Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57C5BBDE0FA111F0AF88D6AF762E951A.roa
File: 57C5BBDE0FA111F0AF88D6AF762E951A.roa (raw, json)
Hash identifier: yBt8KBaqpD0kIYE8I43pRWUk93bmHobpBWqC22DQ2n0=
Subject key identifier: 08:3B:DC:61:62:BB:37:73:DF:23:66:3B:B6:D2:AB:79:4C:4B:9A:0E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014977
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57C5BBDE0FA111F0AF88D6AF762E951A.roa
Signing time: Wed 02 Apr 2025 09:03:29 +0000
ROA not before: Wed 02 Apr 2025 09:03:24 +0000
ROA not after: Fri 11 Apr 2025 09:03:24 +0000
asID: 200373
IP address blocks: 156.233.85.0/24 maxlen: 24
156.233.86.0/24 maxlen: 24
156.233.87.0/24 maxlen: 24
156.233.89.0/24 maxlen: 24
156.233.90.0/24 maxlen: 24
156.233.91.0/24 maxlen: 24
156.233.92.0/24 maxlen: 24
156.233.93.0/24 maxlen: 24
156.233.94.0/24 maxlen: 24
156.233.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84343 (0x14977)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Apr 2 09:03:24 2025 GMT
Not After : Apr 11 09:03:24 2025 GMT
Subject: CN=67ecfd61-3a68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:62:c2:96:24:bd:92:a8:ed:4c:60:9e:e4:ee:
6f:1d:6d:b6:b4:ae:ab:a6:b4:c8:be:ed:12:a2:b5:
58:f0:2d:4b:60:40:d7:6e:8f:d2:2b:6e:ed:28:0d:
da:92:c5:78:fb:db:45:23:df:84:96:60:f1:5c:41:
dd:b5:14:04:c7:50:38:43:72:bc:15:e3:f1:3e:53:
6f:5f:99:2a:78:61:55:7c:a7:18:d2:60:13:a6:5d:
ea:52:c4:78:f5:4a:b0:8c:87:c0:fc:89:2b:1f:2f:
bf:a4:1f:55:a9:1e:97:d9:14:c3:bb:f8:ef:7e:a6:
77:ae:e5:4f:62:79:b4:79:9e:30:61:d4:31:fe:7a:
60:ea:d6:5d:1f:ac:b4:72:b1:ea:3c:37:66:9d:7e:
03:4d:c7:e4:27:24:c1:ad:57:c9:1e:c3:fe:67:39:
e2:dd:d6:73:f0:4f:28:0c:21:86:98:0b:0a:38:ee:
9b:82:12:9c:1b:6c:c9:12:37:0d:de:01:aa:09:ab:
6c:99:ab:09:e3:c8:2a:55:89:ae:45:00:ee:b6:11:
5c:92:18:19:c4:2d:e0:a1:ed:33:63:c9:1d:3d:25:
33:89:e3:a2:72:bb:64:69:5a:eb:74:17:91:da:bd:
14:79:16:07:e5:bc:71:44:37:4a:25:5f:e3:18:c0:
ec:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:3B:DC:61:62:BB:37:73:DF:23:66:3B:B6:D2:AB:79:4C:4B:9A:0E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57C5BBDE0FA111F0AF88D6AF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.85.0-156.233.87.255
156.233.89.0-156.233.95.255
Signature Algorithm: sha256WithRSAEncryption
64:be:ea:8d:c8:72:ea:6a:5b:58:c1:8b:24:88:b4:72:82:88:
06:43:1d:f8:17:34:d6:83:33:31:4a:a1:2d:b3:81:d3:ca:ee:
c0:bd:d3:cb:9f:79:ab:82:e1:3f:41:bd:f3:0e:3d:5d:5c:25:
a1:aa:fa:1f:47:2b:8d:08:75:d8:01:68:2f:a9:dd:0e:8c:3d:
b1:7a:a8:4c:4a:d7:da:9d:f5:4a:c8:d3:b7:a0:31:4b:67:ab:
e5:67:21:b2:5f:21:a6:84:f7:58:46:91:40:9d:2e:31:33:83:
74:ad:a8:a8:d4:4b:90:1f:c5:c2:0e:68:b9:16:cf:a8:e0:e4:
79:b9:c7:df:dd:6e:3f:43:db:e8:47:9e:06:cb:86:05:6a:c4:
d0:67:06:b1:f5:b4:ba:2b:bd:de:30:4f:c6:24:84:39:23:7c:
62:e2:36:8a:d9:44:66:80:ca:4c:e6:8d:95:6f:01:17:5a:51:
a3:6c:9e:d2:ef:0d:fc:6a:1a:41:46:b6:6d:bc:6a:fc:37:e2:
24:12:2a:3c:ad:1a:2b:43:70:85:a2:2b:1a:f4:b5:fa:8c:c2:
57:4a:c6:32:ce:ae:a2:64:73:14:7d:61:9b:ee:fe:22:aa:bd:
f6:a9:27:c3:34:1b:8f:67:91:de:45:6d:be:1f:e3:d0:77:74:
36:2a:40:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:14:34 2025 by rpki-client