Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/58B5852CF8C411EFB363A0AD762E951A.roa
File: 58B5852CF8C411EFB363A0AD762E951A.roa (raw, json)
Hash identifier: NFnZwpxE+glF/U8v0OB3lECaNlH+8Yix1lobDLJC4Yc=
Subject key identifier: 56:57:DF:C8:69:BA:CF:AC:69:3F:2F:BD:44:C1:CC:BF:02:D6:1A:23
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0142A1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/58B5852CF8C411EFB363A0AD762E951A.roa
Signing time: Tue 04 Mar 2025 06:46:06 +0000
ROA not before: Tue 04 Mar 2025 06:46:01 +0000
ROA not after: Sun 06 Apr 2025 06:46:01 +0000
asID: 9304
IP address blocks: 156.225.2.0/23 maxlen: 24
156.225.50.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 06:46:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82593 (0x142a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 4 06:46:01 2025 GMT
Not After : Apr 6 06:46:01 2025 GMT
Subject: CN=67c6a1ae-df07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0e:82:a3:a3:38:00:9a:2b:ed:e1:a4:1d:ce:
f9:60:90:14:71:09:71:39:5c:cd:54:c8:cf:48:99:
9e:46:e2:70:d3:03:3c:f9:77:36:81:0b:a2:de:d7:
c6:fa:d1:37:4e:da:bf:6b:15:f9:86:34:04:2b:4b:
b9:04:ca:b9:be:f5:1d:a4:6f:83:d3:28:27:2a:9f:
30:18:cf:65:6e:31:8d:0a:de:b0:93:f5:95:f7:5e:
aa:94:41:55:04:b9:60:cb:8c:91:8d:49:9d:fa:d1:
02:93:d7:07:60:94:14:ca:48:d4:d0:57:5c:8d:22:
68:b6:f2:49:c7:be:55:6a:03:3a:07:c1:99:5c:28:
0f:a4:43:d1:f3:6f:c1:28:95:92:fe:15:13:99:0b:
60:ba:f5:3e:26:54:de:1a:6b:f0:8f:32:c1:4c:18:
b8:c7:61:13:fa:79:08:43:d4:d2:2b:08:ec:52:2a:
46:c0:da:ba:d8:93:31:8d:c6:1f:f9:93:40:30:46:
24:3e:e6:f0:0b:38:32:99:89:75:f0:44:54:bd:df:
0a:fd:81:3c:5c:57:f5:03:bc:f0:2c:c5:9f:7e:17:
92:e4:01:d8:0b:e5:d2:58:cb:fb:de:64:b5:f7:f6:
af:60:84:07:b3:e5:d5:32:0e:4a:f5:57:76:89:97:
a5:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:57:DF:C8:69:BA:CF:AC:69:3F:2F:BD:44:C1:CC:BF:02:D6:1A:23
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/58B5852CF8C411EFB363A0AD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.2.0/23
156.225.50.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:99:63:f9:0b:63:c4:85:a6:a1:94:0d:1b:d2:d0:a7:69:3d:
d1:50:43:48:97:5c:4a:3e:f1:da:1f:e0:f5:8e:da:36:77:17:
b9:10:45:dc:56:04:0f:7d:57:f5:48:64:1c:8f:16:1d:64:7f:
1b:37:d3:6e:9b:0e:d7:29:a3:c9:0f:42:91:5f:92:ab:b6:07:
6c:44:a2:ad:c0:58:4e:7b:98:9b:f8:1c:a3:0c:66:16:fb:f9:
f4:67:70:a9:99:34:8e:35:1f:ac:58:29:eb:6a:a8:bb:f5:8d:
1f:42:8e:1f:49:dd:db:48:1b:ac:99:d8:30:da:f7:03:fd:a2:
e4:d0:b7:55:9b:4b:ba:3d:bb:c5:0c:71:13:1c:24:1a:b1:73:
70:6a:81:66:69:96:25:f1:2b:38:93:61:93:c3:35:09:6a:39:
9f:90:56:cc:bf:f4:bd:d4:b1:90:8d:d9:35:75:67:f5:cc:8f:
cc:ff:f1:e2:aa:7b:fa:a9:e4:74:31:f8:3e:8c:88:6d:f3:86:
65:59:8c:70:7a:48:45:d3:f7:63:53:60:78:5c:5a:cb:eb:54:
f5:c7:ed:4c:45:51:b1:d7:85:88:7f:58:76:6a:39:ac:45:ad:
42:75:41:cd:46:3c:94:37:a9:8e:0e:04:ae:f1:ee:21:20:ab:
ab:d6:55:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:06:19 2025 by rpki-client