Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/13BFCCE017A311F0B8C55CC46DB8BCC6.roa
File: 13BFCCE017A311F0B8C55CC46DB8BCC6.roa (raw, json)
Hash identifier: iRIBV+521/O2EcANPk5O5OVmeae6+DMPSbtL+j8wa0A=
Subject key identifier: 2A:6E:F0:B4:51:AB:9B:74:B9:ED:02:71:7A:CA:E7:6D:33:A3:3A:DB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014BD4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/13BFCCE017A311F0B8C55CC46DB8BCC6.roa
Signing time: Sat 12 Apr 2025 13:36:03 +0000
ROA not before: Sat 12 Apr 2025 13:35:58 +0000
ROA not after: Mon 19 May 2025 13:35:58 +0000
asID: 57043
IP address blocks: 156.253.34.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84948 (0x14bd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 12 13:35:58 2025 GMT
Not After : May 19 13:35:58 2025 GMT
Subject: CN=67fa6c43-de21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:1c:4b:d3:b1:f7:79:ca:6c:93:46:33:96:e5:
aa:0c:b5:9a:88:e4:8d:76:cc:1f:81:02:f9:2e:9a:
65:5e:97:bf:61:ce:57:0d:7b:3a:29:3c:02:3d:18:
5f:32:71:87:ba:ad:bc:69:d7:bb:f8:d9:71:69:b2:
cc:c3:7c:ec:76:67:44:cb:7a:6a:dd:de:83:c8:8f:
96:45:aa:98:8b:f9:84:5d:12:71:55:4b:35:b3:14:
d3:66:ae:40:14:c2:97:d6:2a:e8:ae:a5:f8:2c:da:
4b:32:36:07:f8:a8:0f:f3:ff:43:88:f8:f4:89:9f:
e4:f4:7b:82:ef:77:24:18:f5:83:02:ba:35:7f:b9:
83:bd:dc:42:b1:9b:5c:34:a3:a0:0f:7a:09:1f:05:
50:3d:20:87:8f:ff:4b:db:bc:bf:2f:1c:95:12:19:
fe:e2:6e:f0:ff:2c:83:31:5c:48:6d:3d:b2:a2:5e:
35:95:d5:67:d8:73:db:78:af:4b:31:48:cb:d8:6d:
19:16:53:5f:e3:9c:d4:ac:c3:45:1d:12:04:2a:60:
02:97:2d:14:b8:6c:5a:ec:b0:08:8a:28:eb:06:0e:
78:59:45:ba:5e:89:b9:11:ac:52:c9:fd:ba:9f:30:
93:33:98:88:2d:56:04:d0:f7:41:a9:98:f8:eb:41:
84:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:6E:F0:B4:51:AB:9B:74:B9:ED:02:71:7A:CA:E7:6D:33:A3:3A:DB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/13BFCCE017A311F0B8C55CC46DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.253.34.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:fc:b8:2f:9c:27:d3:73:5d:a6:62:2e:0d:ad:1d:26:3e:22:
f6:d0:b8:ea:43:1d:09:89:84:8a:25:7a:0b:9d:90:99:24:0b:
27:03:a7:40:0b:1b:cc:d4:af:25:49:ac:bb:21:44:5a:5f:e7:
f7:bc:3c:92:84:7b:53:13:00:ec:a3:70:8c:94:fe:07:bd:70:
fd:a0:fb:58:97:c9:87:73:e3:36:b5:5d:e1:80:58:5c:1c:3b:
a2:80:00:ce:05:aa:86:db:b1:5f:af:0d:2c:29:43:84:12:5a:
e3:f4:9a:5a:5b:1e:cc:fe:75:7c:9e:86:71:61:58:a8:cc:ba:
f6:7c:f5:8e:9a:4a:ab:f4:cf:9d:6e:df:94:a7:ee:42:9a:ed:
66:5a:09:31:06:85:26:55:52:ac:39:a2:30:9a:30:c4:52:28:
e7:82:ba:a4:13:92:9b:23:70:ec:fd:b8:66:8b:ef:18:64:43:
85:c6:ae:4c:9c:31:e7:4b:a2:e0:92:7a:4d:0d:d6:e8:f7:86:
a5:35:52:55:aa:60:fb:4e:ff:8d:43:55:63:ac:7f:7b:f8:7c:
75:2f:5d:6b:07:1c:d7:03:68:e3:32:5d:41:67:57:78:76:6f:
aa:1d:40:1b:ab:3e:15:7b:9b:9f:a9:80:82:e8:28:32:a4:bb:
6d:8c:27:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 18:05:18 2025 by rpki-client on console.sobornost.net