Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B2A23868F5A511EF8968926E762E951A.roa
File: B2A23868F5A511EF8968926E762E951A.roa (raw, json)
Hash identifier: B2bki1CVpAnT1w2wsmwfZRwKyWJnK4sNhfupeaXaldE=
Subject key identifier: D4:54:C5:09:58:BA:7F:C8:B2:81:82:7F:9B:9D:C5:47:F6:0B:11:1E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013C39
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B2A23868F5A511EF8968926E762E951A.roa
Signing time: Fri 28 Feb 2025 07:29:09 +0000
ROA not before: Fri 28 Feb 2025 07:29:05 +0000
ROA not after: Thu 19 Feb 2026 07:29:05 +0000
asID: 984
IP address blocks: 156.230.24.0/24 maxlen: 24
156.230.27.0/24 maxlen: 24
156.230.31.0/24 maxlen: 24
156.230.139.0/24 maxlen: 24
156.230.146.0/24 maxlen: 24
156.230.154.0/24 maxlen: 24
156.230.155.0/24 maxlen: 24
156.230.158.0/24 maxlen: 24
156.230.163.0/24 maxlen: 24
156.230.171.0/24 maxlen: 24
156.230.175.0/24 maxlen: 24
156.230.180.0/24 maxlen: 24
156.231.9.0/24 maxlen: 24
156.231.67.0/24 maxlen: 24
156.231.134.0/24 maxlen: 24
156.231.162.0/24 maxlen: 24
156.231.166.0/24 maxlen: 24
156.245.121.0/24 maxlen: 24
156.247.48.0/24 maxlen: 24
156.247.57.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80953 (0x13c39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 28 07:29:05 2025 GMT
Not After : Feb 19 07:29:05 2026 GMT
Subject: CN=67c165c5-0df2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a6:3e:8d:13:8a:29:97:be:05:54:6b:b9:b7:
28:c7:a3:86:68:cb:ae:c0:7a:ae:f3:83:e9:e8:75:
d0:24:aa:38:42:5e:2b:3f:7a:88:1e:d2:63:6c:24:
ac:78:45:c6:8c:2f:79:28:1a:36:e3:18:a1:fe:5c:
0a:fc:25:8b:7c:10:cb:a6:91:b2:6d:d4:4b:2e:ff:
d6:85:6e:b2:12:ac:c8:b2:15:e8:ee:60:d8:12:07:
ae:b3:97:54:be:cf:6c:7e:b9:e9:25:a5:7a:0e:12:
41:67:22:10:2f:06:c3:cb:9a:99:e9:da:11:4f:59:
dc:a6:fe:90:93:3e:1b:d1:7f:de:1f:a7:b7:1b:12:
d8:06:f8:03:b5:ac:0e:01:b8:e3:8e:a0:63:4a:bf:
25:21:d4:68:2c:42:9d:89:e0:21:7e:5d:30:38:b3:
75:0a:02:12:7c:41:6d:47:e0:84:17:f3:47:a8:f3:
bd:a6:9b:8c:bd:b5:cf:41:a3:3e:97:47:1d:0f:c1:
e6:a7:38:90:32:51:81:50:76:4e:3c:ce:27:45:4c:
2d:67:e1:b2:18:dd:1c:be:db:65:7c:30:30:b5:7e:
9e:c7:e4:88:4e:3b:9f:3a:c2:55:ee:01:c0:e2:8c:
dd:62:0b:2a:01:ab:9d:5d:c3:de:f0:bf:af:ee:59:
bd:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:54:C5:09:58:BA:7F:C8:B2:81:82:7F:9B:9D:C5:47:F6:0B:11:1E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B2A23868F5A511EF8968926E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.24.0/24
156.230.27.0/24
156.230.31.0/24
156.230.139.0/24
156.230.146.0/24
156.230.154.0/23
156.230.158.0/24
156.230.163.0/24
156.230.171.0/24
156.230.175.0/24
156.230.180.0/24
156.231.9.0/24
156.231.67.0/24
156.231.134.0/24
156.231.162.0/24
156.231.166.0/24
156.245.121.0/24
156.247.48.0/24
156.247.57.0/24
Signature Algorithm: sha256WithRSAEncryption
59:ca:82:d5:3e:78:85:b7:b5:61:90:56:11:d6:df:29:93:98:
c6:cf:d5:70:1a:55:51:4a:3c:f5:f6:bf:de:f4:f3:24:c4:fb:
b1:bb:26:4c:40:28:6e:3c:c1:6f:ef:08:1d:4b:9e:14:0e:62:
c2:7f:be:97:51:ae:5c:7f:dd:fb:cb:28:2c:03:9c:c9:23:00:
5d:b3:31:c7:ee:80:9f:28:4e:b9:4f:b4:93:78:8a:15:c1:cd:
f6:61:9b:86:6f:f0:bd:9f:d6:c8:0d:69:4a:52:e7:d2:a8:c1:
1b:e0:e8:9c:e4:9a:69:f4:53:c0:fd:3d:61:86:06:26:e7:51:
c2:c2:6c:34:40:85:7e:c1:fa:2c:6a:21:da:c9:b1:01:0b:64:
6f:2a:c8:87:34:6f:e1:54:e2:11:f4:b5:9e:1a:a2:44:b3:a4:
43:61:fc:e0:54:2c:9d:40:51:ba:16:09:24:cc:a5:8f:69:f2:
40:da:7a:04:f4:da:3f:3f:28:af:0b:a7:46:00:22:55:4d:90:
5b:d3:14:f5:60:24:0e:de:b9:55:90:ed:53:eb:8d:81:d6:eb:
5f:5b:bd:a1:d5:7b:a8:99:85:ff:f1:b8:8f:f1:e7:af:eb:d2:
60:43:54:c7:2f:a4:78:10:51:43:4d:b6:7f:43:68:8c:9e:e4:
ad:76:8f:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:19:42 2025 by rpki-client