Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/BC625978F8ED11EFB6140846762E951A.roa
File: BC625978F8ED11EFB6140846762E951A.roa (raw, json)
Hash identifier: WN2+IvBjvNAXUwETriEcdNFIDl/Guh7rRbK+FKAdKAY=
Subject key identifier: 10:ED:08:CA:F1:D0:DE:22:0E:11:44:FB:F1:C7:A6:F2:BC:EE:65:E2
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0BEA
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/BC625978F8ED11EFB6140846762E951A.roa
Signing time: Tue 04 Mar 2025 11:42:22 +0000
ROA not before: Tue 04 Mar 2025 11:42:17 +0000
ROA not after: Tue 06 Mar 2035 11:42:17 +0000
asID: 210636
IP address blocks: 192.142.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 12 Apr 2025 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3050 (0xbea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR
Validity
Not Before: Mar 4 11:42:17 2025 GMT
Not After : Mar 6 11:42:17 2035 GMT
Subject: CN=67c6e71e-ae26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:26:b2:42:69:93:7f:23:ff:c6:60:47:53:48:
ab:17:97:a4:60:29:93:a2:c8:27:cb:4d:67:fe:36:
1d:7d:66:d0:b8:63:c6:db:08:7d:e1:e7:a9:bc:9d:
02:c6:4e:fb:f0:fc:3c:03:e7:b2:be:c8:fd:96:a9:
74:1c:69:84:7f:8f:cc:f2:92:04:62:4e:4e:26:7c:
c4:c0:1a:5b:96:1e:6f:76:ac:83:c2:e0:c9:a2:98:
03:62:72:53:be:25:a0:a3:58:7d:fd:45:06:d7:43:
5d:4b:90:cd:9c:30:8d:9d:f2:37:2e:70:28:01:ec:
6b:b1:f1:3d:a6:08:91:91:9d:5a:71:00:40:30:fd:
4d:8f:27:b6:00:30:e2:47:5b:19:9e:bf:43:3d:22:
74:84:24:bb:6e:71:d8:af:20:4d:98:57:a4:f0:b5:
e5:f0:73:e5:43:1d:3a:99:07:0c:02:10:cb:44:1a:
bb:ce:b9:6f:8e:46:3f:26:14:4f:0d:a7:3c:e6:87:
0f:05:16:ff:59:47:cd:f7:1d:56:56:f0:01:d0:91:
90:a1:7e:e8:28:46:af:e1:9c:69:7e:82:ba:ca:9f:
15:ce:f7:11:6d:7a:a5:27:90:9e:2e:9b:71:12:f7:
58:61:58:3e:64:fe:33:a2:a4:11:4e:01:36:67:93:
f4:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:ED:08:CA:F1:D0:DE:22:0E:11:44:FB:F1:C7:A6:F2:BC:EE:65:E2
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/BC625978F8ED11EFB6140846762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.7.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:cc:a3:41:95:af:ec:a3:78:20:61:79:90:f1:43:c8:f2:47:
56:45:4b:a2:8d:86:41:eb:98:7a:a7:12:e8:84:a4:38:d7:ab:
15:7c:cd:14:a8:d9:a5:86:ee:ea:00:33:92:26:20:bc:3d:f8:
c1:3e:e3:38:9c:d7:2a:3e:d1:1d:9f:f8:17:8f:f5:27:d4:49:
00:00:b9:70:c8:4f:8d:e0:81:8c:88:61:22:b9:96:db:33:d7:
51:d3:70:81:e9:3c:8b:65:fd:e2:34:88:5b:a7:33:9c:ff:d0:
f2:f5:e7:0d:fa:1e:8d:00:d3:48:87:b5:ff:8a:62:d4:81:6b:
86:19:ce:85:1e:4b:fe:34:99:5c:29:70:a8:95:04:59:3b:7c:
20:e2:bd:9b:22:92:c0:56:9c:ff:37:cb:bb:d2:4b:0a:ba:0e:
11:ca:4a:cf:23:7c:5e:aa:df:4f:a9:ef:88:fc:d0:94:33:99:
6c:32:4c:cc:4f:98:96:a5:b7:cf:01:04:26:3e:be:69:1c:05:
d2:35:af:7f:30:d9:c2:bb:48:ef:dd:0a:da:7f:85:12:79:a8:
42:03:4c:58:75:4c:2e:0d:08:af:d3:1e:93:db:7e:ec:c0:00:
32:b8:c2:5f:9f:e7:04:d3:e2:a4:7d:f3:6b:7a:94:f7:33:13:
c1:19:1d:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:06:22 2025 by rpki-client