Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9B5F2306242011F0AE2870A4DAE4EC9C.roa
File: 9B5F2306242011F0AE2870A4DAE4EC9C.roa (raw, json)
Hash identifier: wENAtQRmhil1b5yTjIWzHEAJCgwwS0hDCGsnVooEgfw=
Subject key identifier: 8E:31:FA:5C:64:C3:E4:02:10:20:D7:D0:48:A4:13:42:B5:11:D2:ED
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014EEF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9B5F2306242011F0AE2870A4DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 11:04:52 +0000
ROA not before: Mon 28 Apr 2025 11:04:47 +0000
ROA not after: Mon 13 Mar 2028 11:04:47 +0000
asID: 17561
IP address blocks: 156.231.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 16 May 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85743 (0x14eef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 28 11:04:47 2025 GMT
Not After : Mar 13 11:04:47 2028 GMT
Subject: CN=680f60d4-5e6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:53:e1:d3:e0:f4:44:7a:27:42:da:88:b8:8a:
96:ea:a7:37:63:50:8c:93:3d:05:66:84:aa:a2:df:
e1:fb:7d:aa:e5:80:61:c8:f8:50:96:87:d3:ee:08:
7e:a0:08:cf:a0:b1:10:38:50:ef:4c:f9:ea:4b:35:
ab:9c:64:4f:01:eb:c9:49:f4:19:db:a4:ed:ca:c5:
85:4f:51:ba:47:e5:d4:48:66:54:77:61:cc:56:e6:
9d:98:46:a2:ea:18:9a:b9:20:e3:ca:d9:a0:39:3e:
db:3e:4f:c3:91:d2:94:4a:a1:c4:10:0e:33:e6:96:
69:c2:dc:c5:f5:8e:07:58:af:db:96:a0:51:36:a3:
8b:74:e5:95:14:f8:8f:4f:e2:61:37:78:62:58:c4:
30:59:30:a5:af:22:f4:97:cf:09:d1:78:a6:1d:41:
29:8c:1e:e0:e6:3b:d3:39:1c:2a:97:2e:f4:6b:aa:
b1:d1:37:e4:93:ce:3b:ff:d5:51:e1:cc:84:df:b9:
ab:85:62:4e:32:0f:ed:e9:ec:5e:61:b5:52:1c:a8:
80:5d:23:f2:96:75:a4:11:3a:f5:f0:90:90:18:2f:
61:30:2b:0a:fb:ac:25:82:3f:db:5e:d7:06:d2:07:
a3:40:de:cd:fc:33:30:a8:8f:fa:70:a6:91:28:a1:
d9:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:31:FA:5C:64:C3:E4:02:10:20:D7:D0:48:A4:13:42:B5:11:D2:ED
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9B5F2306242011F0AE2870A4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.231.178.0/24
Signature Algorithm: sha256WithRSAEncryption
56:36:84:a4:47:28:66:00:1a:57:f1:17:cf:1f:8f:7d:3c:34:
5f:5c:8c:26:65:9e:7d:00:23:ad:4b:54:0d:c8:72:12:26:71:
11:ea:68:73:58:dd:09:8e:af:1d:ff:23:14:1c:8b:e0:93:b3:
69:e9:db:d7:39:ec:15:b6:1b:e4:fc:df:30:a9:66:4d:1a:3b:
19:d7:65:d6:7d:76:35:eb:8e:1c:d3:7d:6c:03:ea:94:8a:f5:
d7:7d:71:45:32:36:c4:52:97:06:3c:53:38:68:8a:36:a6:9d:
6d:04:83:ca:a5:28:23:b1:1a:3a:53:08:6f:7c:eb:f0:1d:e7:
4b:73:9c:68:03:2d:b0:01:2d:e8:ac:42:1b:14:0d:69:2c:52:
62:87:15:ab:54:31:bf:e3:b6:76:5d:da:98:19:72:53:6f:05:
b1:75:48:5c:a2:0a:a7:a9:7a:d8:5e:0f:77:19:c7:3b:52:57:
7a:45:a2:d5:0b:91:b5:28:73:f0:66:5e:1e:c5:05:19:76:25:
a7:73:31:92:dd:af:ad:85:b0:3b:65:76:7c:e2:b9:e4:ee:e8:
51:94:d8:c8:d1:4f:34:c2:0a:b2:fc:1a:ad:84:44:77:e1:62:
b8:2f:46:b6:bd:8b:56:38:6f:4d:e3:33:56:e1:ae:65:22:42:
18:e4:2c:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 17:16:13 2025 by rpki-client