Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/93A43A9EF42211EFBED22677762E951A.roa
File: 93A43A9EF42211EFBED22677762E951A.roa (raw, json)
Hash identifier: FIt0ThD1BWBcCZ4GKUIE9CjjzDlW3N59U2TgWuWwHLM=
Subject key identifier: DA:C7:7C:B4:57:47:76:A2:B2:25:5A:11:A4:93:C0:9A:13:4E:6B:C6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013060
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/93A43A9EF42211EFBED22677762E951A.roa
Signing time: Wed 26 Feb 2025 09:18:01 +0000
ROA not before: Wed 26 Feb 2025 09:17:58 +0000
ROA not after: Thu 19 Feb 2026 09:17:58 +0000
asID: 984
IP address blocks: 156.230.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77920 (0x13060)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 26 09:17:58 2025 GMT
Not After : Feb 19 09:17:58 2026 GMT
Subject: CN=67bedc49-799c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d6:5a:70:11:fb:42:91:db:1c:37:31:3d:35:
a3:54:92:62:2c:b4:d0:e9:db:92:be:4a:08:2a:4a:
11:cc:38:26:b4:f8:6a:f8:c1:93:85:42:d0:5c:bd:
17:0a:1c:74:af:44:f3:93:88:c3:fb:95:df:0c:29:
e7:9d:eb:1f:5c:b8:51:0f:70:8d:1c:2e:99:b2:45:
25:0b:f9:d9:4d:fb:42:9a:fc:61:be:95:c9:8c:1a:
59:86:01:66:e4:0a:ce:24:d0:82:cd:c1:bb:08:f1:
67:21:a6:cb:e9:60:f3:a9:bd:96:1f:12:9e:bb:63:
b3:eb:9d:f3:5a:a4:b7:f0:50:c0:d4:79:da:b5:8f:
01:59:ef:97:37:db:e5:0f:75:88:02:2a:49:20:39:
bb:59:ba:2d:b0:bf:ca:c5:e4:28:a6:fd:0c:59:4c:
4a:e1:51:97:93:44:32:90:31:bd:44:30:f5:03:1f:
82:58:09:22:5a:aa:ea:b2:70:e3:98:73:54:3c:d1:
e5:59:d9:82:c5:1e:23:85:22:65:5e:82:f9:8b:90:
8d:48:ad:9b:d6:53:63:b5:70:16:a7:84:a6:bf:8a:
00:3b:06:b9:f8:08:0e:3d:97:71:68:60:63:1f:60:
63:d4:e7:f9:78:64:c2:64:61:bf:39:d8:42:9a:a0:
80:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:C7:7C:B4:57:47:76:A2:B2:25:5A:11:A4:93:C0:9A:13:4E:6B:C6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/93A43A9EF42211EFBED22677762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.25.0/24
Signature Algorithm: sha256WithRSAEncryption
27:f7:50:f5:02:9c:18:54:77:1b:32:c1:db:b3:a2:30:7f:4d:
3a:f8:cb:d4:be:33:37:df:d9:84:99:48:ea:a5:48:56:52:8c:
14:58:a0:1f:18:f8:59:4c:ef:de:33:13:66:12:52:44:71:e5:
f2:99:16:48:b1:8d:07:c9:08:d3:24:64:39:50:a9:35:72:b0:
09:d6:8f:24:4b:52:3f:91:99:26:94:5f:57:8b:35:29:13:7e:
5d:fb:c6:d7:11:a5:33:62:c9:55:30:55:59:5b:53:1f:9a:a2:
a8:65:6e:7c:4a:6d:81:80:cf:bc:bb:48:51:6c:80:ef:0b:49:
18:40:e1:63:c0:43:74:43:13:d9:c6:37:6e:d9:01:65:20:b9:
c9:74:ff:7d:80:4d:fa:9c:b6:fa:7e:a6:50:73:84:db:20:c0:
ec:38:c4:c6:7c:12:a5:33:4c:4e:2b:80:ef:0c:f7:2b:7c:7f:
a5:8a:54:4d:e9:84:f5:99:c9:a8:2e:84:1b:c4:00:66:c1:4f:
6c:85:e8:e8:55:0f:80:da:3e:ea:20:a1:48:96:7a:e4:0b:bf:
34:34:b2:3e:c1:b4:c8:33:21:a1:16:0d:a8:0a:44:cc:d9:c5:
8e:8b:f1:8a:6d:fd:23:6a:3e:3a:82:74:52:e7:2c:e1:2d:97:
dd:96:83:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:31:36 2025 by rpki-client