Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/06367AAACCE011EF8B70E560762E951A.roa
File: 06367AAACCE011EF8B70E560762E951A.roa (raw, json)
Hash identifier: pIN1QGngViQ+D3Vc3uqWDD/zeofibHaSYwjDrROZf5g=
Subject key identifier: AD:F1:A8:79:8B:1F:EE:4E:7D:4D:A3:FB:9A:FB:F7:AA:92:57:0F:E9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FB99
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/06367AAACCE011EF8B70E560762E951A.roa
Signing time: Tue 07 Jan 2025 10:13:22 +0000
ROA not before: Tue 07 Jan 2025 10:13:18 +0000
ROA not after: Sat 13 Dec 2025 10:13:18 +0000
asID: 984
IP address blocks: 156.233.224.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64409 (0xfb99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 10:13:18 2025 GMT
Not After : Dec 13 10:13:18 2025 GMT
Subject: CN=677cfe42-3d7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:bc:bb:3c:f1:9d:2c:38:36:e5:11:fd:b3:46:
10:b2:94:90:3b:91:4a:7c:97:0b:db:56:08:f6:7f:
68:54:00:29:d2:2a:c1:97:d9:ee:8d:ae:11:58:a0:
4e:00:c9:7a:63:38:ff:ca:73:15:e3:c1:8f:7d:c1:
71:82:c6:c2:a8:f8:5d:46:83:d1:c3:ba:c3:70:2b:
f2:32:e0:b8:04:0a:e4:3e:42:e5:00:18:2f:9e:52:
67:f4:05:05:87:c8:6e:ac:e8:a9:e9:d9:5c:2d:cf:
e2:00:84:a1:99:42:6b:c2:0c:ad:a7:0b:50:57:2d:
39:a1:5e:6a:b5:14:d8:21:19:fe:ab:99:59:ef:8d:
1d:67:5a:9e:ce:a7:8c:bd:9d:f0:b0:91:a7:88:a6:
da:ae:4d:a6:be:6e:7a:c8:c5:98:26:7c:93:a4:a1:
f7:a4:8b:4d:39:74:41:55:0f:a0:36:ff:de:01:dc:
e0:2d:92:b7:17:90:38:d8:d3:7d:22:c5:1a:9d:cf:
1b:48:bd:70:dc:d9:45:4e:20:a5:cd:e7:e7:51:44:
3a:65:03:61:ce:ed:23:bf:ea:32:55:6f:b5:c3:3d:
bc:e0:ad:63:21:a3:87:5c:ab:d8:a5:81:2b:9d:24:
04:eb:d8:8e:21:01:d6:05:72:40:f1:7d:ac:3c:ec:
40:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:F1:A8:79:8B:1F:EE:4E:7D:4D:A3:FB:9A:FB:F7:AA:92:57:0F:E9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/06367AAACCE011EF8B70E560762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.224.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:60:72:d1:d5:71:4d:a5:c1:90:f1:1e:6a:65:e5:cb:e7:73:
c1:a9:af:97:03:d6:63:a3:a4:88:d9:3c:4c:04:8a:3f:ba:72:
32:69:60:29:5f:ce:c8:43:c0:49:38:bf:cd:d6:a4:9a:c8:a6:
a9:d9:61:24:57:5e:23:68:76:76:38:e8:ce:8e:b4:14:24:16:
d0:c2:d5:8a:46:70:ee:fa:79:8b:8c:2c:95:7e:eb:95:a9:4f:
d5:0d:bf:26:30:1d:39:4f:33:5a:4f:cb:77:cf:d2:f8:96:9f:
c4:10:c8:4f:a2:f4:36:b2:ce:bc:4e:d3:41:0a:19:e2:86:c2:
2b:a2:cd:0d:25:3e:23:3d:ab:ef:f4:a9:8c:0c:8c:bf:15:3c:
86:fb:aa:6a:fd:8f:23:26:f6:a5:fb:e8:3d:c5:f7:84:4e:ce:
d7:fd:3a:d3:29:25:44:f0:8c:f7:77:64:2e:6f:65:8a:94:e2:
31:b3:3d:c2:79:75:d3:64:86:ed:0e:34:50:5f:2d:e2:f1:08:
f4:4f:fd:d4:6f:3f:67:f0:f7:88:cd:cf:9b:ed:d8:20:b0:6d:
a6:50:94:1b:04:02:27:38:ea:31:4b:f3:3b:8c:4d:ba:cd:ee:
8e:d1:35:20:1a:21:28:48:4d:99:bf:5d:0b:31:30:af:47:76:
34:aa:b2:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:51:15 2025 by rpki-client