85:27:c6:58:c5:f9:
85:87:06:32:7d:9f:d9:a9:8d:2b:45:fb:31:1d:ee:0e:0b:76:
f3:cc:87:a5:ba:0c:76:de:d3:32:31:11:6c:e1:90:aa:40:35:
cd:53:83:cd:b4:cc:8b:a7:0e:5a:dd:ce:53:cc:43:05:c9:67:
d7:11:2e:76:11:84:8a:e9:c6:9d:c5:cd:44:c5:43:52:49:52:
cd:ec:f0:28:32:60:92:aa:4f:1e:34:18:11:a5:ec:36:57:22:
73:8e:62:19:ed:b0:7f:55:2c:4d:ea:d0:30:d8:b9:d8:ff:4b:
02:c3:19:2b:9f:14:27:b4:dc:8d:22:3d:a0:83:6a:41:ff:d3:
01:8c:1c:d1:66:68:28:01:29:3d:59:13:99:42:65:9d:98:a8:
19:3f:4f:86:d0:a7:49:2a:2c:3f:af:04:b7:6d:a8:fb:e0:de:
63:b6:83:94:ee:ed:4c:c1:3f:b2:52:88:d2:89:d5:8c:54:d3:
c7:cc:8f:36:0f:0e:11:46:1e:cf:ca:37:89:8f:e9:b6:cb:d8:
21:a3:5c:72:7c:d4:43:56:b9:dc:40:92:b5:e1:23:5a:65:cc:
02:24:d4:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 22:34:26 2025 by rpki-client