Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2EB7360E37D911F0ABEFB3EFDAE4EC9C.roa
File: 2EB7360E37D911F0ABEFB3EFDAE4EC9C.roa (raw, json)
Hash identifier: UFhZUG+dJmZCAF7LiYqSPBfjav1geCFI4iO70xnx8uY=
Subject key identifier: FD:00:A9:43:4A:6B:B5:01:B5:80:47:5A:0C:BF:57:9D:32:D8:CD:46
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0156DF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2EB7360E37D911F0ABEFB3EFDAE4EC9C.roa
Signing time: Fri 23 May 2025 13:23:58 +0000
ROA not before: Fri 23 May 2025 13:23:54 +0000
ROA not after: Sat 28 Jun 2025 13:23:54 +0000
asID: 57043
IP address blocks: 156.233.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 06 Jun 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87775 (0x156df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 23 13:23:54 2025 GMT
Not After : Jun 28 13:23:54 2025 GMT
Subject: CN=683076ee-040c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:44:07:74:6b:a7:34:9f:ea:7f:76:bb:36:37:
fb:16:89:38:0e:26:35:67:91:a1:4c:f3:06:e5:36:
95:0f:f4:cd:e1:ea:c8:31:44:9b:c1:e7:22:10:81:
9d:7b:8b:44:dd:9f:fa:d0:c4:af:b3:0d:55:2b:19:
68:99:6a:5f:97:f6:be:73:5d:51:a7:e0:03:c8:7b:
0e:cc:be:a0:1c:5b:ca:6b:ba:c3:fb:e1:ab:21:1c:
d5:1f:98:be:39:6d:2c:49:b2:23:0a:8a:17:2b:68:
de:57:56:16:42:61:5f:2b:05:fb:e1:fd:2c:20:a7:
72:07:ff:a9:2c:4c:df:4a:00:f9:d3:15:54:a4:31:
16:12:3d:fe:e6:f8:6b:de:56:aa:c8:21:7c:4f:24:
09:b7:60:6e:4d:4f:8a:d0:c5:17:69:c9:c3:04:c6:
f8:d1:d2:21:7f:16:a0:e3:da:93:74:2a:1f:d1:0b:
6a:b0:55:b7:56:1c:66:00:6e:c0:4a:a5:6d:19:12:
01:35:3f:7e:32:fa:18:a8:5e:df:bc:88:24:96:72:
49:17:79:6d:36:83:3e:48:ad:7d:37:20:3d:6e:46:
98:aa:9f:90:26:a0:58:f1:de:6a:1c:22:67:56:c4:
a4:fb:23:dc:0e:63:36:2f:58:a6:7c:60:11:24:5f:
e8:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:00:A9:43:4A:6B:B5:01:B5:80:47:5A:0C:BF:57:9D:32:D8:CD:46
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2EB7360E37D911F0ABEFB3EFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.51.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:67:f5:7f:83:7d:7e:9e:cf:6b:d2:4f:f5:2b:7b:d9:4e:11:
4e:46:59:b9:72:c2:2c:e2:da:0a:94:87:de:fd:b0:58:9d:ea:
c9:ea:9f:65:07:31:44:c6:87:a4:bf:1b:9e:71:62:33:b0:35:
37:96:b6:97:0b:20:79:10:0e:70:b7:8d:aa:cf:39:99:0f:98:
c8:de:bc:49:da:38:f7:dd:38:5c:86:05:dc:32:43:e6:1c:38:
d1:13:3d:e7:a9:ce:cf:c3:84:cd:96:82:d1:18:f9:06:68:91:
bc:cc:8b:18:3c:2d:fb:7a:e6:45:0d:24:b8:e5:59:0e:39:99:
c4:a1:ea:22:6e:42:09:5d:ae:3b:74:e0:6b:7c:49:13:5e:7b:
58:ab:bf:ae:fc:bf:97:75:ce:bb:bb:1b:d2:a1:0b:12:67:ba:
f0:3c:62:a4:4c:5a:81:67:62:b8:f1:f9:15:99:37:4f:03:26:
6c:c0:ec:96:88:9f:4a:d4:85:72:55:64:a9:db:57:b7:20:95:
7f:21:8e:6a:0c:ca:24:da:0a:29:8c:f9:8a:ed:fa:ac:9d:68:
4a:c9:b6:90:11:b0:ef:78:08:68:1f:b9:57:0f:f9:79:fb:28:
e9:11:57:81:dc:6d:af:86:4b:0c:ef:7d:66:74:98:ea:2d:9b:
27:6c:16:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 02:27:21 2025 by rpki-client