Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2C9E6AF824C511F080DE397DDAE4EC9C.roa
File: 2C9E6AF824C511F080DE397DDAE4EC9C.roa (raw, json)
Hash identifier: EXu/y9Qi2Oh9ZTKRV3tzutbfe5QjnEVmwjwIRrB8+7c=
Subject key identifier: 9B:BF:D2:31:C0:67:BE:76:89:A3:21:7D:F1:A6:B8:C5:A4:A7:23:BD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015007
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2C9E6AF824C511F080DE397DDAE4EC9C.roa
Signing time: Tue 29 Apr 2025 06:42:53 +0000
ROA not before: Tue 29 Apr 2025 06:42:48 +0000
ROA not after: Fri 30 May 2025 06:42:48 +0000
asID: 18013
IP address blocks: 156.245.200.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 13 May 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86023 (0x15007)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 29 06:42:48 2025 GMT
Not After : May 30 06:42:48 2025 GMT
Subject: CN=681074ed-ff54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:4a:e1:f9:0f:71:33:b4:d3:37:9e:ee:b9:43:
50:e0:84:a2:5d:bd:8a:1d:b2:af:63:9b:07:b4:c4:
f8:7e:6d:2d:ca:66:12:7b:c8:24:93:83:b9:7e:e6:
de:e6:3c:33:fe:8f:b0:e7:6d:6f:67:2a:19:59:1a:
68:01:77:9e:08:4d:13:98:41:b9:91:33:d9:c3:cc:
79:62:b7:8c:2a:57:35:c5:ed:c8:5b:ab:24:ea:52:
e7:f1:45:65:be:ce:b1:48:5f:1c:2f:f9:fd:80:fc:
a9:de:aa:d2:f4:c3:64:7f:c6:90:c8:9b:fd:69:c0:
96:fa:d8:22:dd:db:f2:6b:9a:9f:a4:b0:02:7e:06:
da:08:9a:a1:36:9f:fd:23:e6:ab:56:14:7e:e8:d2:
25:9c:34:89:5d:57:3e:c9:e9:62:ae:e6:fb:1c:ba:
94:2f:ff:8f:f4:fc:ed:5e:bb:3d:1c:52:db:95:dd:
d2:b0:02:0d:9c:11:e9:81:8f:ce:81:71:c3:90:f6:
e6:ab:57:a3:4f:0b:b4:95:76:c7:43:d5:c1:18:35:
2f:c9:26:9f:df:03:68:fa:2e:ad:2e:e9:4c:7c:65:
3c:71:25:fb:0c:20:37:a3:a2:b8:4e:36:f5:dc:e2:
29:b7:22:e9:b8:40:a3:2a:a9:c8:b4:57:3d:f0:79:
46:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:BF:D2:31:C0:67:BE:76:89:A3:21:7D:F1:A6:B8:C5:A4:A7:23:BD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2C9E6AF824C511F080DE397DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.200.0/22
Signature Algorithm: sha256WithRSAEncryption
53:92:60:ac:f0:61:a6:f2:7b:59:53:4a:4e:b4:e6:47:ef:97:
7d:3e:85:b1:36:c5:0d:88:42:00:6b:22:58:47:10:e7:75:a3:
70:2d:53:95:a3:79:d8:09:c1:8f:19:87:86:cd:17:62:99:fa:
55:df:64:6a:4b:16:70:c9:1b:64:d7:68:b6:6c:ec:6a:01:07:
39:db:c4:40:3d:96:c4:94:7c:77:5a:c1:bd:3c:12:98:16:dd:
f1:43:87:8e:e0:e3:f0:d8:56:68:91:86:29:af:83:f1:e6:17:
75:ab:f5:f3:b3:39:87:20:69:f0:14:fe:b2:9f:f1:9b:38:dd:
fe:87:26:82:91:b4:73:2c:be:0d:63:b5:48:6d:fd:37:3b:3a:
3f:d0:10:f4:1e:7f:5e:67:56:b7:b2:89:2f:09:b6:7d:53:4d:
9b:2d:c0:17:72:89:27:1d:c5:25:dc:05:07:bf:0b:5e:b9:23:
b9:56:a6:43:5c:55:4b:6e:19:73:70:7d:26:3c:0a:d8:5d:93:
71:04:50:82:3b:61:ab:4b:f0:e6:81:1e:95:7f:88:4f:26:df:
cf:cd:36:03:49:a0:e1:3e:59:6f:f3:6e:11:ed:24:7e:65:89:
bd:39:e5:9d:4f:0d:1a:6d:d8:c0:d3:4a:e2:41:03:16:98:ed:
40:3d:eb:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 04:50:37 2025 by rpki-client