Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C2304244F46411EF98814A48762E951A.roa
File: C2304244F46411EF98814A48762E951A.roa (raw, json)
Hash identifier: SCThoGqF1L5V+qm38udn+ARkQJBbYDoHxyjYJ6yRIxI=
Subject key identifier: 60:65:FB:C3:7B:6B:22:9D:E9:AE:06:F8:7B:20:84:B7:D7:61:FE:0E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013567
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C2304244F46411EF98814A48762E951A.roa
Signing time: Wed 26 Feb 2025 17:11:46 +0000
ROA not before: Wed 26 Feb 2025 17:11:43 +0000
ROA not after: Sat 19 Feb 2028 17:11:43 +0000
asID: 17561
IP address blocks: 156.250.56.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79207 (0x13567)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 26 17:11:43 2025 GMT
Not After : Feb 19 17:11:43 2028 GMT
Subject: CN=67bf4b52-62b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:d1:06:c0:85:38:9b:f9:a6:07:fb:ce:95:a1:
4f:6b:ef:cd:8d:a4:78:15:07:ca:2a:c0:27:75:13:
b8:b4:29:47:55:c4:a2:2a:c5:96:a2:51:71:4e:92:
d3:c6:d3:a3:e7:b2:b1:22:50:23:b2:2b:69:07:c2:
35:46:ef:dd:8d:97:b9:1d:b9:d6:01:38:c7:25:83:
e6:74:59:88:c1:97:ff:da:14:9c:13:5f:d2:9f:ab:
fc:3a:70:5c:cd:16:13:e4:2d:df:4c:ad:5d:41:bc:
46:5c:d6:8b:f4:49:66:d2:98:f4:82:f1:bc:a6:a8:
17:d0:91:51:3b:2e:9e:e3:31:fe:18:47:ae:e4:4d:
b9:e5:27:92:98:0a:83:52:2a:1b:32:b8:da:67:eb:
43:82:82:26:64:23:db:63:aa:cc:c9:07:f5:b2:f6:
5c:c1:15:7f:23:81:c2:92:80:e5:3f:33:0b:a1:77:
79:a2:3a:6f:4d:5b:05:3a:ec:c1:63:7d:a4:99:de:
41:ac:a7:49:c0:c6:2b:08:c1:22:c7:be:38:0d:32:
b4:2a:94:bd:fe:15:21:d5:89:94:c2:2d:38:bb:5b:
ed:f0:12:9a:3f:83:b8:4b:7c:af:d9:fe:7d:41:bc:
00:97:3f:2e:5f:56:49:c5:5d:57:76:14:bf:54:07:
f1:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:65:FB:C3:7B:6B:22:9D:E9:AE:06:F8:7B:20:84:B7:D7:61:FE:0E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C2304244F46411EF98814A48762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.250.56.0/24
Signature Algorithm: sha256WithRSAEncryption
92:4c:af:7a:60:b7:e9:80:26:a5:3d:2f:d7:97:d0:7c:0d:32:
d1:5b:57:ab:24:24:ca:e0:b8:c2:c4:a7:e9:4f:09:93:ab:8b:
7f:92:48:5b:e3:87:d8:83:4e:38:b7:23:5f:2f:34:bd:d9:5a:
67:b6:2c:0a:26:12:b2:38:33:4c:ad:bc:56:cb:73:24:ed:4d:
5e:2e:71:a5:70:87:57:b7:40:8c:f0:55:74:13:39:d8:d1:50:
34:e1:a4:b6:48:20:48:f9:56:f3:4c:0f:5d:c6:6c:6e:23:56:
8e:7f:1c:5f:3d:dc:23:51:e9:24:d4:67:b1:64:74:85:59:28:
dd:a5:8f:60:e4:5f:f5:ed:86:ea:1a:17:10:87:98:b3:f4:71:
58:05:64:a2:4b:5c:a8:83:f9:97:ae:b3:c6:ae:59:26:98:6e:
d4:ad:58:4a:b5:5c:f7:71:d7:64:44:1b:2d:ba:5e:91:f1:03:
12:8f:6e:f5:fd:f7:ff:02:45:aa:00:95:e9:9c:51:f1:16:e1:
96:bf:a2:87:0e:5f:6a:13:b5:7a:28:62:cf:27:8f:a2:89:ee:
cd:1a:46:1a:25:ff:24:26:70:d3:2c:c8:f4:34:ce:ba:19:7f:
c1:fc:88:4b:46:74:21:bc:1f:4e:a2:0d:33:25:e8:a5:93:9d:
18:81:c4:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:19:41 2025 by rpki-client