Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/30644630242511F0A0B9C4C4DAE4EC9C.roa
File: 30644630242511F0A0B9C4C4DAE4EC9C.roa (raw, json)
Hash identifier: vyeRWUHh4isO28qWmvwVM2RvwQ1dLNp4Kg0Uh3TLZVo=
Subject key identifier: FD:C2:E6:9C:D4:2B:6C:30:C4:0A:1C:C1:0D:2F:50:98:20:6E:C5:F6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014F04
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/30644630242511F0A0B9C4C4DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 11:37:40 +0000
ROA not before: Mon 28 Apr 2025 11:37:34 +0000
ROA not after: Wed 15 Mar 2028 11:37:34 +0000
asID: 17561
IP address blocks: 156.237.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 13 May 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85764 (0x14f04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 28 11:37:34 2025 GMT
Not After : Mar 15 11:37:34 2028 GMT
Subject: CN=680f6884-6338
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:08:e3:06:ce:45:b1:96:7b:6f:4e:52:ad:00:
4a:04:d2:b1:bb:33:4c:fd:b4:69:57:49:1a:67:ad:
c8:f5:29:4d:38:9f:11:00:7f:32:b3:b1:b2:19:a6:
f9:47:8b:01:ee:96:2b:a2:85:93:a9:96:ce:c5:07:
99:8b:37:9b:93:28:35:95:74:53:c3:47:16:7f:4f:
c5:6e:21:c6:c7:b8:9f:20:7a:21:28:72:50:87:3d:
04:fa:88:a0:ba:df:8a:02:75:b2:ba:6f:e6:da:16:
b6:7e:6a:4d:91:0b:0c:8e:d6:6d:2f:a2:8f:25:84:
1f:c5:ec:95:03:1d:b8:64:6a:ba:39:c2:cf:39:62:
f2:90:6e:e6:3b:e4:fb:a4:77:2c:b1:a0:2a:24:fb:
10:e6:d6:e4:d5:c6:f1:e6:f8:cf:62:2d:a3:69:2e:
0f:07:7a:75:76:ef:2c:63:82:29:96:35:b5:c6:15:
c6:9c:3a:7a:45:7a:8c:60:bb:a2:c1:84:aa:c6:bb:
8a:ae:2c:35:d2:a8:7b:58:18:d0:a2:03:09:71:3e:
e9:0e:2b:33:1b:21:9a:d4:37:a9:03:a8:e8:2a:60:
81:c0:33:b6:f9:4f:46:2c:b5:12:11:d4:f5:cb:47:
5c:9b:43:f3:5b:b3:6f:01:31:52:cc:c1:39:b7:6e:
b7:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:C2:E6:9C:D4:2B:6C:30:C4:0A:1C:C1:0D:2F:50:98:20:6E:C5:F6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/30644630242511F0A0B9C4C4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.237.107.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:57:36:e9:9c:3f:13:21:ab:4c:20:ad:27:7c:43:8f:42:76:
b9:59:8b:2d:90:ed:7d:c9:7a:18:22:53:dc:28:6d:51:81:a7:
73:2a:eb:a2:9f:ce:ca:bd:49:a2:b1:62:00:36:ef:8c:81:68:
95:da:58:8b:5e:26:90:4d:78:ef:da:d7:58:59:51:75:88:66:
34:61:44:ea:78:04:f8:6f:11:4e:82:09:fc:f5:9b:f5:cd:a4:
d0:74:05:aa:eb:d8:b9:5d:17:ce:3a:7c:69:20:90:87:24:a0:
08:8a:ed:e3:e1:11:e1:7d:d2:a0:eb:28:24:fb:60:2f:fb:94:
7e:1a:40:92:2c:b6:c6:75:33:00:1a:72:0b:1c:c6:59:f2:a3:
e5:ce:2c:f2:d1:e3:2b:f5:97:ae:c7:6f:d8:8e:71:26:45:4b:
29:21:06:bc:fd:84:59:c1:6e:5d:ae:79:20:b0:3a:6d:2b:fd:
34:8b:b9:6e:e9:03:ca:ea:6f:49:ed:e0:04:84:c8:6f:48:25:
09:3b:46:34:ac:15:13:bc:28:4b:66:fe:6a:21:d5:c8:ec:72:
d7:cc:44:bc:99:3a:04:4b:69:0c:b8:32:65:8a:36:b7:c5:d3:
2e:31:15:24:e5:10:5e:a3:5b:5c:3b:a1:48:1e:0e:dc:a2:4e:
f3:c8:71:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 21:50:16 2025 by rpki-client