Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/22250FEC243811F087B25AC2DAE4EC9C.roa
File: 22250FEC243811F087B25AC2DAE4EC9C.roa (raw, json)
Hash identifier: serMg0HCkc40Ij6HZidchAPtKogdrh+MSPZgu/h5WkM=
Subject key identifier: C5:CC:9C:B4:B3:96:CC:2C:58:B5:D2:9B:42:C9:FC:AF:B9:82:FE:14
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014F45
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/22250FEC243811F087B25AC2DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 13:53:16 +0000
ROA not before: Mon 28 Apr 2025 13:53:12 +0000
ROA not after: Sun 26 Mar 2028 13:53:12 +0000
asID: 17561
IP address blocks: 156.242.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 11 May 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85829 (0x14f45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 28 13:53:12 2025 GMT
Not After : Mar 26 13:53:12 2028 GMT
Subject: CN=680f884c-59e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0a:94:b5:13:9f:9a:70:27:28:39:c1:ec:b3:
47:eb:45:c7:e2:5b:68:9a:ae:ef:76:6f:ba:be:23:
8d:16:6b:76:f8:4f:ec:b7:8e:b9:ff:9c:ad:00:41:
64:46:48:e9:7b:e5:ac:10:84:8f:d1:fa:a5:53:0c:
a9:5c:58:44:94:7f:63:74:6c:70:2a:b1:d6:68:06:
88:75:15:91:c7:fe:6f:7c:22:e4:15:b2:a1:2c:33:
c1:25:a7:7f:e6:f8:24:6c:75:c1:7f:56:14:0d:c5:
75:5a:a3:26:8a:b2:00:c6:6d:32:e0:5a:23:27:0a:
b9:0e:59:83:ec:0f:a1:73:e8:72:e2:6c:bb:14:3e:
20:5c:53:21:c9:d4:2d:17:76:59:ec:de:af:71:9d:
ec:1c:89:65:49:0e:bc:e2:1f:72:1a:9f:dd:a3:66:
af:e5:0d:32:79:4c:85:18:27:3b:c2:eb:2a:bb:8b:
7d:80:f2:6e:2b:93:5b:42:e5:99:4a:70:58:97:12:
12:1d:bf:9f:55:4a:75:bd:04:92:c8:3b:dd:59:71:
4f:7b:2b:5f:f8:0a:8f:f0:38:fb:2c:e7:64:01:d0:
33:a8:51:a7:97:a3:dd:dc:12:ee:ca:e3:ef:5f:93:
ad:a2:05:a7:47:7a:54:06:6d:be:ea:c2:67:72:91:
66:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:CC:9C:B4:B3:96:CC:2C:58:B5:D2:9B:42:C9:FC:AF:B9:82:FE:14
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/22250FEC243811F087B25AC2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.49.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:5a:f5:0c:0f:90:42:18:94:30:2f:b2:27:68:a2:87:76:8a:
f2:2c:e3:df:a5:62:f1:e3:ea:77:eb:e3:d7:cd:26:08:3b:91:
98:95:d0:c8:5d:91:ff:b5:f0:f7:7a:f5:4d:09:48:25:17:01:
a8:df:7f:a3:f3:1a:65:78:14:96:ae:b3:33:b0:d2:8c:24:3c:
47:44:1d:2a:d4:ee:24:95:a0:0f:49:83:67:24:40:15:f7:f3:
0b:b5:03:8e:7a:4e:be:4e:e4:31:ef:4f:45:38:f6:d6:65:e2:
64:85:b2:66:11:d8:b8:23:dc:ea:34:87:d6:e5:72:7e:f8:a4:
03:eb:82:4a:30:57:b6:e3:33:16:30:85:34:6c:64:83:2c:7f:
d3:4d:58:17:cd:04:11:d5:b5:90:1d:e7:9c:cc:19:08:77:bb:
41:69:35:96:11:46:a1:bb:c9:a0:b3:4c:07:10:b3:4a:cb:a8:
b7:ec:a3:ca:da:3b:94:06:52:02:0e:72:2d:af:6b:e2:20:06:
fe:e7:92:d0:4a:d1:53:93:bc:fa:a4:b0:ea:33:9b:a6:db:f4:
34:6c:03:2e:18:af:40:ac:50:39:0b:57:c1:10:37:ae:35:6a:
30:94:9b:b6:c6:d9:cd:f5:03:ba:b5:97:75:c3:b3:e7:8a:f2:
b2:55:3d:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 02:58:59 2025 by rpki-client