Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2EA8FB60154311F0B71115E26DB8BCC6.roa
File: 2EA8FB60154311F0B71115E26DB8BCC6.roa (raw, json)
Hash identifier: 3YmeNnOY8iJigvtuJZKr1a1v5nQ0BjXARR9tgwGOOAg=
Subject key identifier: 45:EA:4E:C6:55:71:E2:82:E4:AA:11:7A:28:02:98:AE:59:72:02:82
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014B44
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2EA8FB60154311F0B71115E26DB8BCC6.roa
Signing time: Wed 09 Apr 2025 13:04:34 +0000
ROA not before: Wed 09 Apr 2025 13:04:30 +0000
ROA not after: Sun 11 May 2025 13:04:30 +0000
asID: 57043
IP address blocks: 156.229.121.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84804 (0x14b44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 9 13:04:30 2025 GMT
Not After : May 11 13:04:30 2025 GMT
Subject: CN=67f67062-fc49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:75:95:f0:5c:b1:4c:4d:9b:7a:2f:dc:52:63:
64:62:bd:01:a6:b3:df:20:5f:3e:02:2e:ef:1d:b2:
bc:08:a2:21:a9:4f:b5:f0:ad:66:ac:e0:07:68:ce:
b2:0a:70:ea:50:da:25:eb:fa:d7:98:59:61:c4:8f:
8e:2b:aa:93:6c:1d:1b:41:6b:e7:71:f2:8b:75:fa:
b6:d2:9f:3b:a5:31:c7:1d:47:d8:7c:2d:72:f8:70:
a8:37:f5:15:7a:9c:c8:ce:3c:83:c3:a8:e9:17:eb:
43:c8:b4:fa:cb:a9:7e:97:42:34:b2:ea:02:15:ce:
3f:8d:25:eb:bc:9f:35:93:6e:32:70:36:0b:2d:a8:
eb:1c:21:75:ac:9e:a4:99:af:7e:3c:75:f7:e1:61:
21:8b:b7:e3:8e:7b:64:4b:f6:26:ea:a1:fb:e4:d1:
17:a6:b2:b5:66:5e:a8:f1:1b:91:d8:d7:c9:29:27:
6c:fd:8f:82:18:60:ec:d7:83:cf:db:77:22:70:7d:
72:ac:2b:be:8c:71:bb:b5:c6:57:f2:13:8f:88:56:
30:10:58:bc:a3:70:d7:ec:e4:a7:96:e0:e1:30:5b:
60:48:cd:3d:92:a1:da:1b:fb:8f:ae:ab:aa:98:f0:
16:3c:8c:df:17:09:c4:f3:72:61:13:d2:d2:74:3c:
b4:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:EA:4E:C6:55:71:E2:82:E4:AA:11:7A:28:02:98:AE:59:72:02:82
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2EA8FB60154311F0B71115E26DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.121.0/24
Signature Algorithm: sha256WithRSAEncryption
40:33:be:de:e0:17:37:ad:dc:19:ea:ae:99:5b:32:06:ef:60:
24:c5:20:78:94:3e:43:82:52:43:df:3b:e5:28:c7:3c:56:96:
94:c0:c9:fa:39:e3:74:c7:d4:b7:3b:a1:39:d2:a6:c9:2a:df:
f2:f9:85:98:17:a3:f9:57:92:c0:08:c6:38:d1:a3:a1:45:86:
4e:93:45:d5:19:84:e9:0f:79:f4:1d:d2:ac:b3:93:fd:31:09:
e9:c0:83:37:dc:d7:4c:3d:c0:3a:41:5a:1b:ed:01:b4:40:16:
5d:68:1b:5e:33:e4:fc:19:63:22:f7:1e:dd:b6:a5:cd:be:8f:
30:75:14:fa:b2:c8:20:09:61:7d:7e:d2:94:b8:90:d5:75:7c:
dc:a9:92:9c:cb:29:72:de:ae:1c:1e:8f:d5:09:73:d3:d2:f7:
64:25:fc:ca:14:35:ab:c9:11:9a:08:94:91:0d:5d:a5:a0:4a:
28:a8:45:55:58:6d:c5:68:77:f9:8b:3d:d1:7f:69:07:0f:82:
2d:f4:a5:61:de:ff:f5:7e:53:94:c3:c7:f6:15:04:13:5b:d2:
c4:81:c7:e2:49:bf:b3:77:38:1a:d3:9f:b7:29:d2:77:42:d2:
10:2c:d1:4d:ab:22:f2:9b:cf:3f:ce:ba:98:18:09:ac:b9:a1:
bb:7b:08:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:51:45 2025 by rpki-client