Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368B07F/AA8ADE84B9C411E79806DE61F8AEA228/4D28FF80044611F091D92145762E951A.roa
File: 4D28FF80044611F091D92145762E951A.roa (raw, json)
Hash identifier: /Swgq+uXHKWv+YFxcuKVWNGUdCgOHuj7XAwEKBSqZac=
Subject key identifier: 6E:7F:2F:80:48:6D:35:7B:92:19:8C:58:97:6F:04:1D:B9:9D:54:A4
Certificate issuer: /CN=F368B07FAR/serialNumber=AEFB349D234C6C66C424925BEE10299DAAF0B9BC
Certificate serial: 0AE1
Authority key identifier: AE:FB:34:9D:23:4C:6C:66:C4:24:92:5B:EE:10:29:9D:AA:F0:B9:BC
Authority info access: rsync://rpki.afrinic.net/repository/arin/rvs0nSNMbGbEJJJb7hApnarwubw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368B07F/AA8ADE84B9C411E79806DE61F8AEA228/4D28FF80044611F091D92145762E951A.roa
Signing time: Tue 18 Mar 2025 22:14:04 +0000
ROA not before: Wed 19 Mar 2025 22:14:00 +0000
ROA not after: Mon 01 Mar 2027 22:14:00 +0000
asID: 37314
IP address blocks: 165.16.128.0/19 maxlen: 19
165.16.128.0/20 maxlen: 20
165.16.144.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368B07F/AA8ADE84B9C411E79806DE61F8AEA228/rvs0nSNMbGbEJJJb7hApnarwubw.crl
rsync://rpki.afrinic.net/repository/member_repository/F368B07F/AA8ADE84B9C411E79806DE61F8AEA228/rvs0nSNMbGbEJJJb7hApnarwubw.mft
rsync://rpki.afrinic.net/repository/arin/rvs0nSNMbGbEJJJb7hApnarwubw.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2785 (0xae1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368B07FAR
Validity
Not Before: Mar 19 22:14:00 2025 GMT
Not After : Mar 1 22:14:00 2027 GMT
Subject: CN=67d9f02c-bb7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:07:db:99:58:47:39:45:f2:8b:2f:5d:5e:f9:
77:40:59:fb:5c:eb:8c:74:86:8d:c7:8f:1c:bd:8b:
fd:61:36:9e:bb:1b:a7:de:6d:8e:8f:a6:de:b0:e6:
d1:06:b2:f5:0d:fa:c9:55:66:41:ca:4b:74:8a:f8:
22:ed:0b:ae:f1:21:e8:ec:a7:0b:cf:4c:35:3d:d6:
eb:64:79:cd:80:57:4f:d4:57:b8:c4:82:82:6f:ed:
bd:d6:4f:1d:e3:ab:2d:cd:5a:7e:22:4c:e4:91:8f:
09:e1:a6:4a:83:82:87:71:0b:c1:ee:85:40:b3:33:
8c:f4:a1:4e:86:c0:46:73:a2:f7:f7:09:ff:4d:56:
3e:0a:da:e4:ea:3f:ba:fc:0d:7f:fd:83:99:34:33:
7a:c1:49:9d:f7:c7:a6:5f:1d:3a:88:f4:34:20:61:
07:bd:14:eb:31:c7:52:2b:b2:3f:c8:f5:df:40:3c:
0d:8e:49:32:93:a4:4b:24:a5:a7:e8:04:75:5f:d6:
ad:11:e9:69:a3:47:18:ee:5a:eb:31:da:4e:1e:fb:
73:5a:91:ff:d8:af:ae:7e:a9:dd:78:b0:8d:17:89:
c0:ae:98:55:22:d7:be:cf:88:f2:14:2c:21:7f:94:
8b:2f:77:22:a2:62:a1:07:d2:67:e6:a9:3f:a1:df:
1b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:7F:2F:80:48:6D:35:7B:92:19:8C:58:97:6F:04:1D:B9:9D:54:A4
X509v3 Authority Key Identifier:
keyid:AE:FB:34:9D:23:4C:6C:66:C4:24:92:5B:EE:10:29:9D:AA:F0:B9:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368B07F/AA8ADE84B9C411E79806DE61F8AEA228/rvs0nSNMbGbEJJJb7hApnarwubw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/rvs0nSNMbGbEJJJb7hApnarwubw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368B07F/AA8ADE84B9C411E79806DE61F8AEA228/4D28FF80044611F091D92145762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.16.128.0/19
Signature Algorithm: sha256WithRSAEncryption
59:36:89:1f:a8:7d:5b:5d:3d:dd:8e:2f:7c:dc:94:11:60:2b:
8d:6c:b6:bd:1a:ab:65:61:ac:1d:4a:8d:f1:cb:a7:3d:6d:b6:
4d:09:29:fe:5b:4c:39:26:ee:b3:95:f5:5b:db:3d:3d:5b:91:
d6:09:cd:1a:f0:e1:ef:80:43:58:38:b5:4f:46:e2:29:fd:76:
cb:69:59:f7:9f:b4:f6:5f:76:de:76:4c:7e:8f:ff:65:cb:1d:
4a:b4:e6:d0:10:02:c9:b4:b2:bd:36:8f:46:ed:13:a6:c7:6c:
d9:34:35:f5:4b:fb:ce:dd:eb:28:aa:8b:19:4d:7c:a9:2b:a9:
fd:96:68:86:d3:90:2a:d0:22:a1:99:40:29:c2:10:3b:29:82:
61:bc:89:03:01:e1:6b:ca:8b:23:2f:9a:8f:c2:fd:6a:e2:e1:
c4:51:1f:c1:47:c4:ec:0c:06:40:fe:4e:84:a9:ce:de:5e:d8:
91:7c:41:21:91:77:e5:21:da:79:8f:89:f2:3b:f6:11:58:2b:
36:fd:ef:ae:be:d2:c4:83:ae:3f:d0:80:91:61:29:c5:32:57:
a4:7d:30:6f:63:75:b7:4c:a5:b0:32:85:35:32:d9:13:b1:7d:
04:12:ba:99:b5:11:67:c9:95:ed:20:48:2c:34:39:fa:4d:19:
07:01:f3:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 21:44:44 2025 by rpki-client