Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41E67868096011F08660EF82762E951A.roa
File: 41E67868096011F08660EF82762E951A.roa (raw, json)
Hash identifier: iulysnn9pxxfOXbwsF6JFL+ApZti5fpR68WuBX7WsZY=
Subject key identifier: 3A:1B:63:FD:90:C9:0C:6A:95:ED:10:CD:7B:EF:8F:C3:CE:71:E5:71
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014803
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41E67868096011F08660EF82762E951A.roa
Signing time: Tue 25 Mar 2025 10:02:27 +0000
ROA not before: Tue 25 Mar 2025 10:02:24 +0000
ROA not after: Sat 17 May 2025 10:02:24 +0000
asID: 138915
IP address blocks: 156.244.8.0/24 maxlen: 24
156.244.9.0/24 maxlen: 24
156.244.10.0/24 maxlen: 24
156.244.11.0/24 maxlen: 24
156.244.12.0/24 maxlen: 24
156.244.13.0/24 maxlen: 24
156.244.14.0/24 maxlen: 24
156.244.15.0/24 maxlen: 24
156.244.16.0/24 maxlen: 24
156.244.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83971 (0x14803)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 25 10:02:24 2025 GMT
Not After : May 17 10:02:24 2025 GMT
Subject: CN=67e27f33-d5d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:92:b3:67:27:18:be:56:b1:26:d3:ae:98:db:
16:6e:8f:94:e1:2a:ee:c7:b1:8e:0d:1a:83:5f:3a:
27:19:6e:84:62:f3:6e:ac:43:91:80:a4:ed:76:43:
72:13:f1:60:f1:c7:5e:df:4e:f7:4c:89:74:0b:27:
15:86:9e:e4:f0:9e:7c:4b:fb:fb:5d:bb:14:35:53:
b3:76:88:ca:60:b7:db:ca:fb:a8:0a:99:4d:1d:e8:
54:8a:e9:31:ba:fb:90:ea:79:2b:20:0e:01:bf:4f:
b7:a4:ef:00:d2:f9:2a:bf:c2:73:7d:bc:2d:b2:7e:
0b:30:cf:86:4d:72:5b:a6:bd:be:69:fa:a7:80:1e:
35:9c:cc:a1:92:8f:08:b4:ca:97:bf:57:30:3c:76:
c4:4f:23:3e:2a:83:8d:9d:60:8b:5b:db:36:c5:93:
5b:dc:b6:80:41:05:4d:07:11:17:7e:df:6a:7a:23:
ef:0d:2b:ae:36:3b:4e:3e:d6:ec:ea:a5:18:77:85:
85:60:b1:a6:21:cc:41:48:53:5b:47:02:5c:9f:02:
63:7a:80:eb:5d:3e:aa:16:d0:ad:7a:b4:d0:77:c0:
33:bd:98:9d:e2:f4:fb:84:8e:01:57:5e:39:d5:5c:
57:63:71:95:2e:1d:96:ac:8e:10:94:60:89:06:4d:
0c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:1B:63:FD:90:C9:0C:6A:95:ED:10:CD:7B:EF:8F:C3:CE:71:E5:71
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41E67868096011F08660EF82762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.8.0-156.244.17.255
Signature Algorithm: sha256WithRSAEncryption
b4:30:2d:7b:b5:d5:4c:4b:d7:ec:bc:1a:e2:8f:21:af:58:35:
a0:19:3f:1b:b1:26:40:4c:48:f4:f9:a9:4a:c0:41:5d:ca:7b:
58:8a:6f:7c:14:2f:61:09:7b:09:41:06:ed:f3:0b:4d:07:30:
61:da:bc:46:95:84:2a:67:bb:7e:c1:a9:8f:67:b9:f3:8b:62:
6b:02:61:22:4b:89:ff:98:5f:72:0c:8d:bb:9d:14:c3:ba:c2:
60:1e:8b:6a:3a:b9:32:12:1d:9f:1b:15:b9:ac:c4:d0:9e:bb:
3c:18:34:00:43:f5:e8:1c:d6:43:4d:f1:19:55:28:f6:a2:cd:
ed:4c:00:ee:67:ac:f4:8a:67:fc:4a:ed:e8:a6:a1:69:76:f2:
00:a8:22:e9:33:5c:59:be:e1:a2:32:bb:a1:55:14:65:80:b6:
9b:67:9c:60:25:d2:3a:81:ab:b3:15:a8:b6:f6:e7:3b:ca:93:
4c:7b:cf:b9:df:a6:d5:13:c3:e5:34:59:97:a1:3f:de:80:3a:
81:87:76:81:b8:3c:a5:19:e2:c6:11:55:12:8b:11:b5:a7:95:
e3:21:63:a6:dd:23:02:b0:d3:70:ef:9a:4f:48:c6:19:4a:fc:
95:2d:77:47:36:df:99:c7:eb:31:19:35:da:58:9d:a7:7a:a5:
bb:63:32:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:18:09 2025 by rpki-client