Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52B584ECF49111EF8A557577762E951A.roa
File: 52B584ECF49111EF8A557577762E951A.roa (raw, json)
Hash identifier: 9jSOKbrfTRQiQ1WtTA5auz15Rcm3aXCHyafVFyfgH8c=
Subject key identifier: 27:7B:5C:D4:F1:58:14:04:B3:B1:92:5F:E3:AF:2F:06:BB:05:29:54
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013831
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52B584ECF49111EF8A557577762E951A.roa
Signing time: Wed 26 Feb 2025 22:30:47 +0000
ROA not before: Wed 26 Feb 2025 22:30:43 +0000
ROA not after: Thu 19 Feb 2026 22:30:43 +0000
asID: 984
IP address blocks: 156.232.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79921 (0x13831)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 26 22:30:43 2025 GMT
Not After : Feb 19 22:30:43 2026 GMT
Subject: CN=67bf9617-6913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:5f:58:d4:ef:9f:99:10:5d:29:8b:90:29:c0:
94:69:58:a9:9e:e5:3e:2c:65:8c:0d:24:a1:2c:41:
15:7e:34:f3:2a:3d:cd:60:cc:06:c1:9a:ac:d9:76:
a7:57:21:cd:c5:bd:16:1d:f2:9f:c0:23:3c:e1:76:
b6:c2:28:9f:7a:4f:d8:9c:51:80:c0:1c:ab:8d:d6:
f0:31:ae:1a:58:6b:e9:a5:10:fe:77:0c:e9:72:8d:
a6:63:98:db:91:40:72:46:fc:31:e3:20:e0:81:87:
b2:15:20:90:23:46:2a:84:d3:d3:af:39:b0:a3:6c:
33:d2:2d:45:ca:fe:88:9b:f1:f5:f5:be:9a:90:1a:
10:d2:7c:37:65:a5:8f:3d:17:2f:bc:e6:95:b7:12:
1d:a8:02:2c:c2:69:cd:c6:0d:1a:ed:db:55:23:49:
69:7d:f6:44:ff:2a:00:f1:9c:4c:c0:f7:1d:90:25:
89:e2:c2:bf:98:18:9b:3f:99:77:03:71:6f:12:df:
d8:48:f7:1b:24:ce:65:79:46:2e:00:85:69:29:c9:
f7:7d:d9:e9:98:d4:c0:e5:9b:c7:24:04:1e:c3:84:
64:a5:73:c5:b6:96:c1:bc:30:0f:56:2b:8a:2b:36:
6b:b6:da:83:d7:b2:5a:37:2a:fa:74:97:05:17:43:
50:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:7B:5C:D4:F1:58:14:04:B3:B1:92:5F:E3:AF:2F:06:BB:05:29:54
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52B584ECF49111EF8A557577762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.50.0/24
Signature Algorithm: sha256WithRSAEncryption
46:a7:0d:01:ba:54:70:79:12:2f:82:d0:a5:c8:d4:14:a2:5a:
61:92:75:86:84:73:79:f6:38:ab:b1:e3:86:21:2b:51:0b:1f:
70:c0:35:af:5e:b1:3b:b3:85:bb:d3:3c:b3:cf:94:b1:0f:bc:
de:e2:5d:68:39:bb:9e:9e:ec:a3:9b:2e:dc:32:68:00:04:3b:
e0:e8:44:d6:4d:94:17:5a:cb:aa:ea:39:7e:5f:0f:e7:91:98:
2f:a2:9c:25:fb:a8:c4:9c:9c:59:6b:6b:07:da:e8:80:ad:13:
7d:c6:66:64:c4:d1:4a:e1:eb:c2:72:b4:e8:b6:d5:99:59:7a:
65:72:99:da:ca:51:3c:5e:f8:8a:fa:57:4e:9c:e6:21:21:26:
9f:78:e1:0e:e7:77:71:b2:e9:d3:df:1f:46:90:56:aa:5d:a5:
81:c3:af:e1:e4:71:f5:ff:24:73:d8:36:63:2f:7b:a2:8a:69:
5d:42:1f:41:e7:ee:a6:12:31:40:da:7c:60:24:3f:91:29:74:
19:bd:f4:15:f1:58:d4:5e:10:55:d0:97:26:3b:2f:2d:c9:b5:
a4:31:db:ba:f9:26:f6:cd:ac:71:83:1e:ee:dc:25:0a:3a:73:
b2:fe:6b:78:bd:ad:14:18:17:2f:30:7e:9f:02:a7:42:7b:dd:
41:df:4d:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:27:33 2025 by rpki-client