Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/05734C26C95F11EFB1065691762E951A.roa
File: 05734C26C95F11EFB1065691762E951A.roa (raw, json)
Hash identifier: tAnagYsVw0tmFZncuY+chBJr2mFoyWpG2xp9+XVnCes=
Subject key identifier: 2A:EC:EC:82:73:3C:64:7F:62:00:33:2A:FC:F9:2E:7E:0B:16:3D:6F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F44C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/05734C26C95F11EFB1065691762E951A.roa
Signing time: Thu 02 Jan 2025 23:12:22 +0000
ROA not before: Thu 02 Jan 2025 23:12:19 +0000
ROA not after: Mon 13 Dec 2027 23:12:19 +0000
asID: 17561
IP address blocks: 156.226.216.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62540 (0xf44c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 2 23:12:19 2025 GMT
Not After : Dec 13 23:12:19 2027 GMT
Subject: CN=67771d56-d6f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:15:34:66:05:6b:8a:9f:5e:6b:d5:35:e5:2b:
04:b3:17:42:38:54:63:ee:d2:48:28:a1:09:d2:34:
05:9f:2a:ef:1a:7f:7b:04:4a:be:c8:40:20:60:16:
13:65:98:cb:26:3c:57:a2:5b:da:83:fe:77:65:1e:
cf:4a:c9:e9:3f:9c:0a:54:3a:f5:24:5c:34:48:76:
6c:69:a0:f1:c9:f3:fc:ea:e2:e7:68:c3:c8:a9:7f:
b1:9e:f3:52:a0:2b:dc:40:36:13:1a:b3:1e:da:14:
e6:a3:8f:db:ca:74:60:5e:63:6d:8c:02:17:d2:a4:
1b:a4:32:8d:ce:8c:63:42:0b:e4:6e:b5:63:77:3c:
9a:b5:ca:6c:da:2c:59:2f:7e:a6:69:23:3d:61:8c:
76:51:fa:5d:09:be:bd:d9:96:e6:fb:67:76:10:c6:
12:a3:c1:f7:05:d1:9a:2a:21:06:8e:47:3d:db:54:
d6:d1:cc:46:99:65:73:a8:fc:34:1b:b7:58:2c:36:
58:77:93:65:18:9d:f0:b3:af:2b:23:35:88:00:77:
14:9a:c6:0c:a4:8c:d7:b3:65:b1:78:14:41:b5:a8:
fa:c6:2a:e3:ed:30:9e:ba:20:e7:b5:dc:f5:02:6a:
39:f0:3f:a2:bc:f4:e5:b4:2b:a9:13:bb:dd:2a:03:
cf:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:EC:EC:82:73:3C:64:7F:62:00:33:2A:FC:F9:2E:7E:0B:16:3D:6F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/05734C26C95F11EFB1065691762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.226.216.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:d2:07:5a:6e:19:c9:07:7e:ff:12:64:d9:19:2c:92:af:98:
c5:71:13:79:45:d1:ab:c0:fa:b5:e2:3a:20:b3:87:8b:40:08:
19:c5:5f:98:3e:b0:08:f8:b9:9f:98:01:2f:61:02:db:13:3d:
84:6b:69:4d:39:07:8e:84:b1:8f:74:ec:44:d9:66:a7:66:d8:
76:0b:41:50:60:b6:3c:5d:22:94:2e:15:65:64:0c:dc:91:c5:
eb:ab:23:d3:e4:8c:2e:01:cc:02:1e:7e:a4:89:03:9a:e1:60:
e8:1a:18:6b:03:35:f1:3d:75:d4:0c:62:a2:66:88:8a:f7:9e:
d1:5a:ce:8f:47:5d:ef:2c:7a:40:90:ba:cc:ec:38:dc:6a:aa:
06:b0:1f:5a:97:92:b6:7c:27:cc:ef:0a:1b:3f:3e:81:ab:4a:
f7:04:26:83:56:37:50:bc:31:9b:59:bf:a0:09:a1:51:82:61:
3f:ce:11:3b:8c:ed:94:d6:35:9d:12:ea:e6:bd:27:75:b9:6b:
5f:ab:56:04:98:f3:77:71:fb:6b:f7:f8:b3:7d:5b:d8:22:5b:
54:0b:d2:ae:cd:64:fa:62:46:d7:b6:55:d8:86:75:8a:cf:06:
ce:f2:93:63:30:e0:58:60:24:c6:fe:44:7d:53:60:f6:7e:6f:
ce:c7:93:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:40:57 2025 by rpki-client