Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/847FCD62FFE411EF877C7443762E951A.roa
File: 847FCD62FFE411EF877C7443762E951A.roa (raw, json)
Hash identifier: QSLAKyi11hv5mPwpfsgo0vgpPXLI8fLmAQ9vRomHm0Y=
Subject key identifier: C6:F7:C5:9F:5D:85:0A:0B:9F:07:CD:17:0F:2E:A7:93:37:C5:9F:CD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01459A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/847FCD62FFE411EF877C7443762E951A.roa
Signing time: Thu 13 Mar 2025 08:24:01 +0000
ROA not before: Thu 13 Mar 2025 08:23:57 +0000
ROA not after: Sat 19 Apr 2025 08:23:57 +0000
asID: 18779
IP address blocks: 156.225.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83354 (0x1459a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 13 08:23:57 2025 GMT
Not After : Apr 19 08:23:57 2025 GMT
Subject: CN=67d29621-bb89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:8b:a6:fc:3d:34:5e:89:92:a6:00:e4:e1:fe:
71:f0:68:80:27:cd:b5:19:8d:fb:77:e2:bd:c5:d4:
a5:d9:fd:e6:52:5c:73:b2:73:dc:57:8f:a0:7d:b7:
ee:9a:fe:c9:c3:6e:43:f1:01:4b:e7:2c:5e:9c:c2:
0a:45:38:ab:4c:15:9b:a1:97:2c:a8:05:c4:f3:62:
09:8f:29:68:72:2b:66:83:8c:29:cd:2d:43:7a:3f:
f1:8f:1d:0a:a3:46:e6:e9:17:57:73:18:d6:65:0b:
42:39:0e:8e:e0:8c:54:d5:61:d4:9d:09:f4:ca:91:
b6:ac:04:35:a0:c9:3f:b0:1c:a1:b8:bf:5f:b9:49:
4b:bd:6b:3e:96:74:3c:c8:e1:2a:bd:63:68:7f:8b:
ab:5a:af:c7:ea:fd:77:b4:f1:17:28:c8:f7:90:df:
6c:82:6b:cd:2c:9b:49:92:06:07:3c:cd:05:64:7c:
97:06:b0:dd:d9:91:35:6d:f1:14:31:c8:a0:57:92:
1b:bb:1a:22:b9:6b:5e:70:19:7a:e1:26:21:3a:1e:
83:5a:5c:ec:83:42:3f:fa:4c:4c:2d:31:e2:bd:f1:
e4:ec:18:e0:7b:fb:c0:0f:7b:dc:56:79:a0:4e:63:
88:0f:74:7f:e6:89:7a:5e:17:08:bc:c7:d0:2a:34:
e1:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:F7:C5:9F:5D:85:0A:0B:9F:07:CD:17:0F:2E:A7:93:37:C5:9F:CD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/847FCD62FFE411EF877C7443762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.178.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:3f:cd:f7:5a:43:55:b9:ce:35:ff:d9:f3:88:54:b6:34:84:
ec:e8:78:95:c1:da:c6:be:46:fd:d0:bb:d1:aa:4b:5d:19:ec:
34:6e:ba:c0:92:fa:03:3d:ed:3f:f8:65:ea:a6:a4:f6:94:7d:
a6:d8:d4:e7:8e:cf:21:8c:3d:d6:04:77:8a:14:19:f6:ff:1f:
a5:08:06:fd:e0:6a:74:ef:52:d1:fe:a8:b8:93:5c:3b:c6:22:
f2:2b:24:ac:9a:92:66:f6:30:08:2e:d9:e3:34:b1:96:3b:94:
7c:5d:82:22:f9:a4:bf:34:3e:04:05:ad:95:29:c6:28:08:6f:
25:f0:3f:ce:54:ef:10:fa:ed:a5:d4:21:36:b4:bf:dc:8a:f7:
89:c2:b6:f6:e1:0e:62:95:2b:eb:a1:7b:5e:15:2b:33:ff:23:
92:e8:9a:f4:d4:81:31:8d:8a:5c:6c:7f:67:24:8f:bc:cd:8e:
ae:b7:27:83:7f:9b:d7:b1:76:0f:eb:07:1d:51:16:34:09:4e:
78:13:b0:f8:bb:70:d2:a7:ad:9b:39:18:4a:8e:05:8b:e1:91:
48:a1:d3:31:12:c1:10:cd:f8:a1:60:c7:5a:c4:7a:c3:8f:3a:
e6:b9:19:f5:0b:ab:8d:b8:a7:7f:b0:a5:5c:fa:0f:79:ee:f6:
4a:ac:05:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:17:56 2025 by rpki-client