Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0B0867A8F46511EF86A6E649762E951A.roa
File: 0B0867A8F46511EF86A6E649762E951A.roa (raw, json)
Hash identifier: JLS0eOQ64/NB4+gdotSIPn4oJTS0piavRWui6f9rhEk=
Subject key identifier: 65:74:C5:9D:47:60:74:B7:92:AF:7E:F0:84:50:59:A4:D4:C8:A3:92
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01356D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0B0867A8F46511EF86A6E649762E951A.roa
Signing time: Wed 26 Feb 2025 17:13:49 +0000
ROA not before: Wed 26 Feb 2025 17:13:45 +0000
ROA not after: Thu 19 Feb 2026 17:13:45 +0000
asID: 984
IP address blocks: 156.245.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79213 (0x1356d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 26 17:13:45 2025 GMT
Not After : Feb 19 17:13:45 2026 GMT
Subject: CN=67bf4bcc-9fdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ba:4c:23:3f:81:a9:b7:7b:de:ea:b1:9c:73:
fa:9b:84:69:78:47:11:9d:5e:e2:ac:c4:b8:c7:5a:
4c:2e:ed:62:05:bf:62:37:d3:99:9d:41:0b:05:8e:
a3:94:e0:e5:4a:19:a3:29:01:a3:cd:b9:2a:7c:ec:
10:3a:37:9d:8b:77:49:3c:52:52:9d:9f:ae:db:aa:
e1:ee:5d:c5:8e:95:81:8c:f7:59:4e:a1:dc:22:18:
b6:b5:20:e1:be:b8:13:63:8e:79:73:f9:2d:62:d2:
0e:ed:14:96:63:a9:2e:46:cf:88:bc:e4:2c:54:13:
da:60:b9:20:2a:e9:d6:95:95:a5:e7:fc:61:9f:75:
7b:09:69:3a:13:3b:a3:d2:17:3e:9b:11:6a:c6:cb:
d5:f5:ba:d8:36:f3:1e:f2:0c:83:ec:7f:ec:b6:40:
96:7e:fe:52:6a:ee:2f:a8:e7:da:4c:8e:f0:3f:e6:
4a:f5:6f:c3:47:dd:f8:a7:f8:7c:50:46:6e:8e:3c:
f8:32:31:ca:69:5a:46:ef:e0:ff:c6:98:8d:42:28:
64:33:a6:30:52:75:bb:51:79:38:7c:27:05:ef:17:
2a:ca:dc:1f:e2:47:56:10:d7:bd:82:79:d8:e7:d5:
ab:c7:7c:99:83:ed:34:b4:ce:bc:fd:21:d6:8c:15:
8f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:74:C5:9D:47:60:74:B7:92:AF:7E:F0:84:50:59:A4:D4:C8:A3:92
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0B0867A8F46511EF86A6E649762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.80.0/24
Signature Algorithm: sha256WithRSAEncryption
33:c9:db:4d:60:aa:17:f9:b5:29:53:ef:38:23:a1:24:5b:14:
38:3c:b0:e4:da:44:31:87:25:96:db:db:ae:08:56:b9:07:d9:
bd:d8:e1:b6:27:d6:12:aa:db:4d:53:82:69:b1:4a:3a:5c:c9:
9f:d4:90:bd:0d:21:6f:54:cc:9e:58:24:fa:42:c6:71:99:42:
e0:18:d0:76:8a:0a:9c:44:bb:15:07:4b:8b:8c:96:1e:79:9b:
fb:0d:79:23:7c:25:03:a1:b1:12:25:d9:5d:ac:a2:b1:9f:ab:
01:42:d4:3a:33:29:b6:eb:7d:8c:9c:7a:5a:33:2b:75:eb:f3:
7a:64:a2:43:a4:ae:b6:4b:46:8f:c9:86:f3:59:ba:f7:23:92:
66:a3:ac:2f:6f:3a:99:f4:55:f8:1f:e2:4d:f8:3f:c2:b9:1b:
94:80:5d:29:3b:60:b7:c9:5d:b0:6c:0c:eb:fa:fc:8a:21:4a:
7b:6c:60:19:23:4b:f2:63:66:86:6e:70:e6:8b:35:3d:8b:47:
5a:95:ea:95:75:16:05:da:e3:a4:ba:1e:9a:f0:8e:8f:63:0d:
f0:60:42:60:8d:f0:34:fc:8b:ec:b1:cf:14:7a:08:22:f5:92:
de:5d:d7:51:a8:d2:c0:7c:6e:1b:47:8b:24:33:fc:1e:a1:2d:
33:86:8b:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:14:47 2025 by rpki-client