Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ADC03C84CD4E11EFB5D2A998762E951A.roa
File: ADC03C84CD4E11EFB5D2A998762E951A.roa (raw, json)
Hash identifier: f39x0+ii1YK7fBBtnb2V93bvFCx1lFOisCTIQWRWq74=
Subject key identifier: 4E:7F:75:EF:9F:BA:B8:51:0E:68:B9:6F:36:B6:6E:B6:78:70:89:DD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FEDB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ADC03C84CD4E11EFB5D2A998762E951A.roa
Signing time: Tue 07 Jan 2025 23:25:28 +0000
ROA not before: Tue 07 Jan 2025 23:25:24 +0000
ROA not after: Sat 13 Dec 2025 23:25:24 +0000
asID: 984
IP address blocks: 156.247.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65243 (0xfedb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 23:25:24 2025 GMT
Not After : Dec 13 23:25:24 2025 GMT
Subject: CN=677db7e8-8194
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:61:c1:37:69:53:6b:a8:86:43:ff:20:95:55:
85:1c:34:fd:2e:a0:ac:41:9a:f2:8c:5e:52:cb:a9:
c7:ef:5a:70:cd:ff:96:3f:25:84:48:40:35:48:a8:
72:de:17:ae:88:8a:0a:3a:bc:a4:07:64:bb:30:9e:
2f:48:ba:31:04:55:47:79:e2:3c:8a:6a:a9:7f:ef:
8e:33:e6:e0:43:87:90:0f:bb:6b:c2:3b:e1:56:10:
db:f2:0c:05:22:e9:a7:01:17:43:58:7e:71:e5:3f:
a5:fa:15:3a:03:6a:3f:af:49:41:b4:20:9c:ce:cb:
0d:a8:03:68:e9:1d:51:83:31:17:30:f2:d5:80:97:
00:f5:14:da:5c:d7:38:ab:86:d2:b0:30:ad:e3:ec:
cb:32:be:a2:c1:89:61:fe:d0:75:87:55:70:b6:6b:
c4:3d:99:81:39:8d:e0:99:50:7a:f0:bf:b7:1a:41:
5e:c9:db:5f:5d:bf:3c:d7:83:f4:18:2a:ce:02:cb:
86:93:41:06:f9:0b:0f:9c:f7:80:63:10:9b:82:cd:
1f:e3:32:1a:e3:5e:ae:74:f0:9d:a5:9a:eb:6a:29:
92:c1:74:fa:91:33:1b:12:53:a8:5a:c2:c9:71:2e:
ba:46:87:4e:4f:d2:69:21:42:82:cb:31:00:55:cc:
1c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:7F:75:EF:9F:BA:B8:51:0E:68:B9:6F:36:B6:6E:B6:78:70:89:DD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ADC03C84CD4E11EFB5D2A998762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.21.0/24
Signature Algorithm: sha256WithRSAEncryption
83:c1:00:bf:72:76:a6:d9:4b:96:40:e2:96:53:70:cd:71:45:
74:d0:dc:d1:6b:2f:91:35:ec:0c:1d:72:26:e0:3e:59:15:25:
0f:e8:23:fb:18:aa:b4:36:c8:d4:d2:03:f0:91:c6:9b:9b:11:
cc:3e:b9:2f:1c:22:b1:13:c5:3b:4f:07:4e:f4:0f:6e:7a:60:
b0:98:4d:92:2f:30:67:c1:e4:85:af:ae:a2:dc:8a:73:56:14:
05:e8:91:50:20:3a:eb:e6:5e:f0:c6:14:f0:af:e9:8e:60:c7:
8e:c3:db:11:d1:ee:96:71:bf:f7:2a:03:c9:22:5a:79:c0:9a:
0d:2c:4b:48:01:70:b6:74:33:d1:01:7f:c2:90:54:58:b4:a6:
f7:1e:4f:78:29:96:c0:3d:87:32:f4:f1:3d:03:f8:3b:92:64:
32:7d:c2:bb:7a:a2:42:41:f3:68:7e:e5:03:99:dd:dd:58:22:
08:8a:b7:e1:ce:ce:0e:8e:35:a0:8e:3b:d6:56:a9:ae:28:ac:
ac:be:87:60:b4:95:68:c5:86:5a:75:c3:a5:41:4e:87:01:cf:
04:c0:01:15:b4:f8:ad:d1:7c:bd:b4:a6:9e:65:92:8b:55:e8:
b1:29:42:2d:38:72:89:0a:a5:95:9b:cc:79:3c:8b:4c:f8:48:
ea:da:fa:5f
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAP7bMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTA3MjMyNTI0WhcNMjUxMjEzMjMyNTI0WjAYMRYw
FAYDVQQDEw02NzdkYjdlOC04MTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAy2HBN2lTa6iGQ/8glVWFHDT9LqCsQZryjF5Sy6nH71pwzf+WPyWESEA1
SKhy3heuiIoKOrykB2S7MJ4vSLoxBFVHeeI8imqpf++OM+bgQ4eQD7trwjvhVhDb
8gwFIumnARdDWH5x5T+l+hU6A2o/r0lBtCCczssNqANo6R1RgzEXMPLVgJcA9RTa
XNc4q4bSsDCt4+zLMr6iwYlh/tB1h1VwtmvEPZmBOY3gmVB68L+3GkFeydtfXb88
14P0GCrOAsuGk0EG+QsPnPeAYxCbgs0f4zIa416udPCdpZrraimSwXT6kTMbElOo
WsLJcS66RodOT9JpIUKCyzEAVcwcfQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFE5/
de+furhRDmi5bza2brZ4cIndMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9BREMwM0M4NENENEUxMUVGQjVEMkE5OTg3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnPcVMA0GCSqGSIb3DQEBCwUA
A4IBAQCDwQC/cnam2UuWQOKWU3DNcUV00NzRay+RNewMHXIm4D5ZFSUP6CP7GKq0
NsjU0gPwkcabmxHMPrkvHCKxE8U7TwdO9A9uemCwmE2SLzBnweSFr66i3IpzVhQF
6JFQIDrr5l7wxhTwr+mOYMeOw9sR0e6Wcb/3KgPJIlp5wJoNLEtIAXC2dDPRAX/C
kFRYtKb3Hk94KZbAPYcy9PE9A/g7kmQyfcK7eqJCQfNofuUDmd3dWCIIirfhzs4O
jjWgjjvWVqmuKKysvodgtJVoxYZadcOlQU6HAc8EwAEVtPit0Xy9tKaeZZKLVeix
KUItOHKJCqWVm8x5PItM+Ejq2vpf
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:52:02 2025 by rpki-client