Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EF5763DCF61311EFB6C0145B762E951A.roa
File: EF5763DCF61311EFB6C0145B762E951A.roa (raw, json)
Hash identifier: 5PemfO0Z9VAzng25AgP2jbXPFseN4A5KK2r4B/XJyQw=
Subject key identifier: 67:60:77:4C:99:CD:DE:B0:9B:44:A0:6A:6E:1C:07:CD:8F:28:64:D0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013F4B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EF5763DCF61311EFB6C0145B762E951A.roa
Signing time: Fri 28 Feb 2025 20:38:15 +0000
ROA not before: Fri 28 Feb 2025 20:38:12 +0000
ROA not after: Fri 04 Apr 2025 20:38:12 +0000
asID: 60223
IP address blocks: 156.229.232.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 20:38:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81739 (0x13f4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 28 20:38:12 2025 GMT
Not After : Apr 4 20:38:12 2025 GMT
Subject: CN=67c21eb7-214d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:80:0c:36:8b:54:d3:c0:9e:02:03:13:11:f0:
82:58:16:0c:92:2c:e4:27:b8:56:06:67:a8:3d:a2:
20:a2:c3:fc:15:cb:00:48:56:1c:1a:72:bb:7c:f0:
2d:cf:1b:3d:c8:5c:96:f0:7d:1a:57:65:39:ab:09:
83:c0:1c:c0:b4:44:24:f4:0b:7d:d3:76:65:3d:ba:
ed:38:7b:98:5b:97:49:58:d8:c0:f5:89:a5:12:f7:
59:e6:6e:f2:80:75:4c:68:fe:83:33:2d:20:32:2d:
90:59:5a:5c:4a:55:f5:ee:ed:a0:6c:3f:76:8f:ff:
6f:cd:d4:a4:4b:75:7d:bc:34:c4:b5:b9:e1:0d:d9:
76:37:29:3b:bc:db:f8:95:20:a2:fc:c4:e6:c7:f4:
b5:22:03:7c:33:58:4c:0b:b6:a1:d3:c2:09:de:d3:
6a:45:f7:7d:45:ea:83:ee:0d:7a:31:e2:6b:3b:eb:
d0:06:fb:02:37:bc:b3:d7:50:ae:a6:13:5c:94:d1:
80:3c:91:12:b7:c7:be:02:b6:29:39:c2:84:62:ae:
4d:80:fc:f1:93:f8:6e:b1:d1:7d:fb:71:bf:0f:78:
fc:dd:6a:43:66:13:3c:b2:f9:ad:90:e1:6f:21:71:
b1:6a:43:4c:1b:55:f3:46:16:c4:bc:48:20:1b:03:
21:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:60:77:4C:99:CD:DE:B0:9B:44:A0:6A:6E:1C:07:CD:8F:28:64:D0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EF5763DCF61311EFB6C0145B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.232.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:b5:41:e4:be:5c:82:97:92:5d:52:26:19:44:f6:5b:40:5f:
2d:e6:34:8b:3e:f9:ff:19:1b:7a:9c:f2:1e:9b:a1:18:63:86:
cf:98:10:f4:69:21:d4:4c:8b:12:8a:aa:e4:89:1c:4b:df:96:
24:b3:d2:80:f1:b5:28:39:94:35:dc:f3:4f:22:1e:0b:22:9e:
ee:4d:f6:34:fd:60:82:0c:5a:f7:56:0d:69:8b:7c:28:03:09:
e3:b3:e1:4f:a6:3f:01:b0:2a:36:e4:e8:72:d0:26:b7:c8:b7:
4e:f1:84:89:a5:d2:b8:a1:bf:39:3b:8e:d1:51:43:bd:06:39:
ce:29:63:f4:6a:d5:92:84:2f:63:32:0f:ad:b7:a0:92:8b:31:
50:b1:68:c8:1d:f5:6c:f4:67:5b:4e:be:ff:3d:45:42:f2:c7:
47:f5:8e:68:97:af:06:f0:19:94:c2:bb:ed:55:57:ec:33:9b:
0b:35:bd:5b:c1:f2:27:b3:a1:12:d5:35:f2:2c:5b:0a:34:14:
90:6d:f8:ba:6c:a0:3c:62:c1:fc:6c:0c:f3:6e:84:7b:35:b7:
0c:cb:cd:91:af:b1:46:bd:87:e4:bf:dc:47:b4:b7:db:ea:36:
ad:fd:07:33:07:3e:0f:19:63:20:fd:d7:9c:a0:9c:cd:07:31:
1f:34:11:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 07:26:15 2025 by rpki-client