Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3B42B80A0CBC11F099127394762E951A.roa
File: 3B42B80A0CBC11F099127394762E951A.roa (raw, json)
Hash identifier: T763wVqSMxvurUadX6UsOdGGtWxUWZ75NTl28TrcM5g=
Subject key identifier: DC:74:A8:3B:65:EF:4F:FF:91:E3:D5:C1:9F:FD:F4:63:8C:E9:95:56
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0148B2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3B42B80A0CBC11F099127394762E951A.roa
Signing time: Sat 29 Mar 2025 16:38:24 +0000
ROA not before: Sat 29 Mar 2025 16:38:19 +0000
ROA not after: Mon 05 May 2025 16:38:19 +0000
asID: 57043
IP address blocks: 156.246.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:26:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84146 (0x148b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 29 16:38:19 2025 GMT
Not After : May 5 16:38:19 2025 GMT
Subject: CN=67e82200-e52d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2f:0e:56:fd:10:ef:ae:6a:c2:a5:4b:b3:35:
84:8f:d2:05:ba:72:19:2c:60:0e:72:9a:64:00:06:
75:8c:13:ba:6f:f5:fe:cb:2d:0d:17:b4:f3:ad:eb:
9d:04:94:dc:cd:7c:18:e8:00:66:cd:14:82:24:89:
27:52:a4:1c:93:6b:e1:15:ea:39:40:cb:82:69:b4:
fd:bb:16:cc:f5:d9:b0:7a:16:70:90:66:72:70:11:
89:fa:ba:d9:a6:35:28:3f:67:04:b3:0d:fc:58:98:
c1:01:a1:2c:e6:ac:fa:22:74:16:6d:c1:97:19:28:
d2:d7:37:df:af:20:d0:a3:30:94:d4:9f:49:2b:1f:
47:42:b6:a7:88:1c:53:6a:23:8f:0e:a8:7c:04:b1:
6e:37:15:7d:9f:19:21:2c:ae:98:ff:89:8c:21:00:
59:6a:54:e1:b3:06:24:ff:2e:b0:56:b5:d0:af:55:
85:50:c6:e8:f9:6f:73:b3:93:8d:00:fe:a1:ca:02:
a9:ac:a5:16:a5:e9:4e:b8:fb:6e:7d:9f:ff:34:60:
7d:10:75:5d:8c:47:a3:44:92:b8:53:38:a1:0b:43:
2e:4f:76:72:0d:d3:f8:b5:39:2c:99:09:c3:24:d0:
1b:a4:6d:63:1f:24:eb:d0:8d:b3:c6:83:b4:54:ec:
a3:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:74:A8:3B:65:EF:4F:FF:91:E3:D5:C1:9F:FD:F4:63:8C:E9:95:56
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3B42B80A0CBC11F099127394762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.30.0/24
Signature Algorithm: sha256WithRSAEncryption
07:9e:37:e2:37:94:33:34:79:07:5b:3b:b5:9e:2b:a5:b3:2f:
a1:61:de:d9:8b:a8:8c:b6:73:2c:5f:37:a6:97:6f:f4:ae:f8:
24:33:4f:0d:6b:48:5f:2e:27:13:04:5c:53:e7:bd:a7:7b:df:
d7:4e:d0:b5:ec:30:24:23:80:0e:df:1a:19:11:b4:8f:21:78:
80:b1:1a:19:eb:54:4a:68:7e:21:5e:68:dc:4d:2d:4b:9c:3a:
ad:4f:20:0e:bb:07:4f:03:56:66:cc:93:26:14:01:45:d9:83:
2e:09:dd:84:82:87:6c:a2:f4:bf:07:40:f6:7c:82:97:2f:84:
67:bb:64:70:d9:0d:3d:25:9a:81:3c:2f:34:69:c0:3f:12:b5:
34:92:8e:ca:8b:59:42:27:f4:47:c5:58:7c:c1:fe:b1:55:65:
0b:45:e8:21:80:5a:14:be:bd:27:5f:a8:6e:97:3d:4b:49:9f:
3b:82:8e:ff:0d:2f:e1:81:d1:7e:ec:b0:b0:39:80:a7:38:75:
62:d8:ad:e5:0e:47:27:fd:13:a5:4b:4a:52:a8:73:c4:e9:55:
4c:d0:c9:63:b3:fb:3e:8a:b7:12:00:7a:4c:c6:bd:4e:2e:54:
34:3e:f3:5d:eb:46:76:67:98:d4:92:0c:56:bf:55:6b:42:87:
ac:71:37:e3
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAUiyMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMzI5MTYzODE5WhcNMjUwNTA1MTYzODE5WjAYMRYw
FAYDVQQDEw02N2U4MjIwMC1lNTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtC8OVv0Q765qwqVLszWEj9IFunIZLGAOcppkAAZ1jBO6b/X+yy0NF7Tz
reudBJTczXwY6ABmzRSCJIknUqQck2vhFeo5QMuCabT9uxbM9dmwehZwkGZycBGJ
+rrZpjUoP2cEsw38WJjBAaEs5qz6InQWbcGXGSjS1zffryDQozCU1J9JKx9HQran
iBxTaiOPDqh8BLFuNxV9nxkhLK6Y/4mMIQBZalThswYk/y6wVrXQr1WFUMbo+W9z
s5ONAP6hygKprKUWpelOuPtufZ//NGB9EHVdjEejRJK4UzihC0MuT3ZyDdP4tTks
mQnDJNAbpG1jHyTr0I2zxoO0VOyjswIDAQABo4ICojCCAp4wHQYDVR0OBBYEFNx0
qDtl70//kePVwZ/99GOM6ZVWMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8zQjQyQjgwQTBDQkMxMUYwOTkxMjczOTQ3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnPYeMA0GCSqGSIb3DQEBCwUA
A4IBAQAHnjfiN5QzNHkHWzu1niulsy+hYd7Zi6iMtnMsXzeml2/0rvgkM08Na0hf
LicTBFxT572ne9/XTtC17DAkI4AO3xoZEbSPIXiAsRoZ61RKaH4hXmjcTS1LnDqt
TyAOuwdPA1ZmzJMmFAFF2YMuCd2EgodsovS/B0D2fIKXL4Rnu2Rw2Q09JZqBPC80
acA/ErU0ko7Ki1lCJ/RHxVh8wf6xVWULReghgFoUvr0nX6hulz1LSZ87go7/DS/h
gdF+7LCwOYCnOHVi2K3lDkcn/ROlS0pSqHPE6VVM0Mljs/s+ircSAHpMxr1OLlQ0
PvNd60Z2Z5jUkgxWv1VrQoescTfj
-----END CERTIFICATE-----
Generated at Fri Apr 4 19:38:14 2025 by rpki-client