Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3380336A190D11F0BC340EBC6DB8BCC6.roa
File: 3380336A190D11F0BC340EBC6DB8BCC6.roa (raw, json)
Hash identifier: H3kiIB6Ci/UGm5V8trjX28QpgyWqkWXujSRyky1y6XM=
Subject key identifier: 0E:E6:CD:C7:40:7E:E2:0E:97:CE:CE:1E:1C:0E:D3:A5:04:F5:BB:B0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014C20
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3380336A190D11F0BC340EBC6DB8BCC6.roa
Signing time: Mon 14 Apr 2025 08:48:14 +0000
ROA not before: Mon 14 Apr 2025 08:48:10 +0000
ROA not after: Mon 19 May 2025 08:48:10 +0000
asID: 18779
IP address blocks: 156.225.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 29 Apr 2025 00:26:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85024 (0x14c20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 14 08:48:10 2025 GMT
Not After : May 19 08:48:10 2025 GMT
Subject: CN=67fccbce-53b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:73:3e:e9:d2:2f:a9:17:f5:e7:9b:ca:a1:cb:
4b:9e:1f:fd:b8:96:20:01:be:60:ca:2f:06:96:86:
2f:bf:b7:1a:e3:99:05:6b:27:69:7d:2a:73:65:47:
fd:1b:f7:f3:0d:50:f5:f7:64:a8:a7:40:79:7e:48:
b8:06:dc:e4:26:9e:30:2e:60:d6:ce:68:c5:02:b7:
41:69:82:55:c7:8a:17:b0:99:81:fd:bd:00:82:52:
6c:5b:b7:a4:72:98:9b:95:48:5b:14:1f:bb:59:39:
4e:24:5f:24:39:22:90:13:71:87:ba:13:b1:5e:b4:
62:3b:c0:b6:af:c9:9b:cf:7f:27:fa:66:39:99:5e:
5c:3b:86:d9:79:11:16:56:d3:6d:90:66:9e:4b:ba:
93:8d:6c:20:94:e5:5a:ea:92:3c:71:ca:bd:6c:47:
55:94:7d:30:97:4a:6d:bd:50:67:95:c1:eb:04:1b:
22:73:6a:5a:db:ed:b7:30:7c:99:85:d1:f7:b0:57:
38:9f:e3:16:4b:04:30:a3:e6:e4:50:8c:16:35:df:
e7:76:bf:b0:42:15:dd:b2:a7:c4:d9:ff:67:5a:db:
03:b2:a2:b9:ea:ed:cc:17:87:80:26:1c:f7:c3:13:
03:ee:5b:53:93:04:f2:21:3b:d4:11:e2:f4:93:da:
ab:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:E6:CD:C7:40:7E:E2:0E:97:CE:CE:1E:1C:0E:D3:A5:04:F5:BB:B0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3380336A190D11F0BC340EBC6DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.178.0/24
Signature Algorithm: sha256WithRSAEncryption
62:61:d7:05:2e:1a:08:b4:26:69:e8:04:32:c3:e4:95:59:a4:
07:d2:77:3c:c8:d8:5d:7b:dd:84:28:49:27:f5:5d:24:2a:be:
a0:b6:8f:02:63:a9:7e:c2:0e:f5:57:0e:ac:1d:f9:4f:30:af:
fe:75:9e:af:dd:c8:f3:37:32:2b:c5:21:ba:bf:95:ed:61:96:
e6:5e:69:00:83:8b:ff:b1:d9:6d:68:a8:73:fb:81:ed:d1:8d:
a0:3c:f3:ec:df:5a:09:8e:30:e1:0f:e0:b8:e3:c8:f9:a8:7f:
20:be:3a:ce:c9:4a:4c:5b:af:41:1c:0d:57:1f:8b:38:ba:21:
1a:97:88:40:65:aa:a2:22:8f:a6:df:3f:c9:b7:24:91:77:46:
5a:f6:35:db:d3:1d:f1:6b:8f:e0:2d:30:f1:1f:89:60:2f:6e:
54:d0:18:11:2e:11:9c:13:f1:b2:4b:b0:3e:e9:46:8d:9a:d9:
37:ad:e3:83:fb:bb:3c:b6:8f:13:22:14:39:d8:74:22:ce:3f:
59:0f:96:ab:74:90:7d:9d:2a:cb:77:22:ec:d0:01:4d:4b:b7:
f0:6b:4d:38:46:1f:56:2c:d9:db:7e:62:34:38:07:ed:67:32:
60:ae:ed:a9:52:13:d3:95:94:49:61:9f:71:f4:57:ef:23:83:
ca:1b:e2:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:05:47 2025 by rpki-client