Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/96965920F57211EFB1115B83762E951A.roa
File: 96965920F57211EFB1115B83762E951A.roa (raw, json)
Hash identifier: QUTZivK7mX9imyyVuLOToskJM6sLapdDQzk8/HgeBBs=
Subject key identifier: 20:0B:63:41:91:D8:11:7D:5C:5E:94:49:AC:93:3E:B4:5D:CD:32:1B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013BB0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/96965920F57211EFB1115B83762E951A.roa
Signing time: Fri 28 Feb 2025 01:23:17 +0000
ROA not before: Fri 28 Feb 2025 01:23:13 +0000
ROA not after: Sat 19 Feb 2028 01:23:13 +0000
asID: 17561
IP address blocks: 156.227.170.0/24 maxlen: 24
156.227.171.0/24 maxlen: 24
156.227.172.0/24 maxlen: 24
156.227.173.0/24 maxlen: 24
156.227.174.0/24 maxlen: 24
156.227.175.0/24 maxlen: 24
156.227.176.0/24 maxlen: 24
156.227.177.0/24 maxlen: 24
156.227.178.0/24 maxlen: 24
156.227.179.0/24 maxlen: 24
156.227.180.0/24 maxlen: 24
156.227.181.0/24 maxlen: 24
156.227.182.0/24 maxlen: 24
156.227.183.0/24 maxlen: 24
156.227.184.0/24 maxlen: 24
156.227.185.0/24 maxlen: 24
156.227.186.0/24 maxlen: 24
156.227.187.0/24 maxlen: 24
156.227.188.0/24 maxlen: 24
156.227.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80816 (0x13bb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 28 01:23:13 2025 GMT
Not After : Feb 19 01:23:13 2028 GMT
Subject: CN=67c11005-c392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:10:94:5e:6a:2b:96:0d:f7:d3:f3:53:ce:a7:
f0:f1:6c:74:bf:92:b1:f4:3e:45:0f:64:e3:79:78:
12:5f:2a:02:e6:c4:da:7e:74:c8:f2:2f:fb:c8:3d:
d7:f7:0c:9d:f3:7a:6e:02:90:49:81:9e:8a:24:f7:
1e:9d:4d:c0:e0:ef:4a:e5:da:e2:26:6a:89:46:80:
5f:38:e9:fb:08:0f:cb:23:6b:73:06:e8:f3:3a:46:
ab:a6:91:8b:59:d7:5e:d2:ed:e7:b3:28:ac:bd:1f:
6f:b6:19:5c:07:c4:0d:98:94:dd:d3:36:e2:0c:0e:
64:6a:02:0a:bc:88:aa:09:3e:7e:a8:40:e9:0f:b2:
b6:ff:a4:dc:73:ef:3e:15:b1:ac:54:89:0f:fc:86:
22:57:31:0e:92:e8:a2:fa:af:a1:2c:c0:d0:c7:04:
bf:e5:62:21:58:17:a5:1d:79:c5:72:e0:56:ea:de:
88:47:f7:bd:bc:57:88:d6:08:71:de:ac:98:d4:88:
8b:db:b8:7a:3f:95:1a:72:a5:dd:1b:02:c7:61:af:
a3:45:ad:9c:81:74:ec:96:57:00:88:31:cf:7a:39:
af:96:aa:84:2f:14:79:7c:9b:01:2b:6f:4f:1e:92:
ef:6a:a6:55:df:e4:b7:08:8b:44:52:b5:14:10:c5:
b3:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:0B:63:41:91:D8:11:7D:5C:5E:94:49:AC:93:3E:B4:5D:CD:32:1B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/96965920F57211EFB1115B83762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.170.0-156.227.189.255
Signature Algorithm: sha256WithRSAEncryption
78:0d:88:dd:7a:05:7d:57:98:7f:19:64:e0:60:c3:9b:f1:6d:
f3:eb:c5:ef:d9:2f:6d:8c:a0:5d:8a:89:90:48:ad:06:4c:3e:
76:ce:91:38:8f:95:21:48:84:c1:7e:de:bb:68:9b:81:0b:9a:
f6:88:38:54:3e:4c:fa:27:4b:69:88:28:f0:b0:cd:3b:34:c4:
23:60:69:ce:bc:84:02:5a:9a:7c:3d:c9:cf:37:82:92:05:81:
6e:c6:bb:59:81:d1:84:58:f9:05:77:f4:9a:79:1d:c2:32:14:
74:e3:1f:31:41:b4:5f:09:77:cc:a4:a7:b9:92:a2:8f:81:7e:
87:16:9a:fd:4d:db:f4:9f:f2:7b:4e:34:ac:28:f1:dc:64:33:
32:18:86:24:94:2e:a4:10:46:13:12:b4:17:50:b9:b0:3d:91:
34:d1:bb:fd:67:22:65:e7:9f:3a:8a:e2:4f:77:d6:e2:1b:3a:
57:be:10:fa:ca:8c:6c:ee:c9:9a:bc:0c:ac:1d:b3:4a:c2:95:
a5:5f:cc:d8:48:97:c0:2b:7f:37:fd:14:52:84:19:83:08:4b:
83:a7:d6:12:94:68:e4:2c:d0:a8:78:e0:4a:55:23:5c:6d:df:
40:02:fa:ce:21:3e:0c:61:e7:d7:e6:58:d6:4c:a1:00:18:c9:
7d:78:84:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:30:44 2025 by rpki-client