Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/081F71DAF34D11EFA8414246762E951A.roa
File: 081F71DAF34D11EFA8414246762E951A.roa (raw, json)
Hash identifier: DHhtISF4RiFlMObVBQduz4Y31sKYxA2OlVPR5gk4qWA=
Subject key identifier: B4:FF:BD:38:6C:9F:33:A1:D5:83:45:8F:35:77:C2:95:24:96:DA:85
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 012DC7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/081F71DAF34D11EFA8414246762E951A.roa
Signing time: Tue 25 Feb 2025 07:49:25 +0000
ROA not before: Tue 25 Feb 2025 07:49:21 +0000
ROA not after: Sat 19 Feb 2028 07:49:21 +0000
asID: 17561
IP address blocks: 156.249.236.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77255 (0x12dc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 25 07:49:21 2025 GMT
Not After : Feb 19 07:49:21 2028 GMT
Subject: CN=67bd7605-b9f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ea:fc:9d:f4:91:06:b2:03:a5:84:3f:7a:50:
91:65:6e:0e:9f:a7:55:05:71:4f:0a:00:71:47:99:
c6:52:55:a8:a5:53:26:8f:4c:a6:c0:e7:c2:5c:52:
38:94:ad:cf:36:14:c2:de:08:57:3f:77:13:9e:03:
16:68:69:72:7f:de:01:41:78:20:5e:7d:9d:c3:f1:
47:a6:3b:63:f8:b7:7c:c9:64:41:7e:34:50:59:67:
fe:34:77:8c:5a:05:83:6c:dc:68:4f:e6:bb:df:fa:
df:21:e8:19:b0:77:29:ce:f8:10:44:51:6e:40:37:
7c:37:9f:30:de:33:6e:63:2e:d0:09:b2:2d:e0:30:
2d:da:cb:f3:5b:19:97:9d:87:48:2b:49:c3:b7:06:
8a:dd:c4:5e:44:07:eb:24:05:0c:24:70:ff:2c:3f:
f3:83:36:a0:e2:d9:d1:e7:a4:97:16:77:ee:5d:36:
b6:bf:64:27:c8:46:d1:05:ea:1e:7e:ea:ce:41:7f:
d8:b8:9b:cd:da:97:9d:68:6f:4a:72:b9:c0:45:d6:
f8:6e:de:55:32:de:9a:2f:b6:29:8b:4f:27:af:41:
1d:af:b0:cb:5c:48:e8:56:1b:5c:80:47:93:f5:f2:
2e:1f:0e:0e:67:94:ea:cf:d0:51:bd:e4:8a:fc:a7:
dc:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:FF:BD:38:6C:9F:33:A1:D5:83:45:8F:35:77:C2:95:24:96:DA:85
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/081F71DAF34D11EFA8414246762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.249.236.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:40:c7:30:83:52:56:40:26:42:95:1f:45:20:43:c5:c3:d3:
21:d5:f5:e1:05:4d:91:fe:6e:bc:c5:8c:f7:c5:74:bf:1b:78:
1b:7d:54:a0:f0:72:bd:ef:4f:cb:91:e8:3e:7e:42:e7:6e:dc:
c5:23:d5:7b:2d:56:77:44:78:c0:be:dc:c8:38:f1:65:43:48:
28:d0:c2:ca:b7:2d:91:b3:a2:d0:57:47:4d:62:8b:2e:a0:5a:
9a:34:5c:fe:06:b6:9c:18:cd:0c:4d:64:25:db:fc:09:a1:29:
92:06:72:3a:88:59:e5:f5:8e:98:af:03:13:00:bd:af:78:db:
a7:73:65:7d:84:d3:22:d4:33:7a:9d:91:1f:55:c9:19:be:f4:
82:a9:4c:d6:8f:6c:35:b1:54:7b:38:54:c9:19:98:b9:12:02:
3d:a5:cf:77:92:cc:e6:c7:8c:0c:a3:fd:36:7e:7f:e7:04:1e:
df:9e:b1:c1:1e:72:59:2e:13:60:58:58:a7:41:10:6a:3a:e2:
bb:02:d3:13:7c:c7:b2:41:e7:fc:2c:7c:4a:64:ef:bd:d4:bc:
b5:99:e7:8f:ab:c1:42:95:d2:c0:75:aa:d9:c6:5a:d1:cf:2f:
a6:28:6c:15:20:43:b3:f1:8a:83:1b:4f:a5:6d:f8:4e:64:ef:
a9:04:0b:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:24:52 2025 by rpki-client