Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/84163D12F4A311EFBDC21571762E951A.roa
File: 84163D12F4A311EFBDC21571762E951A.roa (raw, json)
Hash identifier: bV7jY/EGeM/ONPbz4McKeFXTfLhfsFKOjA9sycLO+YU=
Subject key identifier: 57:74:C2:6A:1B:56:D0:6E:E6:E7:57:63:5A:A8:D4:08:34:7D:61:15
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013885
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/84163D12F4A311EFBDC21571762E951A.roa
Signing time: Thu 27 Feb 2025 00:41:00 +0000
ROA not before: Thu 27 Feb 2025 00:00:57 +0000
ROA not after: Thu 19 Feb 2026 00:00:57 +0000
asID: 984
IP address blocks: 156.232.72.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 13 Apr 2025 00:26:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80005 (0x13885)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 27 00:00:57 2025 GMT
Not After : Feb 19 00:00:57 2026 GMT
Subject: CN=67bfb49c-020c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:3c:ce:bb:1c:b5:16:68:52:dd:4e:9c:14:54:
ca:19:d7:5b:20:e0:ae:26:70:f6:70:38:c6:dc:01:
90:2d:db:e2:f4:4f:df:3e:85:c2:f8:58:a1:8c:f4:
bf:73:4e:c8:ef:3d:05:3b:cc:cf:3c:2e:b2:51:18:
7e:a0:0b:a2:ef:c2:c0:04:d4:07:9a:ca:b3:8e:89:
ab:7c:d5:6c:a3:52:2b:90:98:b5:e1:d5:99:ff:4c:
88:99:5d:31:26:f9:39:1c:02:a0:44:49:78:63:55:
43:ca:a3:9c:b1:84:0f:1d:bb:60:1b:7d:85:d8:ff:
de:0e:a2:b5:b4:49:82:62:3a:53:59:fa:69:83:21:
6f:18:77:d5:6f:fd:2e:d9:58:67:ed:db:a1:de:44:
f8:3d:cb:fe:92:ab:68:12:2b:09:46:84:90:99:62:
1a:a0:d3:71:73:1c:df:cd:6d:3a:1b:38:27:8e:ad:
cc:1f:ab:18:76:15:7b:48:97:7c:75:a5:4d:e7:31:
7c:35:85:1d:e7:70:8e:b3:ac:52:5e:62:69:2a:bb:
00:56:c5:ea:1e:eb:f6:2b:d6:4d:ff:bc:84:99:5c:
17:bd:82:35:33:09:4d:c7:75:84:03:f5:ab:eb:43:
1d:77:ea:eb:1c:38:9b:ed:9b:4f:89:ca:95:7a:7c:
b8:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:74:C2:6A:1B:56:D0:6E:E6:E7:57:63:5A:A8:D4:08:34:7D:61:15
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/84163D12F4A311EFBDC21571762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.72.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:dd:2b:df:21:67:97:31:02:f2:ed:c8:98:e4:29:fd:83:b8:
5f:0c:7e:b1:fa:06:56:af:5f:0e:30:4c:1c:0e:bf:b2:38:0b:
12:e6:74:81:46:92:bb:22:65:d4:8f:58:a8:4a:cb:06:51:2c:
c4:a7:5c:8b:8c:2d:a3:70:d3:64:dd:e5:88:a2:af:35:b4:28:
58:4b:cb:f1:53:85:33:92:3d:3e:d3:81:06:33:0a:f1:a2:18:
89:7a:b0:2d:4b:ad:0d:a3:eb:52:88:a6:4d:6f:05:77:00:3e:
e6:63:bf:8f:2e:de:86:a1:60:4f:2b:75:21:cc:bb:7a:2f:72:
3d:26:97:e6:13:77:9f:6d:ef:0c:8f:79:52:84:1f:f7:2c:15:
2d:52:01:2b:1e:2b:54:97:05:d2:7b:a1:68:79:ce:e3:0a:74:
db:9f:6f:7a:de:47:92:83:81:1c:00:4e:a9:09:60:8a:e0:e0:
ab:74:7b:33:9b:f9:43:7d:55:a5:51:cc:8e:f1:a1:e9:51:f5:
70:30:c5:c3:de:a6:b5:ed:78:e0:66:6b:d4:56:36:fa:2d:f0:
6c:9c:f3:51:02:39:1d:3d:0b:45:18:8a:ae:f9:b7:6b:d2:24:
64:90:74:6e:3a:ad:08:ed:ed:0e:4e:88:c4:f1:cb:03:65:a0:
9b:f8:83:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 23:34:53 2025 by rpki-client