Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E67C8002115811F0A6EC6192762E951A.roa
File: E67C8002115811F0A6EC6192762E951A.roa (raw, json)
Hash identifier: jAXzofFpcXxLJcoA1YC1OhvOboyZS8BWjNoUOzzTNPM=
Subject key identifier: F6:FE:7E:E2:B1:12:A5:2E:BD:BF:18:79:AD:F9:C6:D5:79:6D:9B:2D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014A3D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E67C8002115811F0A6EC6192762E951A.roa
Signing time: Fri 04 Apr 2025 13:29:57 +0000
ROA not before: Fri 04 Apr 2025 13:29:53 +0000
ROA not after: Sat 24 May 2025 13:29:53 +0000
asID: 44559
IP address blocks: 156.254.100.0/24 maxlen: 24
156.254.101.0/24 maxlen: 24
156.254.103.0/24 maxlen: 24
156.254.104.0/24 maxlen: 24
156.254.105.0/24 maxlen: 24
156.254.106.0/24 maxlen: 24
156.254.107.0/24 maxlen: 24
156.254.108.0/24 maxlen: 24
156.254.109.0/24 maxlen: 24
156.254.110.0/24 maxlen: 24
156.254.111.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 29 Apr 2025 00:26:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84541 (0x14a3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 4 13:29:53 2025 GMT
Not After : May 24 13:29:53 2025 GMT
Subject: CN=67efded5-5af5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8f:ff:6a:3c:ee:3c:c0:82:43:a1:70:36:1f:
b3:54:c2:0c:05:f3:8a:51:22:89:6b:47:de:bf:9a:
e5:10:aa:f8:8e:15:99:b4:e9:f1:f3:38:23:34:fc:
26:82:f5:b0:6b:c4:2a:dc:ef:cf:11:5f:ca:b0:ef:
47:f0:f1:1f:85:69:bd:46:5c:2b:0b:a6:c6:5b:d5:
4f:7e:8b:cd:f9:0c:e8:a7:f2:92:50:88:fb:75:1a:
c6:77:54:48:3c:a5:5f:0f:24:dd:d3:5f:f8:95:93:
88:6e:5c:da:77:29:08:fd:76:0a:54:3f:1c:c1:cb:
b0:65:7c:c5:db:3f:94:24:79:86:80:2f:85:65:3b:
6c:d9:e6:5d:77:0a:cc:35:f3:79:cd:e4:4f:ad:c5:
82:5a:b6:f9:f9:c9:e4:ab:d0:07:23:8a:46:78:fc:
15:a8:f2:77:6c:dc:0d:78:dc:21:8b:cb:a5:18:a7:
c6:fe:c8:c2:35:2e:f5:69:46:a9:d3:e3:bf:51:f6:
94:cf:28:97:91:8b:8c:71:17:1e:9e:c3:de:19:d2:
2e:6d:1b:cb:99:3f:32:af:2b:f9:82:f6:ec:c6:64:
a5:e2:4a:e5:39:a6:9d:54:9a:58:01:1e:30:6e:b9:
c7:f9:2e:57:88:1a:af:0d:69:df:46:9b:8c:b1:4d:
60:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:FE:7E:E2:B1:12:A5:2E:BD:BF:18:79:AD:F9:C6:D5:79:6D:9B:2D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E67C8002115811F0A6EC6192762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.254.100.0/23
156.254.103.0-156.254.111.255
Signature Algorithm: sha256WithRSAEncryption
23:1f:f0:fa:23:e5:4b:58:c1:3f:57:2e:52:9f:3f:35:79:60:
c0:a1:11:6c:51:aa:eb:8b:00:14:65:cd:f5:66:76:77:09:39:
ca:6f:e4:4d:5a:c5:13:c2:96:0b:ae:43:be:8e:f4:83:4a:94:
1c:c9:92:1b:fa:19:0b:a8:63:e8:b8:4e:26:37:a4:eb:d9:d8:
4d:f2:24:5f:5d:bb:f9:6f:18:bc:ae:d5:df:8d:e7:0a:55:43:
0b:b0:b3:ef:e7:42:68:a5:dc:06:f8:eb:30:aa:90:93:a1:b5:
bc:34:f4:a1:f0:40:63:1a:c4:e4:c5:89:2a:13:71:f6:41:c8:
e3:6f:4e:5d:56:35:46:47:52:a4:f7:23:12:b7:e5:76:c8:d4:
ff:25:73:68:f0:e1:32:c9:b3:b5:a6:1a:aa:5c:3a:29:ea:2c:
74:e4:2f:64:00:89:f8:62:57:23:c1:05:a0:13:4d:4d:b5:95:
84:82:5d:45:e6:cc:b9:ba:22:50:43:2a:d3:3c:03:c1:be:54:
4b:c6:1a:d3:2f:8e:ed:0c:c2:4d:ec:fa:cb:6e:4e:ef:e5:3b:
e1:8c:4c:d7:42:d7:b3:88:35:16:28:ef:88:b0:bf:f7:8e:1e:
b5:65:f2:93:43:69:3b:57:fc:92:a6:3c:f1:2b:14:62:93:3f:
ee:66:a2:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:24:45 2025 by rpki-client