Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363DCF2/A18531B6DCBE11EFBE2B50BB762E951A/3D11E624E71411EFBA884188762E951A.roa
File: 3D11E624E71411EFBA884188762E951A.roa (raw, json)
Hash identifier: N6mTIIRTdRtPk9q/Y6bKJnmYoEtncqiN9VuNviAdVGs=
Subject key identifier: 52:26:E0:E2:31:91:0B:0D:D7:8E:41:30:E6:B6:5B:BD:E5:E9:AB:F3
Certificate issuer: /CN=F363DCF2AR/serialNumber=C4BBCDEF9DC7E68F9184C80C08718C206EDDF70B
Certificate serial: 3F
Authority key identifier: C4:BB:CD:EF:9D:C7:E6:8F:91:84:C8:0C:08:71:8C:20:6E:DD:F7:0B
Authority info access: rsync://rpki.afrinic.net/repository/arin/xLvN753H5o-RhMgMCHGMIG7d9ws.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363DCF2/A18531B6DCBE11EFBE2B50BB762E951A/3D11E624E71411EFBA884188762E951A.roa
Signing time: Sun 09 Feb 2025 18:32:38 +0000
ROA not before: Sun 09 Feb 2025 18:32:35 +0000
ROA not after: Mon 31 Dec 2035 18:32:35 +0000
asID: 30992
IP address blocks: 129.0.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363DCF2/A18531B6DCBE11EFBE2B50BB762E951A/xLvN753H5o-RhMgMCHGMIG7d9ws.crl
rsync://rpki.afrinic.net/repository/member_repository/F363DCF2/A18531B6DCBE11EFBE2B50BB762E951A/xLvN753H5o-RhMgMCHGMIG7d9ws.mft
rsync://rpki.afrinic.net/repository/arin/xLvN753H5o-RhMgMCHGMIG7d9ws.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 14 Apr 2025 00:26:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63 (0x3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363DCF2AR, serialNumber=C4BBCDEF9DC7E68F9184C80C08718C206EDDF70B
Validity
Not Before: Feb 9 18:32:35 2025 GMT
Not After : Dec 31 18:32:35 2035 GMT
Subject: CN=67a8f4c6-ad04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c9:8c:b4:36:35:30:75:51:53:5b:87:a7:5d:
6c:1a:63:a0:90:aa:6b:f7:08:5d:62:31:3d:cf:d8:
89:bd:8c:1a:a7:9e:8a:6f:7a:ff:ce:67:88:98:98:
38:f7:71:3d:4e:07:1e:a2:a9:a9:9d:b5:0a:73:14:
12:63:26:63:f5:a2:cf:a0:d4:c2:5e:3a:34:4c:89:
7f:27:dd:42:af:31:fc:5f:6b:ab:e5:63:22:3f:6f:
ab:07:10:d8:5d:ed:cf:f6:d2:40:61:6b:15:2f:5c:
a0:f9:68:46:93:1a:e9:43:80:74:4a:fe:72:38:f7:
65:a2:af:0b:31:a3:d1:0a:94:e3:50:73:72:5a:5f:
db:ea:6f:32:77:2f:45:65:9c:01:5e:b9:21:99:4a:
fa:8c:7c:09:58:ae:32:df:2e:f8:0a:c8:cf:49:04:
04:0f:bf:a9:48:d3:22:b5:88:9c:d0:b8:08:fa:32:
d4:6c:5f:fe:47:1d:09:a2:90:69:21:bc:11:9e:27:
da:ad:8e:58:f9:5b:6e:f5:c1:fc:2e:c4:ac:06:82:
58:45:66:65:44:22:a4:6b:51:46:04:83:18:42:e0:
7c:98:cc:1e:89:82:29:2d:8d:52:f9:60:f4:10:d6:
af:ab:60:fa:33:e2:e4:bb:8e:55:bf:4a:0e:75:1a:
51:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:26:E0:E2:31:91:0B:0D:D7:8E:41:30:E6:B6:5B:BD:E5:E9:AB:F3
X509v3 Authority Key Identifier:
keyid:C4:BB:CD:EF:9D:C7:E6:8F:91:84:C8:0C:08:71:8C:20:6E:DD:F7:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363DCF2/A18531B6DCBE11EFBE2B50BB762E951A/xLvN753H5o-RhMgMCHGMIG7d9ws.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/xLvN753H5o-RhMgMCHGMIG7d9ws.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363DCF2/A18531B6DCBE11EFBE2B50BB762E951A/3D11E624E71411EFBA884188762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
129.0.83.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:10:94:7e:f6:82:52:55:53:51:98:15:85:f6:ce:a8:6b:bc:
1d:3d:59:62:71:c5:ed:0c:33:bd:77:be:b2:ba:bb:08:5b:fe:
5a:99:02:49:e9:fe:d0:79:b1:e9:17:2b:37:ff:83:a3:b1:70:
5e:1f:3e:28:6f:3c:9a:29:d4:c5:f2:c4:15:36:2b:00:16:a1:
2c:81:6d:a6:38:2f:20:46:a9:69:17:14:25:1a:8d:c0:1d:bc:
95:9d:73:dd:69:d7:88:67:f9:b5:c6:99:31:82:8c:36:16:8c:
3f:49:82:00:4e:82:56:68:07:61:ef:9e:78:c0:56:01:87:ba:
b8:5f:53:e8:a4:37:6c:58:f8:b4:9d:c7:8c:46:d8:a3:7a:69:
08:86:11:0b:32:11:8f:50:67:d8:69:e2:48:3c:3e:f9:62:2b:
59:5f:ca:93:e5:3f:1d:f4:10:1e:3d:0e:59:5f:57:bf:1d:fb:
c4:22:08:11:ec:ea:ff:bd:f7:4e:b8:d9:a1:94:ee:13:be:0b:
27:86:7c:76:fe:77:94:e1:d3:1c:2d:bf:20:c9:94:9c:f5:c0:
e8:1b:2a:78:1f:41:24:87:7b:b2:f0:5e:fa:15:19:8b:33:8c:
01:3e:e7:33:19:6a:3a:55:dc:5b:ed:a1:bb:da:ab:64:1e:de:
54:4d:53:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 22:39:56 2025 by rpki-client