Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FDE110301A9211F0A8572BED6DB8BCC6.roa
File: FDE110301A9211F0A8572BED6DB8BCC6.roa (raw, json)
Hash identifier: nPZygcpOKzhaUXCMzi0oqYHhm7gVYbalUk5B9sYZv2s=
Subject key identifier: 00:06:1D:66:BD:9E:88:91:70:3E:D9:0B:06:E6:C3:B1:A0:C6:FB:C5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014C9D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FDE110301A9211F0A8572BED6DB8BCC6.roa
Signing time: Wed 16 Apr 2025 07:18:28 +0000
ROA not before: Wed 16 Apr 2025 07:18:23 +0000
ROA not after: Wed 23 Apr 2025 07:18:23 +0000
asID: 28419
IP address blocks: 156.233.28.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 21 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85149 (0x14c9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 16 07:18:23 2025 GMT
Not After : Apr 23 07:18:23 2025 GMT
Subject: CN=67ff59c4-3c05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c3:16:ec:c6:17:2d:bb:44:05:17:d0:be:55:
b4:e5:35:91:7c:72:39:73:f0:b6:72:2f:be:96:27:
15:06:06:94:b7:6c:45:72:ec:d1:95:d5:77:b5:cb:
65:aa:14:55:17:bf:0f:78:af:24:66:95:d0:d4:38:
d8:81:69:f5:95:38:4a:37:02:ee:cd:a6:4b:f7:98:
2c:39:a4:54:a7:0b:a7:5e:30:e3:d6:68:9b:c8:0a:
bc:38:73:14:18:d7:3a:76:b9:c6:4e:f7:b0:55:3d:
f1:8d:48:cf:ed:38:2c:7b:9f:a1:b1:00:bb:5e:13:
04:ab:6a:d4:77:e7:af:a6:95:96:e0:74:fe:92:65:
67:c4:b7:c5:fb:b2:98:51:22:0d:c8:0f:90:b3:68:
2d:3a:fd:81:ab:49:6a:d5:ad:cc:f0:14:a5:ce:de:
2d:8e:c6:46:e0:3f:6d:63:6a:97:6f:85:14:6b:7a:
7f:bf:00:99:74:f7:2e:a7:96:fb:13:1d:83:f1:a4:
49:37:dc:73:f1:a7:c0:10:02:3f:df:a2:1b:82:42:
3e:93:a0:12:27:93:c2:86:cf:7a:1a:c9:72:ca:0b:
9d:30:08:e7:19:4b:35:61:3c:f8:36:66:82:39:13:
0f:56:41:d5:b8:fa:09:93:a7:32:04:3d:af:a2:18:
44:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:06:1D:66:BD:9E:88:91:70:3E:D9:0B:06:E6:C3:B1:A0:C6:FB:C5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FDE110301A9211F0A8572BED6DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.28.0/22
Signature Algorithm: sha256WithRSAEncryption
20:f7:2f:d1:02:76:fd:f9:b9:17:08:85:16:cd:1c:af:76:73:
0a:e6:bd:ce:2d:b6:6b:53:f8:0d:15:08:ac:d7:9e:f7:ca:39:
ad:76:eb:c6:df:38:53:6a:6e:e3:f0:28:ca:1e:9e:ff:1b:a1:
94:e8:3e:c4:02:d8:26:73:2b:7c:93:40:0c:a2:3c:08:ce:64:
8a:91:d3:63:7b:2c:b7:72:90:6c:c1:1e:10:18:f9:ea:fc:98:
9c:36:71:b2:bb:88:02:e4:83:01:af:01:99:30:dd:b8:34:56:
42:22:59:d2:78:44:bf:d8:c2:d4:b6:66:54:61:04:b8:81:8b:
7b:e9:d7:d8:f8:82:4b:12:5c:af:1e:4b:20:7c:a5:21:76:f6:
5a:18:54:cb:c6:7f:01:2d:38:d7:a1:92:1e:18:4a:3f:cf:84:
d5:e6:13:1c:64:08:0d:06:50:54:87:4f:25:3b:97:df:01:c0:
5d:25:73:9d:f0:d8:20:b2:41:cf:d9:2c:40:69:44:95:c9:68:
27:f7:66:b7:b3:f2:e2:82:8c:c0:f1:21:59:2e:da:61:31:6c:
81:49:3a:40:a9:78:0e:ad:67:a6:b9:e8:e5:b7:09:6d:80:80:
99:ba:e1:44:ed:4a:34:43:90:7d:24:48:b2:92:38:4c:dc:4d:
9c:ff:6b:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 10:09:00 2025 by rpki-client