Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B44ACFF62A5511F09ECFDFB7DAE4EC9C.roa
File: B44ACFF62A5511F09ECFDFB7DAE4EC9C.roa (raw, json)
Hash identifier: p16lE64xqXs2ne8L5ZbGFaNUVZZdNRgxJJc38cozD7U=
Subject key identifier: B8:0B:17:08:75:6E:ED:37:A7:5E:6D:1E:60:33:73:9D:A5:6C:78:61
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01523D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B44ACFF62A5511F09ECFDFB7DAE4EC9C.roa
Signing time: Tue 06 May 2025 08:40:04 +0000
ROA not before: Tue 06 May 2025 08:39:59 +0000
ROA not after: Fri 13 Jun 2025 08:39:59 +0000
asID: 398478
IP address blocks: 156.245.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 12 May 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86589 (0x1523d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 6 08:39:59 2025 GMT
Not After : Jun 13 08:39:59 2025 GMT
Subject: CN=6819cae4-8c8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:aa:31:9b:d4:98:35:13:77:53:94:fb:c7:c5:
09:d3:e7:b7:9e:a8:56:bd:c1:bc:54:62:7c:81:a5:
e9:39:22:fb:aa:cf:1e:8d:60:80:3e:4b:ef:0f:9f:
b6:66:c8:ec:4f:4d:d4:92:27:d2:e0:4b:ed:6b:03:
13:34:e6:31:55:2b:39:1b:f7:b5:a6:c4:33:dc:10:
53:ee:23:ae:59:30:9e:41:6a:16:da:ef:2f:b7:ab:
49:98:56:37:88:17:f1:21:08:24:34:ee:21:01:54:
c6:83:4a:27:bc:4b:88:10:48:3c:0d:3c:1e:f3:26:
d5:97:c3:b4:97:f2:bd:b4:d9:c3:c9:98:84:29:ce:
e6:47:34:c0:97:5f:b3:c3:cd:7f:3f:f0:1d:a1:db:
ec:51:d2:80:ba:59:39:c0:ef:3e:2d:e3:3d:6b:f7:
7c:d9:3b:15:62:70:c6:95:97:3c:29:2b:ef:3a:e7:
0e:2f:f9:37:54:a2:57:13:85:02:c3:25:e2:88:89:
b6:f3:0d:87:af:ce:1d:d4:dd:a9:3b:29:37:de:44:
30:fb:84:98:42:aa:dc:0d:5f:ed:d4:cd:dc:d5:bf:
06:59:81:87:5b:19:eb:1c:70:9e:50:2b:2b:cf:a5:
fc:cf:fa:ee:a8:f9:e1:29:ab:3c:cb:37:ef:59:93:
f7:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:0B:17:08:75:6E:ED:37:A7:5E:6D:1E:60:33:73:9D:A5:6C:78:61
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B44ACFF62A5511F09ECFDFB7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.64.0/18
Signature Algorithm: sha256WithRSAEncryption
2d:dd:10:4d:af:cb:2c:c6:3e:24:7e:77:a1:9d:66:54:e0:38:
7d:5d:bc:9e:de:c0:2f:12:d5:80:6a:6c:19:73:ef:46:f5:6a:
94:ac:49:a1:1d:98:f7:07:1b:8a:90:94:d3:6a:b7:3c:83:2b:
f6:90:84:7f:2e:94:3c:ce:2d:e2:42:5e:6d:f1:d3:f7:50:74:
0e:92:4a:72:45:48:f9:b4:2e:92:54:e3:1b:6f:16:7b:19:d1:
36:62:76:2c:03:d4:ef:2e:18:1f:3e:32:7a:2f:68:83:aa:2a:
9e:eb:c2:48:32:72:d6:fd:e1:26:ae:2d:94:c3:6b:41:52:6a:
d9:37:80:54:ec:7d:1d:64:0f:b3:ab:b6:a4:ce:68:24:bb:92:
1a:f3:e9:50:03:aa:4d:ae:a1:d0:4b:9e:65:77:bb:2c:49:7c:
05:25:aa:63:49:5e:f3:2d:d5:ff:9f:f0:02:f8:b2:01:93:78:
97:f0:74:5a:c6:2b:b7:4d:24:b8:4a:49:89:d5:2c:4f:8a:bd:
7f:a4:4c:1f:7e:ff:2c:97:cc:b5:e1:d3:7d:ea:f1:72:b5:c9:
f8:36:8c:d8:d3:6a:33:f6:fb:57:c1:63:91:c4:84:55:27:8a:
25:1d:37:75:26:fa:2b:4f:90:ae:52:2d:7b:09:96:63:90:4b:
42:98:1e:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 04:05:41 2025 by rpki-client