Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/110CADE2C28011EF84B9A474762E951A.roa
File: 110CADE2C28011EF84B9A474762E951A.roa (raw, json)
Hash identifier: qZb6pvv220KeFS1fpDiWj/E/Igr24sm5FjYs5ZoQw5c=
Subject key identifier: CB:E7:D9:15:CC:EB:CB:EE:D3:68:A4:CD:F3:A8:10:E0:D4:2A:4A:3C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E8DD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/110CADE2C28011EF84B9A474762E951A.roa
Signing time: Wed 25 Dec 2024 05:21:17 +0000
ROA not before: Wed 25 Dec 2024 05:21:13 +0000
ROA not after: Wed 10 Dec 2025 05:21:13 +0000
asID: 984
IP address blocks: 156.228.4.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59613 (0xe8dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 25 05:21:13 2024 GMT
Not After : Dec 10 05:21:13 2025 GMT
Subject: CN=676b964d-071f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:bd:46:90:b2:ca:96:57:66:30:f2:30:6f:ec:
93:8b:82:fa:5d:17:7f:82:2c:65:8d:b6:80:75:6b:
65:d2:a0:39:6b:8c:4e:f1:50:8b:83:d7:27:e3:3a:
51:bc:86:7a:ee:c1:48:33:b3:59:3e:59:69:3c:a3:
b8:6e:79:da:a8:1b:43:c2:7a:28:e2:21:c2:3b:a2:
c2:00:1a:20:d1:4d:6e:ca:86:93:77:77:cb:ed:a5:
80:e2:46:83:93:6b:2b:71:2b:b1:67:90:b1:46:b6:
7a:ad:33:df:51:ba:5c:91:e6:7b:b5:ce:1b:17:73:
4f:a7:40:6c:c8:c2:27:68:7f:09:b2:53:92:c0:ea:
bb:21:88:68:5c:03:64:63:b4:11:83:da:96:f8:ec:
31:d6:13:5a:8f:5c:16:b6:94:2a:90:bb:1f:2b:e7:
a9:5f:fd:ca:52:5f:7e:86:f3:dc:f7:5f:30:f1:1f:
26:dc:be:56:b3:f3:9b:24:f4:e4:b0:8c:0a:f0:72:
f6:3f:8e:b7:3d:3f:77:71:52:62:4d:7a:6f:e8:23:
6b:30:37:74:35:12:cd:eb:07:fa:71:36:a4:57:ab:
55:bf:a7:d7:50:50:26:f0:59:f1:24:5d:0d:06:45:
e3:54:4a:e9:c6:61:62:4c:9c:13:71:b6:f0:d8:99:
9c:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:E7:D9:15:CC:EB:CB:EE:D3:68:A4:CD:F3:A8:10:E0:D4:2A:4A:3C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/110CADE2C28011EF84B9A474762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.4.0/24
Signature Algorithm: sha256WithRSAEncryption
71:e9:ce:ad:88:40:0b:68:1c:c7:91:c6:f9:e6:69:57:c3:c0:
5f:89:51:74:ab:f5:5f:11:8d:b5:3d:39:7a:1a:10:87:f6:b0:
51:0d:dc:6d:9f:0b:3c:0d:7d:d1:69:90:0d:41:73:ef:ad:c9:
dd:34:24:40:9d:91:75:5a:a1:6c:85:f7:c6:1f:3b:fc:5e:4f:
b0:7e:0d:f1:b4:29:6b:6e:76:3d:61:1c:5d:ca:78:a2:28:39:
b0:ab:01:f0:76:fb:34:38:47:dc:89:7a:a0:4f:52:0b:f6:7a:
2d:4d:e2:a9:31:37:94:5f:ed:c8:60:70:99:cd:1c:7e:16:c7:
7b:14:a3:80:02:11:bd:90:29:b7:3d:fb:84:b2:b9:d1:0d:5f:
9b:d6:07:62:f1:8d:d6:db:0e:75:b3:65:46:2c:e1:d4:88:e8:
50:7e:a5:33:c1:a8:8d:83:83:22:33:91:7e:c9:96:a5:b4:84:
e1:1b:6b:1d:12:fa:27:bd:e2:62:18:35:c8:68:b1:a7:bc:28:
e4:3a:86:f9:a9:25:d4:f7:96:3c:b9:c1:c5:8a:02:81:7d:ce:
1d:34:b0:f9:72:a8:fb:e0:05:b4:d0:fd:5f:29:40:b8:d8:36:
ea:af:1d:06:aa:5b:e6:52:ea:5a:79:a7:2b:19:e6:28:f2:d9:
b6:05:85:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:43:12 2025 by rpki-client