Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2B0B0326F7F811EF9E9349BE762E951A.roa
File: 2B0B0326F7F811EF9E9349BE762E951A.roa (raw, json)
Hash identifier: ZS3F9+7BgzklrjrPOh9cmajOHEj7qY3gU4RiqhFHHTU=
Subject key identifier: 8B:6F:3D:2E:DD:78:FE:E1:0E:04:5E:9D:46:9C:6A:B0:81:D3:8F:4D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0140AD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2B0B0326F7F811EF9E9349BE762E951A.roa
Signing time: Mon 03 Mar 2025 06:24:32 +0000
ROA not before: Mon 03 Mar 2025 06:24:28 +0000
ROA not after: Mon 21 Apr 2025 06:24:28 +0000
asID: 138915
IP address blocks: 156.227.193.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82093 (0x140ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 3 06:24:28 2025 GMT
Not After : Apr 21 06:24:28 2025 GMT
Subject: CN=67c54b20-5e5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:c0:c7:4d:3c:eb:f0:ea:dd:01:c4:c6:bf:bc:
83:d5:cb:b6:3b:40:4f:e9:20:2b:d9:f1:e6:f8:85:
cd:00:2d:36:8f:a3:ad:7d:9f:3f:85:a0:67:37:8e:
33:ad:82:0c:60:d6:b8:89:c5:fc:6c:10:32:08:c8:
e8:a6:09:70:a9:d2:7c:04:3d:c5:b4:27:89:da:c0:
2a:f5:9a:17:f0:c1:84:16:b4:e7:6f:66:2b:ec:52:
29:87:95:de:7e:31:8b:f8:06:38:09:aa:b6:d2:6a:
78:7e:a6:a2:27:69:c0:c7:e9:7e:ee:52:fe:88:c0:
c3:6e:12:d8:6d:b3:01:d8:4c:82:1e:8b:23:94:d1:
30:c2:dd:ca:ec:e8:2c:26:92:92:bf:14:65:b8:d5:
ac:a4:e1:5e:e0:52:67:a3:b2:bb:ea:29:22:2b:f5:
f2:94:15:9c:17:42:db:35:dc:f8:ae:83:aa:3f:6d:
bf:96:59:37:5c:2c:c2:a2:7e:f5:26:4e:ac:0f:c4:
a4:57:05:94:f9:c3:2c:84:90:77:bb:70:d3:7d:9a:
91:cc:eb:90:cf:a6:49:31:b2:5d:36:a1:ec:0f:a6:
13:52:ea:57:e3:72:0b:0b:fb:6a:fa:0f:67:eb:b5:
eb:fa:39:a4:f1:29:09:a5:fc:9e:85:68:7d:a2:e8:
4f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:6F:3D:2E:DD:78:FE:E1:0E:04:5E:9D:46:9C:6A:B0:81:D3:8F:4D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2B0B0326F7F811EF9E9349BE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.193.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:f8:d1:4b:42:9f:e6:98:92:ba:86:1e:e0:82:54:ad:59:2a:
be:38:a5:37:70:00:56:91:34:09:fa:05:a2:58:9b:fd:49:d4:
20:f5:35:6d:35:1f:36:13:2b:75:cc:d5:21:a6:2a:de:b3:16:
3a:5f:35:6d:cc:63:23:ca:25:e6:f1:77:49:ea:74:89:8f:3a:
62:7d:dc:28:21:24:36:bc:ee:44:77:9a:85:e4:88:b0:76:fb:
88:46:71:4c:62:0e:0f:9d:94:db:91:a1:f4:9f:8f:0e:b2:bc:
58:ca:fe:82:36:a2:c8:95:e9:be:7d:a8:b3:61:bd:3a:d1:85:
ee:91:b6:85:8d:76:e3:d6:c4:55:45:cb:32:e9:64:3e:ff:e6:
72:fd:1b:b8:39:b0:13:80:fe:fc:3e:60:47:04:0e:d3:30:2b:
81:55:31:74:ae:99:b3:ba:7e:59:8c:af:42:7e:f2:ac:6b:c4:
49:49:34:cc:46:ad:ff:7e:9d:43:b3:66:ad:db:8e:b3:db:45:
08:12:ca:78:76:e8:00:1f:29:6a:ab:36:cb:b2:19:f4:3d:a4:
d7:71:38:27:5b:a2:8a:2d:48:1d:08:fa:eb:fc:dd:4d:41:b0:
bc:3e:bf:40:16:de:ad:33:8d:28:fd:51:09:42:3f:3e:db:a6:
ef:2d:02:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:31:44 2025 by rpki-client