Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B8F01B241D0311F0A41EC395DAE4EC9C.roa
File: B8F01B241D0311F0A41EC395DAE4EC9C.roa (raw, json)
Hash identifier: 91uoEzIHoj8uUQO81C9J7DVEdeMlmcCj8asYnQipRVM=
Subject key identifier: 0D:D6:AB:37:3E:AB:70:E5:2A:DB:38:97:4D:BA:90:95:67:8C:82:66
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014D94
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B8F01B241D0311F0A41EC395DAE4EC9C.roa
Signing time: Sat 19 Apr 2025 09:50:28 +0000
ROA not before: Sat 19 Apr 2025 09:50:23 +0000
ROA not after: Thu 01 May 2025 09:50:23 +0000
asID: 139880
IP address blocks: 156.254.32.0/19 maxlen: 24
156.254.64.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85396 (0x14d94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 19 09:50:23 2025 GMT
Not After : May 1 09:50:23 2025 GMT
Subject: CN=680371e4-ea0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f0:ee:ba:e3:d5:69:be:37:9e:d7:e1:6a:97:
d3:16:c3:f5:75:96:fe:2b:e2:a3:e7:53:35:72:31:
e1:4f:d1:07:86:8d:ec:ff:57:55:9b:92:be:f4:ae:
0a:a9:cd:36:71:cd:be:65:36:96:1c:20:a6:d6:4d:
a5:dc:a5:b1:27:f3:24:16:16:e6:2e:fa:fd:24:b0:
f8:b1:63:fc:64:ba:1e:fc:b6:d8:0e:fb:f6:87:3b:
8a:04:d9:0d:d2:ff:9c:f2:21:e8:c3:d4:c6:9a:3c:
5d:41:d2:cc:df:e0:bd:49:e9:a3:b5:16:5e:9d:31:
d9:c5:c8:59:80:8b:01:1f:2b:c0:9c:3d:32:a8:5c:
5a:11:0d:35:76:a4:35:93:70:d6:d4:14:36:cf:d5:
54:54:80:6a:ba:2d:cc:e8:99:0d:8d:18:f9:21:9b:
bc:cc:ed:91:38:01:e2:61:04:71:a2:a8:ab:95:51:
69:11:4b:5b:bb:76:d8:9c:01:95:17:34:a1:ff:b0:
78:3f:b3:f9:55:f9:f7:a2:f0:e2:96:db:4f:be:2c:
9f:16:2c:c3:5f:ef:31:7e:63:21:dc:6a:70:a2:6c:
f3:31:b2:04:96:5d:6c:14:be:d5:4d:be:e8:57:89:
d9:49:e1:93:6f:fb:da:9b:6e:1f:6f:23:bb:5b:9b:
21:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:D6:AB:37:3E:AB:70:E5:2A:DB:38:97:4D:BA:90:95:67:8C:82:66
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B8F01B241D0311F0A41EC395DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.254.32.0-156.254.95.255
Signature Algorithm: sha256WithRSAEncryption
55:f8:99:1f:78:16:0e:3c:bb:ac:72:0f:c3:75:d5:6b:bc:80:
74:88:23:d9:15:c5:82:af:9b:3e:60:f3:30:ad:c0:b7:d1:60:
86:b8:ac:12:0f:70:74:d4:a2:2b:4d:fa:64:12:0a:27:5a:6b:
f2:a4:b2:71:c8:bd:11:d4:a5:35:20:bb:50:0f:f0:35:2c:82:
4b:5b:78:a4:3c:f0:52:48:e0:05:49:ca:7e:d2:6e:99:13:fd:
36:60:9f:f8:f3:f4:c0:1f:b3:c2:71:e6:48:d1:f5:57:68:17:
8e:f5:fc:54:b8:36:d1:02:fa:3f:a2:5c:bf:74:fd:e1:e9:8e:
4d:99:d6:a6:cd:a8:38:b4:52:70:d2:ef:57:c0:65:fb:d2:64:
23:86:ad:8d:56:4a:0f:72:8e:b4:24:22:69:e6:b6:94:35:19:
9d:aa:8d:0f:93:0b:1f:64:82:b2:5f:29:2a:f2:ab:bf:fb:30:
11:34:d9:0e:e5:28:10:67:bc:f1:4c:e4:74:3a:71:4e:05:57:
fa:00:b4:53:65:a1:d0:f5:ba:e9:c5:4d:5e:90:eb:34:5e:0f:
fa:25:cc:ff:85:51:45:35:33:4b:3c:6d:64:30:e3:2d:33:1d:
7a:ff:3c:29:a8:81:18:b9:0c:1b:bf:03:e1:b4:26:3a:ac:10:
32:02:16:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 18:07:09 2025 by rpki-client on console.sobornost.net