Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0275C9F4CD7E11EF89317659762E951A.roa
File: 0275C9F4CD7E11EF89317659762E951A.roa (raw, json)
Hash identifier: gOm3Sjr7rOX8xyfc2nSbu4if4aPS7/hveLD6iLGGV9w=
Subject key identifier: 7E:94:CD:38:29:56:DF:5E:F9:BA:F8:A9:BA:56:8E:21:CF:AD:13:64
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FFED
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0275C9F4CD7E11EF89317659762E951A.roa
Signing time: Wed 08 Jan 2025 05:04:16 +0000
ROA not before: Wed 08 Jan 2025 05:04:13 +0000
ROA not after: Sat 13 Dec 2025 05:04:13 +0000
asID: 984
IP address blocks: 156.250.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65517 (0xffed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 8 05:04:13 2025 GMT
Not After : Dec 13 05:04:13 2025 GMT
Subject: CN=677e0750-ac92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:24:d8:a7:c8:90:81:ed:a2:9b:f5:97:27:9b:
7e:01:2a:b6:59:f1:ad:3d:40:8d:d1:46:1a:b1:b5:
26:94:56:08:7b:16:c3:95:1d:33:87:73:89:f3:46:
e9:b7:99:d9:4c:6d:c4:c5:db:b0:01:fa:35:db:8f:
2a:3d:c5:d2:98:35:7e:cc:00:c5:01:65:a8:f7:99:
5d:86:59:24:51:52:b3:78:45:c5:20:2d:d1:69:61:
b9:5d:99:01:64:3f:53:18:e4:4e:0f:18:fe:e5:6b:
b9:5b:8a:bd:41:00:6f:e2:b9:ad:90:f2:c7:27:3d:
44:bd:e5:f4:a8:02:c1:e2:0a:4e:28:db:12:5b:d2:
cd:f2:05:78:26:a0:bc:e6:a4:aa:1e:12:4e:aa:35:
82:62:10:0d:8b:75:a5:2e:bd:08:b7:9e:73:40:a5:
94:6d:3e:08:51:89:b5:a9:f4:c9:48:6b:4d:89:b9:
b6:51:4a:af:12:e5:a0:fd:97:4f:ad:4e:23:cd:c0:
c2:eb:85:2f:75:84:5a:9a:07:bc:19:11:38:15:d6:
91:dc:85:a7:0f:82:b7:29:e6:b2:54:c5:19:d1:00:
17:38:8e:4a:0c:5d:6d:de:7a:a7:1a:58:6a:91:7e:
50:0a:b2:b9:8f:ed:47:77:2f:6e:ca:93:8a:06:50:
e5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:94:CD:38:29:56:DF:5E:F9:BA:F8:A9:BA:56:8E:21:CF:AD:13:64
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0275C9F4CD7E11EF89317659762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.250.60.0/24
Signature Algorithm: sha256WithRSAEncryption
33:c9:c6:4f:f0:fd:1f:ff:2a:0f:7c:f5:31:f4:08:1d:f2:cc:
10:09:17:71:b9:e2:96:47:c7:60:52:13:24:be:9a:8c:43:e1:
50:ab:fb:2a:f5:65:da:36:55:b8:87:08:88:b9:3e:f4:aa:b7:
7e:3e:83:1f:69:59:65:3a:76:1c:1b:a7:e0:16:ba:1d:69:88:
ae:b1:75:64:ea:f1:45:6f:b2:f7:b0:45:06:da:42:c6:86:be:
4e:76:48:f9:b6:39:c3:3b:db:e6:5b:31:82:51:14:c7:ca:6d:
dd:1e:fd:e1:9f:bc:2c:e8:2e:05:d0:d3:7b:ff:3f:f0:97:31:
53:c3:b5:a3:7b:06:b0:b6:8a:58:4a:d0:63:2d:8a:02:74:48:
c2:e6:6c:b3:6a:ab:b8:ea:d4:cf:24:0f:d0:a8:ac:a2:f4:6c:
64:a3:72:b3:d3:51:31:cf:ee:eb:61:68:cb:29:16:52:6c:e0:
ff:d7:cc:d4:8b:21:22:50:9c:03:6c:d5:7e:60:86:d7:2b:82:
64:fc:93:2c:8a:fb:04:3a:4f:d0:f2:cb:6b:b0:d7:8b:38:bd:
2b:4f:f4:3e:14:9c:8b:bd:62:b2:9a:c7:20:33:1b:29:66:3d:
3c:ec:50:35:1b:7e:ff:8f:97:d7:b6:3c:de:70:f0:a6:d5:ae:
b5:11:c1:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:50:17 2025 by rpki-client