Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/530D095CC99311EFB9FF3C74762E951A.roa
File: 530D095CC99311EFB9FF3C74762E951A.roa (raw, json)
Hash identifier: wrvKX6Yy/8exo6uL/c548eiy0+Bujlz0k+BQ+PT4IlI=
Subject key identifier: 91:55:A8:2B:0B:09:EB:86:8B:FB:16:CA:A4:63:B6:1D:6C:45:B6:11
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F5F9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/530D095CC99311EFB9FF3C74762E951A.roa
Signing time: Fri 03 Jan 2025 05:26:46 +0000
ROA not before: Fri 03 Jan 2025 05:26:43 +0000
ROA not after: Mon 13 Dec 2027 05:26:43 +0000
asID: 17561
IP address blocks: 156.233.129.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62969 (0xf5f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 3 05:26:43 2025 GMT
Not After : Dec 13 05:26:43 2027 GMT
Subject: CN=67777516-7216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:71:ad:22:34:96:97:4e:07:15:8f:86:a6:15:
48:ea:46:44:36:6c:3e:a1:d1:33:7b:76:17:e6:f4:
3f:fc:59:cb:0a:20:1b:d0:bb:f9:6f:a3:8e:23:06:
de:4b:d3:4c:58:73:15:76:75:0f:d4:92:f0:c2:ba:
b5:8b:41:6d:5c:38:5e:99:fd:82:c6:30:50:b5:7e:
03:cd:d9:77:e8:68:0e:f9:6e:d1:3f:a1:25:99:93:
f9:b9:53:da:c5:5b:6c:e8:43:d5:cb:7a:79:ed:85:
85:38:03:fa:9f:a2:8e:ff:b9:cf:3a:ab:7c:18:a6:
b0:8c:45:d4:0c:c4:f6:5d:77:9a:17:be:a8:ec:e3:
9d:f4:a2:c9:dc:13:14:c0:d3:32:a7:f5:58:24:e9:
d7:36:3f:b8:f4:47:13:77:ac:ce:13:2d:11:60:fd:
64:b3:3b:73:a5:db:64:5d:d4:ff:1e:c1:f7:8b:a3:
14:83:b5:50:80:20:15:97:eb:5f:cc:c1:8f:f0:57:
a1:13:23:bf:52:c0:a9:5c:ac:54:9f:9d:e6:df:65:
60:b6:3e:54:3d:cb:7a:37:fb:eb:b6:c2:81:ed:4f:
84:22:7e:9b:38:2d:8c:3d:a0:1d:6f:4a:99:ce:54:
c4:58:53:8c:a8:df:e5:12:fe:74:25:db:27:8e:5f:
ac:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:55:A8:2B:0B:09:EB:86:8B:FB:16:CA:A4:63:B6:1D:6C:45:B6:11
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/530D095CC99311EFB9FF3C74762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.129.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:0e:bf:68:ab:39:65:a8:f9:42:e5:3d:12:54:b7:d7:88:5c:
df:7d:3e:08:fb:d8:70:3e:20:cc:46:46:ce:d5:31:6f:79:b8:
3a:a3:50:66:3d:71:8f:0d:51:ed:d7:a3:0f:18:d8:1b:4b:4a:
ef:f9:52:82:f8:2e:79:07:b2:1f:c6:82:31:a1:08:ed:d7:6a:
97:8f:b4:98:1b:a7:76:07:fc:08:1a:98:8b:51:ac:67:7b:b6:
5e:a8:ea:a2:16:fd:52:91:52:d8:1c:58:99:a2:26:3b:13:e7:
cf:c5:84:b0:a1:5a:e9:59:7d:ee:48:fc:ee:f2:74:e2:65:40:
49:da:ac:40:08:c3:98:18:d4:85:86:1b:d2:7f:9d:77:97:92:
8e:ae:97:e0:91:21:71:75:a2:da:07:2a:b1:4a:21:e6:b7:dc:
ec:0e:9d:c7:ad:3d:cb:28:33:18:cd:66:c6:54:22:69:21:16:
f0:80:6e:ac:9d:5f:ec:28:85:00:fc:46:b6:58:47:92:3e:1b:
d8:31:3f:3f:df:f2:d4:4e:ee:5a:d2:58:cd:53:4b:73:43:f0:
2c:83:8e:ef:57:7e:dd:ab:1d:c3:ec:5a:8f:ee:07:2a:d5:eb:
0b:94:08:c9:52:16:d5:c3:86:e1:19:94:bb:19:6b:5f:11:a7:
bb:33:a8:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 08:49:45 2025 by rpki-client on console.sobornost.net