Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/1A58D9B003CC11F08D55145E762E951A.roa
File: 1A58D9B003CC11F08D55145E762E951A.roa (raw, json)
Hash identifier: lVG8/SSLjXnfQZ5c0q9o+53RVijnNa1GtkKy5aP+E9c=
Subject key identifier: 2B:64:8C:EB:8D:2F:C1:08:29:C6:FB:C3:14:95:4B:B0:A9:6C:FA:B3
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0C2D
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/1A58D9B003CC11F08D55145E762E951A.roa
Signing time: Tue 18 Mar 2025 07:39:20 +0000
ROA not before: Tue 18 Mar 2025 07:39:16 +0000
ROA not after: Wed 14 Mar 2035 07:39:16 +0000
asID: 36916
IP address blocks: 192.142.230.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 08 Apr 2025 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3117 (0xc2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR
Validity
Not Before: Mar 18 07:39:16 2025 GMT
Not After : Mar 14 07:39:16 2035 GMT
Subject: CN=67d92328-78c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:66:dd:ba:4c:73:c6:0e:5e:d8:59:b6:13:dc:
b6:cb:86:de:44:6c:a5:d1:6f:32:57:86:3d:4e:43:
a6:3e:e3:f5:a4:72:c2:f6:31:b6:f5:e3:b4:dc:bb:
a0:5b:00:77:45:ea:b5:96:cb:4e:4a:7c:4a:62:00:
4c:8a:4d:34:96:1e:74:73:94:2a:46:d5:b7:f2:df:
04:0b:82:a1:1b:7b:da:a3:11:46:08:47:3f:74:7d:
2e:1b:bf:8f:bc:80:b3:7d:ed:76:8d:9a:e7:eb:80:
e3:f5:31:e6:23:32:b6:54:73:da:53:ea:58:69:98:
4a:1c:0d:1e:0a:7f:0a:af:ef:32:86:3b:03:92:24:
f9:c5:51:83:ab:51:e1:eb:ae:17:b1:ad:0d:32:3a:
e9:dc:ce:d4:10:70:31:33:58:cc:43:52:9c:f2:f3:
1d:ed:53:a8:66:be:15:4b:20:1a:62:e5:bc:e3:bb:
95:8f:d1:2a:91:d3:2d:db:2b:6f:1f:35:19:a9:0f:
30:fd:a4:58:07:84:47:e2:31:16:60:24:d4:45:a7:
07:e5:d8:f0:6e:92:91:eb:89:2a:63:36:84:03:14:
c5:b5:6f:57:b9:c6:51:65:e9:63:cc:10:36:0e:dc:
01:ca:b1:d8:e4:2f:df:42:e5:ce:11:a6:6c:30:aa:
92:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:64:8C:EB:8D:2F:C1:08:29:C6:FB:C3:14:95:4B:B0:A9:6C:FA:B3
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/1A58D9B003CC11F08D55145E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.230.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:e5:43:8d:1d:98:88:57:e7:1d:6a:95:2a:b3:c2:a0:31:f7:
04:09:7c:eb:0a:ed:8e:b6:b9:57:c0:04:91:67:c5:97:2b:ca:
36:3a:e3:13:61:55:d1:47:7e:c6:42:1f:26:37:38:85:70:34:
1e:0a:df:37:4e:69:d1:26:6a:72:83:06:99:2c:61:ad:e2:d5:
a4:97:41:ce:29:9a:3d:c9:3b:b7:4b:2d:ff:8e:01:fb:3c:bf:
3a:03:08:e7:82:38:36:fe:f0:ee:f0:a3:e1:0b:55:0e:20:93:
b5:47:f4:af:bd:bb:06:dc:4c:aa:23:34:80:37:d7:5e:69:a9:
60:73:ad:2b:be:cb:f9:2a:c9:85:eb:e1:38:8e:99:c2:1f:5a:
88:d2:74:bc:da:59:78:cd:96:89:25:89:bf:cc:ff:08:f4:e4:
9b:7c:55:ea:cb:6d:5f:1d:05:48:98:85:4f:0b:26:0c:83:10:
6e:16:f1:3a:e0:35:b1:f3:0a:59:50:c5:0f:06:34:05:c7:cf:
96:4c:e3:27:26:b0:e0:7a:1c:bd:6b:71:e3:ef:19:77:11:a9:
23:50:f3:01:80:0c:c1:f5:13:9d:4a:3d:52:28:72:39:0e:6f:
f7:d2:12:92:08:5d:f7:a8:11:b8:30:6c:1f:b1:9c:7d:86:e1:
24:83:78:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:11:13 2025 by rpki-client