Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0C037152E54711EF8AAE8750762E951A.roa
File: 0C037152E54711EF8AAE8750762E951A.roa (raw, json)
Hash identifier: LOod11xmFM9FN0fONIV5UWXK/FDpzMUkBWd/VwzhD2Q=
Subject key identifier: AB:10:1A:30:D3:BE:B0:27:28:77:05:56:CA:A6:9B:AD:9D:5B:41:9D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 011D3F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0C037152E54711EF8AAE8750762E951A.roa
Signing time: Fri 07 Feb 2025 11:31:19 +0000
ROA not before: Fri 07 Feb 2025 11:31:04 +0000
ROA not after: Sat 13 Dec 2025 11:31:04 +0000
asID: 984
IP address blocks: 156.230.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73023 (0x11d3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 7 11:31:04 2025 GMT
Not After : Dec 13 11:31:04 2025 GMT
Subject: CN=67a5ef07-f19e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:83:ea:61:dc:85:7f:86:1f:3f:bc:89:53:71:
40:51:00:df:75:80:dc:71:76:56:2a:d7:b4:53:59:
44:db:69:36:e6:8d:48:ba:25:34:4a:50:f3:d3:2e:
c9:5a:a3:05:2c:c5:48:5c:84:47:e8:8c:a6:7d:ca:
c4:7d:d8:bf:57:6d:aa:88:d5:16:4e:9a:b1:43:a9:
16:8f:e1:5a:a6:90:a4:a6:22:94:f3:7b:48:58:12:
09:89:e8:ff:20:26:90:c0:34:bd:7c:91:04:c6:5f:
69:9a:22:6c:88:c2:bc:d8:26:86:27:2a:8b:08:0f:
7e:09:ab:f5:4a:c0:a7:a7:79:59:0b:a0:68:71:1a:
7c:b2:7d:dc:e0:e6:51:e1:28:86:ce:26:d1:3a:8f:
ba:b4:1c:b7:5e:ba:a4:71:af:42:0a:b6:8b:18:f1:
98:ee:f0:0f:41:8c:b7:ef:c0:47:e1:a5:9c:a9:18:
dc:26:15:d7:b5:5a:5d:e5:d9:da:31:4e:9f:e3:0f:
97:05:c5:dd:4e:16:58:64:bd:dc:c6:77:47:a5:2d:
66:86:fd:9a:ac:b7:93:21:f4:06:96:25:8d:5c:6a:
5b:2d:10:40:ab:1f:43:a3:68:35:ea:ac:42:af:7f:
78:da:9c:c8:40:fc:a5:3e:2b:77:44:61:1c:7c:4f:
af:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:10:1A:30:D3:BE:B0:27:28:77:05:56:CA:A6:9B:AD:9D:5B:41:9D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0C037152E54711EF8AAE8750762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.183.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:b9:ef:96:a7:92:25:82:bc:21:1e:77:0c:88:fd:3c:3f:23:
ce:23:54:68:e5:d6:26:73:88:38:1a:2e:cb:1f:8b:24:4f:ec:
89:d1:a4:8d:1e:97:85:5b:88:88:86:87:db:a4:0f:93:d1:7a:
17:b8:41:5b:3f:8f:88:4e:fd:b5:ac:7f:76:21:9c:85:71:fd:
41:46:c9:6c:69:0d:c6:6d:b2:40:1b:74:77:88:f7:03:00:94:
1e:5c:88:c2:29:3d:79:0d:6e:ea:61:d0:65:dc:b7:97:42:25:
8c:f9:76:02:ff:ca:9c:cb:fb:a4:06:59:15:f1:42:4f:d4:13:
50:bf:f0:3e:54:83:99:cb:51:0b:2d:7b:8a:cc:cc:92:94:9c:
6c:a8:b4:f5:bb:a6:d7:11:7e:1c:62:f7:5c:f0:d7:d2:2e:47:
1a:1e:be:10:b3:93:a9:52:23:5a:21:8d:ff:07:21:43:12:bc:
9e:c1:f3:4f:7e:3b:70:70:93:4c:90:c2:b3:7b:5d:6c:39:66:
36:fc:2f:8d:3f:36:c5:87:0b:86:0d:cb:f9:c4:e9:5c:17:04:
af:2b:fb:f6:ac:4a:c5:99:8c:07:6a:81:e1:69:04:e0:4a:e2:
e3:3c:c9:0e:e5:1d:9a:c3:dd:af:4d:de:9a:fd:d7:72:8c:29:
7a:f5:a5:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:17:07 2025 by rpki-client