Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7CB7EA5619FC11F0BE59F8F76DB8BCC6.roa
File: 7CB7EA5619FC11F0BE59F8F76DB8BCC6.roa (raw, json)
Hash identifier: +BLH58B0t8YKRtX6DrNJoBesvvtgtmWkRqHW6p71jbQ=
Subject key identifier: C5:84:0D:D0:66:FB:E2:A8:C9:86:39:E5:CC:A0:44:6D:BA:53:94:01
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014C5E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7CB7EA5619FC11F0BE59F8F76DB8BCC6.roa
Signing time: Tue 15 Apr 2025 13:21:07 +0000
ROA not before: Tue 15 Apr 2025 13:21:02 +0000
ROA not after: Wed 01 Oct 2025 13:21:02 +0000
asID: 55355
IP address blocks: 156.225.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85086 (0x14c5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 15 13:21:02 2025 GMT
Not After : Oct 1 13:21:02 2025 GMT
Subject: CN=67fe5d43-7d7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:bc:fb:b5:b5:fe:96:6e:00:3c:94:84:74:f7:
c0:c2:db:ba:47:89:f7:4f:f8:5f:51:37:59:cd:79:
14:76:0e:65:f4:85:ae:d7:14:30:c2:71:09:27:c7:
89:94:a2:74:24:15:fa:b0:b6:00:e4:3d:60:77:d9:
f5:d2:9f:d3:ba:0d:ff:a3:4d:4a:c8:de:e9:43:00:
fa:d5:77:b1:d5:46:67:8c:4b:c3:db:dd:3e:24:69:
46:0a:db:8d:e4:36:91:c5:9e:f1:25:75:72:e5:fa:
64:2d:79:60:64:59:da:41:d6:3a:2b:23:63:05:40:
ee:28:bc:ce:ad:05:94:d4:14:db:db:ab:ed:06:b6:
a0:6a:63:aa:de:89:a2:1d:fe:b0:41:78:b0:81:ef:
aa:15:03:70:26:e2:24:5b:fd:33:be:25:31:f6:c4:
f2:5f:33:66:3d:06:7a:83:38:e2:d5:f1:33:79:f0:
76:8a:00:b8:e6:c6:71:7d:93:a9:a3:3e:5e:5c:de:
89:1b:d2:f7:ac:8e:13:a7:bd:15:44:3c:2d:c0:e4:
7c:4d:33:ca:ea:99:88:9d:b9:50:22:2b:b5:8d:76:
30:00:13:3e:21:bc:ba:77:ee:73:62:c8:e1:6c:29:
f8:65:8f:f7:cc:33:4d:24:7e:b8:95:01:6d:be:61:
a9:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:84:0D:D0:66:FB:E2:A8:C9:86:39:E5:CC:A0:44:6D:BA:53:94:01
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7CB7EA5619FC11F0BE59F8F76DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.7.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:ca:a0:40:10:9b:3d:82:3f:53:bb:3c:74:26:aa:c0:7b:86:
c7:bc:d1:d3:74:cb:e3:de:48:8c:62:72:54:1c:49:be:1c:2e:
aa:eb:4d:ee:ec:17:ed:32:5d:82:25:cd:29:c9:4d:e9:52:8c:
3b:63:c3:3d:16:d3:e2:95:9a:82:4c:af:9c:54:6a:f0:cb:c7:
c1:ad:53:1a:75:02:83:c1:6c:d9:cd:d8:d6:49:c1:c2:35:55:
d7:3e:36:6d:3b:e6:66:64:07:d0:6d:70:fe:01:1c:87:71:78:
71:1b:75:ef:50:b8:8e:33:06:d0:32:d0:15:e1:07:a9:ba:43:
c0:ac:d7:79:58:1b:f0:ce:d1:5b:57:68:c4:b2:ec:a5:7a:56:
6a:39:45:e8:de:3e:e0:52:72:68:00:88:d0:0e:bf:5c:5b:99:
6f:e6:ea:3a:1d:a8:aa:fd:79:d9:38:bc:a0:b7:cd:87:20:09:
d4:6d:29:67:70:f6:53:1e:3a:d6:0a:ea:65:be:dd:ab:e9:8e:
fe:4a:a4:aa:be:54:bd:af:30:9b:87:8f:2d:80:78:ce:91:28:
f0:fb:52:89:16:ab:2a:b9:7a:3c:00:65:1d:69:5a:f4:07:ab:
62:8a:df:7e:0c:79:a7:68:86:0d:30:5f:23:76:87:c5:06:39:
db:b7:b2:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:50:39 2025 by rpki-client