Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7F993148242511F092B228C5DAE4EC9C.roa
File: 7F993148242511F092B228C5DAE4EC9C.roa (raw, json)
Hash identifier: wC7zaDDQAb4ogcSHb6nQQvmq++1xZRDCIL9ZPzIUaK8=
Subject key identifier: 75:11:5D:65:82:16:62:B8:30:D0:7E:E5:EE:86:34:0D:5D:2A:71:ED
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014F06
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7F993148242511F092B228C5DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 11:39:53 +0000
ROA not before: Mon 28 Apr 2025 11:39:48 +0000
ROA not after: Wed 15 Mar 2028 11:39:48 +0000
asID: 17561
IP address blocks: 156.237.122.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 12 May 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85766 (0x14f06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 28 11:39:48 2025 GMT
Not After : Mar 15 11:39:48 2028 GMT
Subject: CN=680f6908-3eb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:6e:1d:a7:d3:30:fb:e3:3c:b5:d1:ab:60:4d:
38:d9:9d:13:e9:ba:f4:df:e3:ff:be:02:ed:46:f4:
52:98:50:e0:bb:5f:ec:16:88:89:24:00:0d:80:b5:
b1:13:bc:1c:43:7e:e3:23:2d:1b:6e:82:55:ca:f8:
46:b5:7e:39:27:c5:57:8f:04:65:ad:7f:27:3e:56:
a9:94:de:00:60:33:04:01:f6:5c:9c:43:d1:c8:fb:
b9:8a:ed:2c:25:4a:da:4b:96:44:46:01:24:09:37:
3c:fa:8b:40:11:33:28:ad:ff:ad:00:ce:08:22:f9:
cc:5c:83:5d:86:8e:e0:9a:b0:b7:c6:00:e3:de:2d:
29:86:bb:0b:2d:48:22:26:f9:2f:ea:4e:9f:15:b4:
82:94:0d:fd:f7:b2:29:1d:50:48:11:9c:61:a4:71:
f4:71:30:9d:0c:b5:dc:9d:4e:1a:0b:44:ad:38:fc:
4b:79:3a:4f:13:19:5e:09:9b:53:61:a0:96:af:83:
9c:be:11:57:f9:3d:9a:b7:0e:d3:67:85:c9:dc:9b:
94:c1:5c:52:2d:71:25:78:37:dd:90:d5:49:e4:4d:
9d:80:ae:b6:08:58:a5:40:01:33:c4:8b:54:e9:87:
ce:1b:4f:76:10:ab:49:95:21:58:14:b1:dd:0b:91:
ad:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:11:5D:65:82:16:62:B8:30:D0:7E:E5:EE:86:34:0D:5D:2A:71:ED
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7F993148242511F092B228C5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.237.122.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:ac:6b:83:7c:c3:81:56:74:2c:64:77:93:71:21:9f:25:0d:
c2:04:9b:5e:9d:06:b7:f0:60:df:ad:50:e0:d6:26:cc:0e:85:
46:d9:de:7c:d7:e2:db:52:75:25:87:b7:85:4a:c6:fc:e1:ea:
4c:e5:15:4a:45:59:0b:ba:bf:c6:f5:e1:17:6b:e5:7b:0b:5a:
c1:15:01:e9:1f:41:79:11:bf:0d:f8:57:d4:3b:a5:f7:b0:ab:
c0:7c:ee:f8:b9:cf:95:2b:a6:45:71:64:1f:a0:a8:d3:49:54:
bd:b5:8c:84:aa:31:51:41:60:8b:d6:01:63:11:e3:63:75:0d:
10:8a:fd:1e:f4:e2:e7:63:a3:8b:c4:0b:b8:39:47:3c:db:f8:
c2:94:b5:1e:db:1f:43:4f:10:d3:f4:b1:82:ac:62:66:69:9a:
e3:f2:d6:e8:7a:21:f1:90:84:39:f0:2e:fd:5a:55:2a:1e:cf:
29:2d:8a:10:8d:77:fc:25:ec:65:13:9a:19:bd:e2:b1:48:67:
60:ae:01:2c:46:36:b7:5b:6d:6f:17:e7:b8:cc:bb:d2:0d:c5:
b8:02:fd:4a:78:3b:d4:60:66:a6:ed:44:6f:9e:18:be:54:b3:
c3:dc:58:a6:27:91:be:63:b1:8f:fe:80:9e:71:75:b1:b6:c2:
c5:b6:90:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 13:58:34 2025 by rpki-client