Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/30C84FDC1A0611F0A5B7A4B86DB8BCC6.roa
File: 30C84FDC1A0611F0A5B7A4B86DB8BCC6.roa (raw, json)
Hash identifier: OpX5TXWYsw09BoanP08jJddaUDJkHnrKcbX28URzCFM=
Subject key identifier: 47:36:13:9F:10:4D:EF:24:42:E9:EC:D3:35:74:38:B4:1C:8E:02:81
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014C72
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/30C84FDC1A0611F0A5B7A4B86DB8BCC6.roa
Signing time: Tue 15 Apr 2025 14:30:34 +0000
ROA not before: Tue 15 Apr 2025 14:30:29 +0000
ROA not after: Thu 22 May 2025 14:30:29 +0000
asID: 64457
IP address blocks: 156.253.248.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 29 Apr 2025 00:26:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85106 (0x14c72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 15 14:30:29 2025 GMT
Not After : May 22 14:30:29 2025 GMT
Subject: CN=67fe6d8a-a86b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:12:6c:de:e6:9c:aa:97:d8:9d:e0:21:47:54:
f7:1f:71:64:fa:3f:8a:a2:08:47:b3:82:c3:fb:e2:
88:d4:9e:f6:5b:87:80:7c:b3:5d:b5:ed:62:12:44:
ab:cd:d3:a1:c4:23:53:93:bd:11:d3:71:5b:9d:81:
68:d9:85:91:a9:95:98:33:af:67:99:b7:a1:26:c3:
95:5c:01:3e:f5:3a:19:c9:61:e5:78:b4:4c:b1:d8:
7e:02:85:9d:e9:d8:e8:f5:38:5c:c0:d1:1b:15:5a:
62:56:b2:28:05:db:82:d8:ea:f9:80:22:ad:17:fd:
62:61:6a:51:1e:58:57:cb:1f:cd:42:21:9f:14:03:
a1:a8:61:f4:20:d9:37:ca:47:41:22:ab:21:97:00:
6a:e6:3b:a8:87:8f:e1:a2:a6:a1:89:cd:ca:6b:24:
68:fb:9d:b2:eb:47:32:c6:09:ae:46:e9:b8:72:00:
73:69:5e:33:e5:de:b6:e4:24:bc:c3:1b:5d:c8:25:
6e:d1:58:4d:19:ff:a3:da:d7:07:df:bf:7c:1c:c9:
ee:8d:96:ab:9b:2e:1f:b2:90:9d:f0:f4:ce:da:85:
be:da:6f:9e:80:60:81:69:87:18:c6:91:88:fd:30:
2f:95:a2:9e:f6:71:99:e0:76:f3:e4:ac:ce:28:59:
4b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:36:13:9F:10:4D:EF:24:42:E9:EC:D3:35:74:38:B4:1C:8E:02:81
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/30C84FDC1A0611F0A5B7A4B86DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.253.248.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:8f:7d:79:32:17:6e:48:fe:10:4a:b8:12:25:e9:f5:73:b1:
1d:15:d9:5a:2a:05:f3:f9:23:21:80:74:a0:c8:c1:3c:87:c2:
41:91:6a:33:f4:07:28:19:7f:ea:a9:13:96:01:bc:35:37:5e:
52:23:6f:63:79:a5:d4:95:04:d9:4f:fa:ea:92:96:81:5e:f3:
34:4e:36:91:80:2a:aa:a5:30:3b:1d:ad:51:55:9a:a7:74:41:
dc:ed:4d:7c:a8:52:4b:94:fc:59:fe:02:7c:30:44:a5:69:57:
18:4e:c1:01:07:d2:5d:07:3e:a4:73:95:ad:d9:cb:82:c1:1d:
3d:1c:76:93:26:62:00:e3:fd:f1:a5:76:23:2f:7b:92:b2:f0:
5f:a6:9a:25:37:54:bb:72:68:69:48:ad:71:9c:3f:16:35:ef:
31:6c:6b:2e:f0:af:7f:74:1d:38:b1:38:3d:7c:37:21:f4:b3:
ad:ef:0c:5b:f2:84:4e:bd:87:22:df:13:54:c4:7d:51:12:84:
5d:17:11:43:a2:40:93:f7:ae:5d:51:c7:49:e9:9f:14:55:67:
16:3e:23:7d:62:ce:f0:14:15:0e:95:1b:99:5d:4d:1e:64:12:
db:37:f9:b8:e9:b0:1b:69:1d:8d:ac:b4:85:de:d2:36:07:2b:
ed:ab:19:42
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAUxyMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNDE1MTQzMDI5WhcNMjUwNTIyMTQzMDI5WjAYMRYw
FAYDVQQDEw02N2ZlNmQ4YS1hODZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1xJs3uacqpfYneAhR1T3H3Fk+j+KoghHs4LD++KI1J72W4eAfLNdte1i
EkSrzdOhxCNTk70R03FbnYFo2YWRqZWYM69nmbehJsOVXAE+9ToZyWHleLRMsdh+
AoWd6djo9ThcwNEbFVpiVrIoBduC2Or5gCKtF/1iYWpRHlhXyx/NQiGfFAOhqGH0
INk3ykdBIqshlwBq5juoh4/hoqahic3KayRo+52y60cyxgmuRum4cgBzaV4z5d62
5CS8wxtdyCVu0VhNGf+j2tcH3798HMnujZarmy4fspCd8PTO2oW+2m+egGCBaYcY
xpGI/TAvlaKe9nGZ4Hbz5KzOKFlL6QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFEc2
E58QTe8kQuns0zV0OLQcjgKBMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8zMEM4NEZEQzFBMDYxMUYwQTVCN0E0Qjg2REI4QkNDNi5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnP34MA0GCSqGSIb3DQEBCwUA
A4IBAQBaj315MhduSP4QSrgSJen1c7EdFdlaKgXz+SMhgHSgyME8h8JBkWoz9Aco
GX/qqROWAbw1N15SI29jeaXUlQTZT/rqkpaBXvM0TjaRgCqqpTA7Ha1RVZqndEHc
7U18qFJLlPxZ/gJ8MESlaVcYTsEBB9JdBz6kc5Wt2cuCwR09HHaTJmIA4/3xpXYj
L3uSsvBfppolN1S7cmhpSK1xnD8WNe8xbGsu8K9/dB04sTg9fDch9LOt7wxb8oRO
vYci3xNUxH1REoRdFxFDokCT965dUcdJ6Z8UVWcWPiN9Ys7wFBUOlRuZXU0eZBLb
N/m46bAbaR2NrLSF3tI2ByvtqxlC
-----END CERTIFICATE-----
Generated at Sun Apr 27 05:56:52 2025 by rpki-client