Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1EF8484E018711F08C9EFF45762E951A.roa
File: 1EF8484E018711F08C9EFF45762E951A.roa (raw, json)
Hash identifier: ep6KcBzr3If9Oph0PwXpWwR7TohTW9B97vunAZAzNew=
Subject key identifier: 75:D6:CA:40:59:E5:99:A2:12:99:7E:FC:54:EF:75:27:42:E2:A2:FA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014644
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1EF8484E018711F08C9EFF45762E951A.roa
Signing time: Sat 15 Mar 2025 10:20:30 +0000
ROA not before: Sat 15 Mar 2025 10:20:26 +0000
ROA not after: Mon 21 Apr 2025 10:20:26 +0000
asID: 39600
IP address blocks: 156.237.108.0/24 maxlen: 24
156.237.109.0/24 maxlen: 24
156.237.110.0/24 maxlen: 24
156.237.112.0/24 maxlen: 24
156.237.113.0/24 maxlen: 24
156.237.114.0/24 maxlen: 24
156.237.115.0/24 maxlen: 24
156.237.116.0/24 maxlen: 24
156.237.124.0/24 maxlen: 24
156.237.125.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83524 (0x14644)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 15 10:20:26 2025 GMT
Not After : Apr 21 10:20:26 2025 GMT
Subject: CN=67d5546e-7a73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:84:9d:9f:f9:49:1b:e5:3f:b6:3c:71:59:d6:
86:46:a8:cd:3b:53:8e:b6:ac:b4:20:80:f3:4b:56:
08:09:23:f8:7f:6c:1b:36:03:fe:50:bd:d5:77:2a:
f5:f0:8c:fb:fa:4f:9f:b8:45:6b:a2:13:a5:13:ec:
44:a5:2e:58:69:e7:a7:30:71:53:2d:36:6d:ae:ef:
a2:9d:a8:b7:89:35:78:a5:b4:a4:20:91:09:be:da:
2c:54:ab:0e:b6:4e:f2:e3:4d:b9:31:18:f5:68:b7:
74:88:d7:69:50:2c:f9:1a:e7:9b:c8:57:6e:25:be:
24:c4:1d:54:35:38:3b:05:3f:23:d9:ff:e0:19:2b:
11:e5:ec:e9:37:c5:5c:66:df:25:ff:b1:04:b8:6a:
cc:7d:c1:f3:b5:88:e2:c0:5f:13:be:c4:2d:13:66:
12:86:a3:e9:aa:c1:09:39:a7:f3:44:e5:75:28:3b:
76:c5:82:1e:7e:9a:54:e6:3e:ba:d6:11:86:12:48:
75:d5:b8:21:75:09:d7:33:34:e1:14:cf:4d:66:32:
42:e8:24:10:4f:bb:13:e9:0c:c7:e5:0b:9c:9b:0f:
16:88:28:80:85:97:55:b8:cd:50:16:73:8b:c4:ef:
91:99:61:be:5d:32:d0:cf:41:66:3c:8a:cc:7a:02:
17:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:D6:CA:40:59:E5:99:A2:12:99:7E:FC:54:EF:75:27:42:E2:A2:FA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1EF8484E018711F08C9EFF45762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.237.108.0-156.237.110.255
156.237.112.0-156.237.116.255
156.237.124.0/23
Signature Algorithm: sha256WithRSAEncryption
50:ee:d7:ea:fb:61:79:33:ea:cd:d1:d1:56:e8:83:f9:59:5a:
63:0b:6d:d5:5a:ae:de:63:e1:6a:33:44:d3:85:74:a2:95:b9:
00:95:ff:ba:c9:98:84:0e:12:11:64:c1:c1:f3:b9:28:95:ce:
70:12:9d:27:ca:b5:7b:6a:e0:f8:3d:4e:37:7f:6b:1e:75:5a:
f7:36:b5:00:58:72:fe:62:bc:14:6d:dc:0a:40:04:f8:cd:5a:
9f:ac:be:dd:44:4e:18:93:9c:a5:50:a4:44:97:69:06:7e:ec:
ef:e4:04:d1:c3:5c:51:79:3f:7c:48:cc:8e:06:e2:af:f1:24:
e2:c4:ec:0e:e4:76:f9:a2:c5:c7:3a:ee:cd:48:e5:77:f4:ab:
8c:83:4a:c5:05:7d:8a:62:33:f2:67:4b:8a:f8:17:4e:5a:08:
6b:d5:19:d0:a8:7d:88:5c:1d:c8:a5:73:66:c2:cb:07:f1:56:
9b:ac:f1:e9:2b:ff:27:f2:53:fb:0e:84:f9:a2:1b:d3:71:86:
10:2f:0f:39:a8:69:6b:11:eb:bf:66:9d:68:fc:95:e5:d0:05:
8c:5d:0f:39:de:6c:bb:a6:d5:8f:64:68:5e:2d:47:7c:f8:d9:
ce:ee:87:fc:74:42:30:1f:c7:ab:68:66:d7:f4:04:2f:47:6e:
57:a5:e8:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:09:08 2025 by rpki-client