Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5F630564E54811EF9A813159762E951A.roa
File: 5F630564E54811EF9A813159762E951A.roa (raw, json)
Hash identifier: Mxg39uZsgXFGGVUc0OJmqI9y7jFM2Z+Ag6PKZ3MuDx8=
Subject key identifier: 4E:4E:5B:32:6B:11:93:EE:07:54:0B:56:32:8D:C5:8A:0D:27:6C:7A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 011D45
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5F630564E54811EF9A813159762E951A.roa
Signing time: Fri 07 Feb 2025 11:40:47 +0000
ROA not before: Fri 07 Feb 2025 11:40:36 +0000
ROA not after: Sat 13 Dec 2025 11:40:36 +0000
asID: 984
IP address blocks: 156.230.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 13 Apr 2025 00:26:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73029 (0x11d45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 7 11:40:36 2025 GMT
Not After : Dec 13 11:40:36 2025 GMT
Subject: CN=67a5f13f-6f6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f1:7e:6a:a6:84:59:76:a0:ce:7f:99:31:b2:
47:aa:a9:1d:05:ab:e5:aa:5f:7a:64:21:06:10:f6:
22:3d:15:e0:6f:dd:d3:ed:66:cf:bb:a4:5e:cf:c9:
53:c1:a4:94:83:94:c7:e2:d4:cb:df:80:67:1c:31:
02:19:65:33:96:6b:52:e0:9b:1e:57:54:ba:78:57:
c7:17:df:f3:a6:f7:39:23:35:bd:f5:43:6d:81:d1:
e0:b8:40:9b:ff:f6:80:dd:b0:ac:cd:ce:f4:ba:ff:
7a:d4:93:cc:4f:bf:b3:c2:08:a1:91:f9:f7:21:ac:
9b:81:06:f8:7f:af:e8:75:74:3d:1b:47:61:0e:a7:
3f:2a:cf:2f:2c:f9:d7:fc:d3:9a:f9:aa:4f:b3:f3:
67:da:88:a4:e7:a3:39:0a:43:b0:db:49:19:98:c4:
d2:f6:1a:60:bd:69:c1:49:bd:f0:a5:13:0e:2f:58:
8f:46:77:56:77:36:84:53:7b:68:2e:09:de:bc:6b:
e9:82:de:9e:b5:00:6f:09:ea:01:bb:23:44:4a:ca:
be:b7:ab:a5:3c:14:e9:cc:0a:21:f2:7d:7f:d2:d6:
73:2c:77:5b:03:4e:b0:35:d8:e2:94:89:a8:b6:47:
87:31:7b:3f:ce:ef:94:a2:a7:a5:10:7f:80:fd:17:
67:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:4E:5B:32:6B:11:93:EE:07:54:0B:56:32:8D:C5:8A:0D:27:6C:7A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5F630564E54811EF9A813159762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.186.0/24
Signature Algorithm: sha256WithRSAEncryption
54:01:22:ec:ba:4c:7b:20:8f:a5:26:e5:97:b2:47:df:06:07:
d5:27:cb:15:09:3e:81:c1:39:99:b6:34:14:88:b3:1c:f8:b3:
ce:ab:aa:e5:18:bf:7e:b5:40:88:44:d2:53:de:88:4d:47:b1:
0f:8c:43:92:c6:5e:59:f4:03:a4:82:a8:e4:f0:b3:e8:7e:1f:
b7:ea:d7:5e:3c:31:cd:39:ce:1f:8d:19:8d:0a:c1:53:ea:ab:
3d:ad:15:4e:e0:d1:ef:3f:70:9a:a7:98:c7:cd:ea:e3:18:16:
06:34:da:a5:bc:18:7f:ea:74:36:26:20:f8:be:c4:11:40:47:
1e:ac:e3:05:6b:f0:79:33:b1:d9:f5:61:21:c4:34:34:59:07:
2f:72:f9:c6:1e:bd:32:54:c5:0a:18:3b:4c:f6:e7:c5:88:df:
de:35:47:cb:66:7b:dd:2c:43:b9:32:a1:cb:b8:a3:9a:ee:77:
94:2d:4a:0b:43:93:c9:7e:d5:de:e1:51:c1:5c:c1:79:58:10:
3c:ee:de:0a:bd:22:a1:dd:8a:2d:ed:09:8b:70:06:bf:08:a2:
18:7b:fe:6f:bc:7b:e5:d9:1d:8b:85:df:42:55:9a:43:56:32:
a9:58:00:70:ee:a2:a1:06:6d:e9:93:98:8a:df:32:45:59:4c:
51:16:7f:e1
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAR1FMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMjA3MTE0MDM2WhcNMjUxMjEzMTE0MDM2WjAYMRYw
FAYDVQQDEw02N2E1ZjEzZi02ZjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAw/F+aqaEWXagzn+ZMbJHqqkdBavlql96ZCEGEPYiPRXgb93T7WbPu6Re
z8lTwaSUg5TH4tTL34BnHDECGWUzlmtS4JseV1S6eFfHF9/zpvc5IzW99UNtgdHg
uECb//aA3bCszc70uv961JPMT7+zwgihkfn3IaybgQb4f6/odXQ9G0dhDqc/Ks8v
LPnX/NOa+apPs/Nn2oik56M5CkOw20kZmMTS9hpgvWnBSb3wpRMOL1iPRndWdzaE
U3toLgnevGvpgt6etQBvCeoBuyNESsq+t6ulPBTpzAoh8n1/0tZzLHdbA06wNdji
lImotkeHMXs/zu+UoqelEH+A/RdnuQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFE5O
WzJrEZPuB1QLVjKNxYoNJ2x6MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81RjYzMDU2NEU1NDgxMUVGOUE4MTMxNTk3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOa6MA0GCSqGSIb3DQEBCwUA
A4IBAQBUASLsukx7II+lJuWXskffBgfVJ8sVCT6BwTmZtjQUiLMc+LPOq6rlGL9+
tUCIRNJT3ohNR7EPjEOSxl5Z9AOkgqjk8LPofh+36tdePDHNOc4fjRmNCsFT6qs9
rRVO4NHvP3Cap5jHzerjGBYGNNqlvBh/6nQ2JiD4vsQRQEcerOMFa/B5M7HZ9WEh
xDQ0WQcvcvnGHr0yVMUKGDtM9ufFiN/eNUfLZnvdLEO5MqHLuKOa7neULUoLQ5PJ
ftXe4VHBXMF5WBA87t4KvSKh3Yot7QmLcAa/CKIYe/5vvHvl2R2Lhd9CVZpDVjKp
WABw7qKhBm3pk5iK3zJFWUxRFn/h
-----END CERTIFICATE-----
Generated at Fri Apr 11 13:22:15 2025 by rpki-client