Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CC16A6FCCD2411EFA27C4A91762E951A.roa
File: CC16A6FCCD2411EFA27C4A91762E951A.roa (raw, json)
Hash identifier: /xnKWPoViRmD3FDD00hQj/qWwaDZXoh3EXDRKDCHaD8=
Subject key identifier: 37:56:58:8E:EF:D2:B7:A8:D2:5D:AF:F8:83:9E:48:C3:EA:3C:EC:1E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FD91
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CC16A6FCCD2411EFA27C4A91762E951A.roa
Signing time: Tue 07 Jan 2025 18:25:40 +0000
ROA not before: Tue 07 Jan 2025 18:25:36 +0000
ROA not after: Mon 13 Dec 2027 18:25:36 +0000
asID: 17561
IP address blocks: 156.241.211.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 29 Apr 2025 00:26:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64913 (0xfd91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 7 18:25:36 2025 GMT
Not After : Dec 13 18:25:36 2027 GMT
Subject: CN=677d71a4-b6f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:2b:d2:c2:6a:71:db:53:50:a5:dd:b1:18:9a:
3d:cb:8d:8a:e9:be:6f:fb:f9:42:7b:ad:2c:60:dc:
bd:e8:a5:f3:23:0d:22:92:f7:58:93:b2:bf:9b:59:
9b:bc:eb:e1:f1:e6:1f:92:4d:8f:50:c7:0d:0d:e5:
ce:f5:f2:8c:d1:0b:89:76:42:7d:a1:5e:2a:c1:16:
9f:cb:d8:14:a1:54:1f:a3:86:93:8f:8b:bc:bc:3a:
04:4d:e5:d6:4e:7a:dd:e1:83:1e:3b:e3:d2:93:18:
66:ae:63:7e:61:38:9c:af:3b:a0:03:77:ad:1f:4e:
ca:56:3b:3a:0f:f3:df:e7:d8:22:04:7b:42:56:d6:
81:c7:68:6d:f5:6d:78:03:cf:6b:1c:f4:07:6e:bf:
b2:f2:9a:06:09:cd:3c:86:cb:a1:8c:13:08:69:c0:
92:1e:56:ef:a9:f9:8e:d8:9d:e3:f7:51:75:13:c2:
f8:e9:cb:03:e0:e8:b4:ec:3a:37:75:72:e4:19:38:
87:f6:3d:99:c2:26:46:69:0a:a3:e4:95:0e:d2:12:
4d:b4:ba:18:07:b3:c9:59:dc:09:3c:2b:93:40:66:
45:cd:f0:95:0b:60:2f:9e:59:98:35:3c:a6:8b:75:
49:45:c0:26:f0:e2:87:3f:c6:f3:51:19:95:c2:a5:
69:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:56:58:8E:EF:D2:B7:A8:D2:5D:AF:F8:83:9E:48:C3:EA:3C:EC:1E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CC16A6FCCD2411EFA27C4A91762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.241.211.0/24
Signature Algorithm: sha256WithRSAEncryption
27:44:1a:49:4e:5d:44:d1:fb:78:32:a7:60:97:38:b9:a5:56:
20:69:d7:49:b7:a0:46:aa:19:3e:a6:5d:dc:34:72:a6:f0:46:
ef:5b:9c:62:5b:41:5b:f5:fb:02:8f:96:79:9a:7f:c0:02:5e:
93:a1:b1:0b:e5:b8:47:6e:7e:04:aa:0e:0f:7e:ba:c1:26:3f:
e9:de:ad:70:ea:f2:b1:1d:60:89:87:76:9f:60:da:8e:02:a2:
e7:81:c4:64:77:f4:73:e8:62:c4:ce:7e:8c:17:8f:29:bf:a9:
21:c0:6e:3b:70:d7:0e:5d:cb:78:a6:b3:f1:3e:be:23:87:2c:
a8:0e:44:22:91:7e:c6:85:df:75:2e:ad:db:5f:ef:11:d4:7c:
7f:90:92:09:aa:3f:bc:d5:0b:1c:1d:be:99:a4:92:aa:55:7f:
c9:df:e1:44:8a:11:f2:8d:1c:bc:4c:08:ea:9a:53:c6:65:9b:
12:fe:e7:85:ef:0a:e7:f3:00:93:b2:8f:ca:22:10:c5:a0:cd:
5a:8c:59:61:4d:a9:d2:11:b4:ed:76:10:03:19:5b:41:1b:3f:
2b:0a:7b:05:6b:2f:8d:7b:72:4b:70:8b:c7:66:c8:ec:57:c5:
c1:65:40:49:ce:49:d7:a5:66:9a:92:fc:1d:ec:69:09:b8:8f:
74:d6:fc:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 14:55:55 2025 by rpki-client on console.sobornost.net