Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3C1F839E1DCD11F0941B31D7DAE4EC9C.roa
File: 3C1F839E1DCD11F0941B31D7DAE4EC9C.roa (raw, json)
Hash identifier: 6FTpAquqTVOMdBdKc+LYzynpbUq9ngc6oPi5Uj0Nl1A=
Subject key identifier: 4E:95:FA:3B:A9:69:6D:79:70:3A:D8:16:F0:A3:E1:DF:33:D3:41:96
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014D99
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3C1F839E1DCD11F0941B31D7DAE4EC9C.roa
Signing time: Sun 20 Apr 2025 09:52:57 +0000
ROA not before: Sun 20 Apr 2025 09:52:52 +0000
ROA not after: Mon 26 May 2025 09:52:52 +0000
asID: 274728
IP address blocks: 156.235.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85401 (0x14d99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 20 09:52:52 2025 GMT
Not After : May 26 09:52:52 2025 GMT
Subject: CN=6804c3f8-7b4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ee:98:7a:78:4f:e9:ae:38:8a:c8:f5:7c:a4:
37:b9:3e:9e:ac:0c:a7:56:be:a1:bd:53:25:8c:5e:
7c:55:0a:23:2c:2f:d0:1a:f6:d0:4d:d7:16:38:0a:
08:ee:4f:50:a7:4a:00:36:23:23:53:3d:9e:96:e3:
a9:62:35:45:63:63:ee:ba:b9:8f:c9:9c:8c:ab:b1:
67:d0:ad:30:2a:8d:1a:4f:d4:71:d1:50:60:4c:d1:
f7:27:0c:20:58:56:f4:16:93:ba:65:fd:51:86:89:
fd:85:33:38:d2:84:f0:f8:e4:13:8b:79:99:3b:38:
cf:4f:a0:45:23:bd:18:0d:56:17:c1:86:17:bb:7b:
68:05:fd:0c:bb:a7:91:15:9c:c2:b0:e8:85:95:ca:
0b:57:86:1b:96:ae:d6:79:0e:fe:d0:e7:e1:14:af:
8d:b1:ec:b5:01:9e:30:d1:3d:cf:6b:21:57:9d:d2:
0f:86:2f:21:2a:05:6e:dd:2b:09:de:38:3c:da:05:
76:b8:75:91:01:ba:05:40:ce:a0:62:f5:a0:dc:0f:
d9:2f:a6:58:2f:12:06:fe:94:a2:fd:80:3f:8b:67:
aa:37:f8:ce:ad:fc:28:2b:26:11:77:51:49:90:f2:
21:ae:57:4a:18:c9:20:9d:f7:2c:5f:42:19:9a:b5:
1e:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:95:FA:3B:A9:69:6D:79:70:3A:D8:16:F0:A3:E1:DF:33:D3:41:96
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3C1F839E1DCD11F0941B31D7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.235.49.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:a5:d7:ff:96:cc:0a:52:de:c3:48:4f:49:83:12:cc:63:ca:
d3:a7:8e:d1:bc:b3:24:f9:e3:ab:1a:36:e0:8d:fe:aa:49:ed:
35:5e:05:68:2c:dd:87:20:3e:a4:e3:89:21:d2:a8:b0:8c:ae:
0a:59:7f:9c:4b:8d:28:aa:52:26:05:6f:97:0e:36:f4:13:fc:
5e:54:db:83:f5:cb:df:a5:c0:99:33:db:22:99:f6:75:30:17:
6f:f8:c1:e1:4b:c0:d6:ef:37:82:60:3a:01:ea:30:c8:1b:44:
ee:15:07:9b:46:c6:dd:81:c5:ee:17:af:51:d2:74:6a:20:95:
88:88:d8:c4:c5:b2:19:03:22:87:ce:fe:3a:a8:a9:b3:06:3e:
33:57:d7:b5:b4:1b:e6:54:3d:95:78:a6:91:d9:d0:57:71:6c:
49:6f:27:2d:ec:ae:dd:ab:67:b6:d0:d6:92:ea:66:c2:f6:8c:
23:42:4d:48:f4:66:c8:30:17:cd:53:e9:cc:14:70:f7:45:44:
05:0b:5b:f1:61:f2:91:77:2a:e1:3f:79:43:ff:5e:2a:f2:6e:
d8:23:4c:00:39:4f:b5:ae:a1:11:3f:fb:5d:27:bb:27:08:e8:
d5:b5:49:52:1e:4a:40:d9:73:fe:d3:28:40:64:21:1b:ea:d6:
27:a8:c7:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 06:19:13 2025 by rpki-client on console.sobornost.net