Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/22CE439AF44611EFAE362B72762E951A.roa
File: 22CE439AF44611EFAE362B72762E951A.roa (raw, json)
Hash identifier: h+w8kGeEg6Q4mtGNqwAsp5Z0lcyDDJrtFbgrlHpSojo=
Subject key identifier: 0A:59:F2:C2:4B:F7:5E:56:FC:85:74:0D:0A:2A:98:A0:79:05:4B:CF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013331
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/22CE439AF44611EFAE362B72762E951A.roa
Signing time: Wed 26 Feb 2025 13:32:34 +0000
ROA not before: Wed 26 Feb 2025 13:32:30 +0000
ROA not after: Thu 19 Feb 2026 13:32:30 +0000
asID: 984
IP address blocks: 156.245.238.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78641 (0x13331)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 26 13:32:30 2025 GMT
Not After : Feb 19 13:32:30 2026 GMT
Subject: CN=67bf17f2-928b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:2d:93:f4:bb:79:d1:ee:ef:40:ac:86:21:76:
5c:b5:30:7f:19:d2:3c:08:9f:cd:bc:06:17:d3:bd:
e6:7a:f3:7d:de:e6:93:f5:cb:28:c4:f1:cf:e2:4c:
b5:4c:2c:c5:e2:24:df:37:bf:40:a6:d5:64:03:c4:
bd:ef:9b:42:f0:9d:44:ea:2b:b3:7d:88:67:0d:51:
15:37:6a:84:24:43:8a:db:d3:78:ba:8d:64:74:72:
8f:57:65:17:d3:d9:f3:aa:c2:9e:dc:d8:e7:2c:4a:
8e:cf:b4:de:8a:4e:b6:9d:7e:2e:82:dc:8d:18:2e:
d2:4d:66:22:b5:4e:26:fb:70:06:a7:d7:7d:70:70:
31:41:9b:43:a3:8b:7f:38:3a:df:af:f2:fa:ea:eb:
1b:b8:e9:d0:72:14:9a:d5:19:7c:4c:6e:ec:5f:23:
0f:e1:65:89:1f:08:84:99:39:52:d3:e3:d3:a7:33:
e6:01:b1:df:12:24:46:a5:0f:72:16:a0:5d:c0:0f:
b9:d7:77:28:95:27:53:85:ca:d9:0c:e5:52:cb:cd:
37:4b:6f:aa:24:64:2c:b0:e3:5d:e1:2a:07:02:1e:
49:a9:64:fa:7f:03:45:0c:c8:06:e0:69:5f:bc:3d:
e2:3a:6f:47:a4:96:d8:e5:fc:1d:39:56:ff:43:21:
2b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:59:F2:C2:4B:F7:5E:56:FC:85:74:0D:0A:2A:98:A0:79:05:4B:CF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/22CE439AF44611EFAE362B72762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.238.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:f2:53:6e:02:d0:f2:7a:86:a4:a6:8a:e8:b3:bc:04:ae:54:
12:9f:fa:74:6f:79:5c:5b:95:92:36:87:07:80:c3:4e:f9:3a:
6c:76:2c:4d:82:07:17:4e:14:8c:02:12:16:33:8a:59:32:64:
7f:47:5d:a9:42:08:b4:1b:0d:a2:a5:1d:13:63:f0:0a:81:52:
18:1f:3f:59:fc:32:4a:3d:ed:58:fa:30:71:ba:ae:f4:c7:a0:
d3:6d:d5:db:c5:53:43:29:10:37:c1:80:81:2b:dc:f9:33:c1:
31:69:fc:45:3a:54:23:c6:3a:9a:b8:0c:01:0a:7e:3e:67:27:
a1:24:cb:a4:93:87:93:11:0c:91:e8:56:36:44:94:68:4d:36:
f0:1e:21:e9:c5:21:e0:32:46:15:7b:dc:f3:08:2b:d8:b6:f7:
0b:74:0e:95:d3:85:a5:8e:52:55:9c:7c:a3:d3:42:fc:90:f1:
42:dc:d3:eb:93:61:5f:48:44:b7:35:62:68:e7:ac:fb:36:4b:
75:f1:41:ac:e1:90:3e:12:3e:33:cc:7a:ce:06:c3:9a:d8:4a:
5c:d3:66:65:b9:71:81:0a:6c:c6:e9:30:13:ba:c0:6e:08:12:
b0:e2:5e:ef:d6:fb:73:9d:74:ce:27:0e:e7:70:b1:a3:2b:a4:
0b:da:e3:64
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDATMxMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMjI2MTMzMjMwWhcNMjYwMjE5MTMzMjMwWjAYMRYw
FAYDVQQDEw02N2JmMTdmMi05MjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAmy2T9Lt50e7vQKyGIXZctTB/GdI8CJ/NvAYX073mevN93uaT9csoxPHP
4ky1TCzF4iTfN79AptVkA8S975tC8J1E6iuzfYhnDVEVN2qEJEOK29N4uo1kdHKP
V2UX09nzqsKe3NjnLEqOz7Teik62nX4ugtyNGC7STWYitU4m+3AGp9d9cHAxQZtD
o4t/ODrfr/L66usbuOnQchSa1Rl8TG7sXyMP4WWJHwiEmTlS0+PTpzPmAbHfEiRG
pQ9yFqBdwA+513colSdThcrZDOVSy803S2+qJGQssONd4SoHAh5JqWT6fwNFDMgG
4GlfvD3iOm9HpJbY5fwdOVb/QyEr6QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFApZ
8sJL915W/IV0DQoqmKB5BUvPMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8yMkNFNDM5QUY0NDYxMUVGQUUzNjJCNzI3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnPXuMA0GCSqGSIb3DQEBCwUA
A4IBAQAb8lNuAtDyeoakporos7wErlQSn/p0b3lcW5WSNocHgMNO+TpsdixNggcX
ThSMAhIWM4pZMmR/R12pQgi0Gw2ipR0TY/AKgVIYHz9Z/DJKPe1Y+jBxuq70x6DT
bdXbxVNDKRA3wYCBK9z5M8ExafxFOlQjxjqauAwBCn4+ZyehJMukk4eTEQyR6FY2
RJRoTTbwHiHpxSHgMkYVe9zzCCvYtvcLdA6V04WljlJVnHyj00L8kPFC3NPrk2Ff
SES3NWJo56z7Nkt18UGs4ZA+Ej4zzHrOBsOa2Epc02ZluXGBCmzG6TATusBuCBKw
4l7v1vtznXTOJw7ncLGjK6QL2uNk
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:19:45 2025 by rpki-client