Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03E4A82ACDCC11EFBED1CF46762E951A.roa
File: 03E4A82ACDCC11EFBED1CF46762E951A.roa (raw, json)
Hash identifier: ne7tVZgPyhXsWDian6z97qadR85biLxUO/WPfIrIvMY=
Subject key identifier: 6D:3E:C8:F2:4B:66:27:77:C8:16:5D:87:D7:10:9B:36:6D:5C:C6:CB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0101E4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03E4A82ACDCC11EFBED1CF46762E951A.roa
Signing time: Wed 08 Jan 2025 14:22:39 +0000
ROA not before: Wed 08 Jan 2025 14:22:36 +0000
ROA not after: Wed 31 Dec 2025 14:22:36 +0000
asID: 984
IP address blocks: 156.243.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66020 (0x101e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 8 14:22:36 2025 GMT
Not After : Dec 31 14:22:36 2025 GMT
Subject: CN=677e8a2f-ca25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:cc:d2:19:9f:c9:40:1e:a1:f5:d9:9d:87:ec:
cb:9b:c0:60:17:42:08:68:39:e0:f1:13:f2:6c:3e:
3a:b5:a0:c3:82:56:8b:a2:70:11:b0:d1:eb:b1:32:
b6:ab:d6:46:5d:26:75:49:38:cc:59:87:92:f6:cb:
96:88:39:7a:00:88:35:6f:45:2d:34:63:0a:82:89:
b5:b4:7c:be:81:c0:0b:af:02:ac:63:4a:49:9f:e8:
0e:71:40:84:c5:d5:34:8d:5f:fd:97:88:3e:77:d5:
14:16:fc:58:5a:6c:43:8d:6e:f6:e3:ea:67:02:6a:
02:34:1c:9d:b2:f7:06:5d:e1:52:94:a1:69:4d:4d:
9c:85:a0:b0:79:7a:c8:78:aa:3b:37:33:21:49:b1:
7a:4d:f0:57:a6:82:aa:d2:a3:0b:15:f8:00:53:3d:
66:65:9f:61:dc:f0:72:74:93:ce:e3:4f:4d:1f:7d:
f9:3a:9c:f2:7e:20:92:c3:41:4a:2f:3c:9f:3b:24:
ef:d5:c7:b0:a2:66:99:dd:8f:e0:78:5a:48:28:78:
89:12:66:b8:df:34:b6:92:6f:05:45:60:bf:b3:47:
16:e2:15:d1:a7:c6:a3:17:bf:de:f1:7e:a6:0b:ad:
50:da:9c:52:a4:c7:3a:0a:de:6d:e8:f2:d4:86:7c:
a1:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:3E:C8:F2:4B:66:27:77:C8:16:5D:87:D7:10:9B:36:6D:5C:C6:CB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03E4A82ACDCC11EFBED1CF46762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.243.233.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:60:98:2e:8d:99:26:18:71:ce:05:83:f1:ed:0e:bf:27:7e:
15:17:94:45:ca:5c:ab:11:11:db:e9:2e:45:65:50:b3:a0:d6:
f1:df:f1:37:be:17:8f:da:36:90:1b:6f:24:6e:b8:49:fe:58:
06:34:c2:a0:fb:08:7c:ff:f9:9b:84:fa:87:01:3a:f3:84:81:
b6:c4:af:cc:ee:f9:71:82:c5:8f:65:16:ac:68:c9:19:ff:8d:
6e:28:56:cf:87:88:23:06:e7:b2:9b:84:4e:6e:f2:19:f2:0d:
4b:db:94:81:cd:41:aa:77:df:79:69:fc:95:55:dc:7d:ab:c7:
a7:0f:86:68:25:ee:fd:ec:dd:d9:49:7a:8b:e4:c0:f2:f7:84:
9e:11:e3:b2:52:c2:93:1b:4e:83:3c:cb:0c:4e:9d:0f:52:22:
33:d1:59:19:3a:ad:e8:fd:f8:0c:68:d0:d9:9b:21:b1:a2:4c:
4b:6a:73:85:36:f1:ff:26:50:23:58:6d:1c:95:db:c6:19:54:
9e:64:76:49:15:b3:98:7b:40:31:08:90:9f:df:ed:b0:00:2f:
41:c2:e0:30:38:b7:2f:5d:cd:4c:7e:8b:d8:c0:c3:56:37:b6:
1e:fa:98:0e:c2:20:4d:7b:59:91:22:bb:96:d2:81:50:60:d5:
da:c6:72:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:51:45 2025 by rpki-client