Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/746EB5EE057711F09C4982A2762E951A.roa
File: 746EB5EE057711F09C4982A2762E951A.roa (raw, json)
Hash identifier: HCrxsNlrDK+gvf0ggY9jqrBDaXKkFjdrGwSJsQsasTM=
Subject key identifier: 59:50:4E:23:DB:D5:B7:8F:3E:0F:B4:D8:A6:35:6D:21:BE:A3:90:D9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014724
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/746EB5EE057711F09C4982A2762E951A.roa
Signing time: Thu 20 Mar 2025 10:38:26 +0000
ROA not before: Thu 20 Mar 2025 10:38:21 +0000
ROA not after: Wed 09 Apr 2025 10:38:21 +0000
asID: 400619
IP address blocks: 156.241.188.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83748 (0x14724)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 20 10:38:21 2025 GMT
Not After : Apr 9 10:38:21 2025 GMT
Subject: CN=67dbf022-bf3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a7:1e:db:b8:3f:05:df:1b:4d:d5:63:7c:00:
71:0c:b2:51:4c:1b:63:1c:dc:10:f8:f8:b6:5b:2f:
90:52:5d:f9:b7:d2:34:2a:6f:19:ed:09:aa:6a:7e:
50:3a:cf:c1:2b:f0:d2:91:4f:af:d0:bd:10:c3:34:
81:88:df:bf:95:08:ea:43:42:e6:67:7a:d1:1b:b2:
ab:45:5c:95:78:d7:ff:1d:2c:c5:e8:22:03:3c:1a:
ef:ba:8c:17:45:55:f1:36:4f:39:bd:27:11:f9:a2:
86:8f:19:e3:c1:5d:1b:3a:8f:3d:30:98:59:64:8c:
2b:2b:17:4e:3b:73:d1:89:45:f6:94:44:25:12:1a:
11:23:f0:bd:e6:0c:b7:e1:c4:f9:60:2f:4a:54:a8:
3e:32:9c:99:c3:2f:89:33:50:24:33:b7:e4:9d:f5:
a4:3e:ea:03:e8:0f:64:22:81:22:eb:30:40:67:d7:
28:17:71:5d:8a:73:80:ee:69:a1:4d:20:07:d7:43:
61:58:c4:29:b2:2e:68:ca:d8:c2:82:9a:74:61:29:
77:b5:50:ab:dc:79:86:8d:00:17:42:b2:75:23:6b:
5a:a6:07:a3:86:e4:b8:5d:85:d8:1b:9d:b6:22:e9:
3a:44:fe:f4:d5:23:9c:e3:1f:6f:42:75:85:1a:22:
df:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:50:4E:23:DB:D5:B7:8F:3E:0F:B4:D8:A6:35:6D:21:BE:A3:90:D9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/746EB5EE057711F09C4982A2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.241.188.0/24
Signature Algorithm: sha256WithRSAEncryption
93:b2:7a:34:02:bc:74:7d:a5:1d:67:9f:23:3c:47:d1:d8:88:
0c:41:ce:00:a5:30:d8:72:d5:73:16:a3:b6:9c:96:36:8c:5f:
8b:50:60:3b:39:e4:fd:d1:68:5c:cd:87:2f:9e:cc:65:b7:df:
02:4d:ab:f9:c6:1c:f0:cf:25:e0:86:d0:1e:ea:1b:f5:14:5c:
86:48:e7:bc:d1:4b:90:5f:ea:b2:80:a0:7e:42:b9:55:4e:ae:
32:4f:46:15:c6:88:81:c0:e3:67:31:86:54:37:3b:ce:31:67:
52:f1:32:89:79:da:66:0d:ac:fe:2c:aa:bb:75:33:f7:cd:1c:
19:fc:28:d3:d7:24:fb:46:fa:d2:7c:16:af:ed:ad:0c:72:0e:
af:26:5b:9b:db:27:89:f1:e4:d7:de:65:0f:e8:9c:a1:da:ed:
60:e9:42:aa:1a:66:41:86:58:ba:b1:7c:eb:6a:22:25:20:ae:
bb:2e:69:ef:19:b4:d0:99:54:21:42:42:71:d5:c3:62:60:0e:
3c:bc:8b:04:6b:40:42:e6:d9:97:c2:34:17:b9:87:92:ef:39:
ca:39:cf:d0:19:77:2a:9a:7f:a7:31:37:39:bd:ec:20:e2:1b:
53:ae:8c:0e:52:8f:f0:e8:d7:61:13:b8:40:ca:cc:75:12:22:
c8:bd:77:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:14:39 2025 by rpki-client