Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4157CC20F8F411EFB7D76270762E951A.roa
File: 4157CC20F8F411EFB7D76270762E951A.roa (raw, json)
Hash identifier: kBel1MXUm9sRBT7PvNVJjYRSBHi3X/dNT42Uun/Myrg=
Subject key identifier: 3E:63:D2:ED:E9:DA:CA:53:8B:54:F4:B4:56:3B:EF:8D:14:EA:36:11
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014312
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4157CC20F8F411EFB7D76270762E951A.roa
Signing time: Tue 04 Mar 2025 12:29:02 +0000
ROA not before: Tue 04 Mar 2025 12:28:57 +0000
ROA not after: Mon 07 Apr 2025 12:28:57 +0000
asID: 50053
IP address blocks: 156.253.251.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82706 (0x14312)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 4 12:28:57 2025 GMT
Not After : Apr 7 12:28:57 2025 GMT
Subject: CN=67c6f20e-d63e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:43:53:be:52:62:95:5e:36:24:a7:15:4a:31:
5f:f6:11:ca:53:5b:0a:42:24:95:3c:d9:ee:2e:08:
bf:b3:bb:1c:82:88:89:5a:2d:b4:64:ab:61:2a:8d:
1e:73:e3:8c:e4:26:92:5e:c8:16:ea:3f:f2:50:84:
be:ba:73:fa:e6:dc:2a:8a:3b:87:4a:f9:2d:86:02:
d4:ab:6b:94:c7:3a:7f:98:a7:db:28:71:6b:37:45:
f4:d2:b4:39:63:26:27:a9:42:79:27:a7:e1:84:68:
4c:4f:07:60:57:e4:5a:f5:64:7c:39:35:a4:5a:a3:
c2:fa:84:a7:9c:2f:d6:e2:62:ce:86:e4:8e:e4:68:
d4:0a:ea:36:82:4d:a7:be:e6:de:0c:94:15:74:c5:
6f:2b:47:8d:27:90:7b:3e:85:be:96:e0:8b:71:53:
e0:3f:6b:60:d3:8a:d0:ef:68:21:ac:16:11:82:29:
7d:da:3b:0d:d0:50:25:cd:56:72:5e:b7:a1:ec:be:
96:ce:ba:9d:e8:e1:30:f6:7e:80:71:81:f2:c9:8a:
eb:90:73:ac:9c:d9:b7:07:09:92:e4:d8:b0:1a:10:
79:3e:d9:08:db:0a:fe:19:b7:18:bf:e7:33:53:82:
cf:9c:1c:71:35:60:d3:2c:32:36:8d:b1:f8:d7:f0:
fb:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:63:D2:ED:E9:DA:CA:53:8B:54:F4:B4:56:3B:EF:8D:14:EA:36:11
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4157CC20F8F411EFB7D76270762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.253.251.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:ba:5c:4d:27:ef:53:c7:ab:85:60:a7:5c:7d:72:aa:a0:9d:
71:3f:16:a3:b5:5c:75:05:4d:b5:cd:ce:b6:aa:c8:6c:7c:be:
9d:57:c8:ff:59:90:95:bb:ae:a9:92:e5:6d:9e:e6:d7:24:80:
da:8c:14:47:34:14:9f:99:8c:c8:20:31:05:9c:4a:46:69:69:
0c:b1:33:90:3a:3c:38:bb:8c:53:2f:1f:5d:d6:ac:e8:63:04:
80:98:87:8d:2b:44:dd:e3:75:2a:ea:e7:d6:c3:2e:50:4f:ec:
04:d5:9d:34:3d:d1:3f:fe:e8:94:e5:d0:d3:ee:f7:65:0b:19:
6a:c4:ee:11:67:12:db:e4:cf:39:ac:f5:11:f9:cc:41:05:c4:
27:87:51:2d:b8:21:08:aa:e1:f9:f6:f3:b3:a4:a0:49:a4:66:
22:30:87:2f:68:73:36:c5:4c:62:e2:b9:1f:44:5d:2e:7e:0c:
31:fe:57:e0:e4:cd:e2:6b:27:8b:fd:c7:cf:73:fc:41:76:2a:
19:b5:43:b2:14:cf:fa:8d:49:a3:87:5c:89:21:46:4a:06:5c:
fa:7a:53:72:c2:ef:a0:9d:41:29:35:ed:3b:77:6a:22:99:94:
aa:eb:a6:76:97:7c:fb:f9:81:9a:cd:7b:60:d3:43:e4:14:6f:
74:8c:4a:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:19:44 2025 by rpki-client