Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/02DC082011F511F08959744A762E951A.roa
File: 02DC082011F511F08959744A762E951A.roa (raw, json)
Hash identifier: wRN+zzsOE6cnz7Z+B0D675RB5mpiQqflRMulpP7JoJQ=
Subject key identifier: 89:A4:DB:2E:CE:C7:10:05:1E:2D:0A:B1:13:40:CA:84:46:65:02:66
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014A40
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/02DC082011F511F08959744A762E951A.roa
Signing time: Sat 05 Apr 2025 08:07:26 +0000
ROA not before: Sat 05 Apr 2025 08:07:20 +0000
ROA not after: Wed 07 May 2025 08:07:20 +0000
asID: 44901
IP address blocks: 156.229.125.0/24 maxlen: 24
156.229.239.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 29 Apr 2025 00:26:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84544 (0x14a40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 5 08:07:20 2025 GMT
Not After : May 7 08:07:20 2025 GMT
Subject: CN=67f0e4be-0dc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9a:b0:77:70:52:c1:c6:3f:19:dd:0b:6f:10:
99:08:7f:59:f9:42:e9:90:a3:d8:69:b8:ae:c1:fe:
e4:4d:c8:8d:6a:ec:a1:82:b2:22:1e:23:22:e9:f0:
81:a8:66:0d:56:af:ca:7a:f1:60:c1:01:be:bc:0e:
db:80:8e:1b:5f:54:07:25:d2:94:33:e9:fd:5a:73:
8d:58:b3:f0:86:09:c7:90:fe:61:8f:f8:ac:21:9e:
54:16:f1:79:bf:3f:06:56:45:a1:c3:68:92:fe:7a:
94:02:b6:d3:00:60:b1:09:f0:8f:34:4c:66:a3:62:
91:4e:11:68:2b:92:f5:08:b7:ee:66:cf:f9:a5:3b:
2b:15:3b:f4:cb:3a:59:0c:8e:a4:73:07:b8:be:66:
b4:a4:d1:d1:4c:c5:ea:c7:ab:d4:29:0d:11:55:8b:
2a:cb:4a:72:82:9f:a1:30:39:13:fa:da:f5:11:7e:
3e:2f:98:21:18:b2:30:75:6f:fc:e5:c5:ed:78:0c:
15:6f:ea:62:a1:34:98:8f:64:43:ac:45:ca:1a:d0:
c3:57:f2:45:e3:20:8e:10:08:f4:77:b4:1c:07:70:
5e:61:70:53:03:43:2e:ad:7d:c7:b7:7d:a1:80:2e:
4a:1f:de:a6:87:28:a6:d4:6e:4c:b4:75:6c:51:e8:
ab:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:A4:DB:2E:CE:C7:10:05:1E:2D:0A:B1:13:40:CA:84:46:65:02:66
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/02DC082011F511F08959744A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.125.0/24
156.229.239.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:38:50:40:07:ad:91:45:7d:ff:69:21:8f:9a:af:eb:04:23:
7d:1b:4f:53:ea:f1:74:0c:3b:e8:2d:b5:4e:4c:34:df:09:a5:
14:cf:ae:0c:e4:b4:83:57:6f:ce:ea:85:63:3f:e1:2f:5e:fc:
a5:76:34:38:7a:d0:7d:d4:02:13:94:6a:10:a4:b9:77:e7:07:
0e:aa:80:04:7d:9f:f2:b7:cd:a5:4f:b7:65:75:5a:23:97:e0:
87:e9:80:7f:ed:3d:37:47:66:2e:0f:86:fe:84:81:ed:0b:7b:
b7:a5:23:c6:3f:90:c7:58:43:c8:66:6e:06:ee:87:22:23:56:
ab:62:97:28:1a:e6:63:b9:0e:3d:9a:cf:d6:bc:6d:cf:90:7b:
45:91:04:0d:f1:9f:1f:d7:b7:d8:aa:b1:72:0b:2c:3a:0f:b2:
75:b9:ce:37:e6:ac:b7:bd:7a:73:0a:37:0b:dc:0f:5a:c0:cb:
8f:bd:0e:68:6b:9e:8b:28:12:0e:9d:dd:2c:30:f6:fc:f6:32:
0d:07:95:fa:1f:a5:50:c0:63:a5:f3:3b:34:ce:d3:93:4e:59:
81:c4:1d:56:d2:07:43:bd:e2:3e:f5:11:7c:55:da:78:3c:22:
54:51:de:a7:9e:82:e3:df:40:d3:52:8b:9c:31:dd:ef:5f:d6:
46:11:6e:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:37:51 2025 by rpki-client on console.sobornost.net