Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/112FAEE8BB7B11EFB14B60A7762E951A.roa
File: 112FAEE8BB7B11EFB14B60A7762E951A.roa (raw, json)
Hash identifier: 6uD1eYt5+HkYLp4SJODBHFvEi8IvnCN7vq3LZV/JkAQ=
Subject key identifier: C6:37:BE:82:0C:D7:09:A0:34:3A:87:6A:04:19:18:E6:37:DF:99:58
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E41E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/112FAEE8BB7B11EFB14B60A7762E951A.roa
Signing time: Mon 16 Dec 2024 06:57:51 +0000
ROA not before: Mon 16 Dec 2024 06:57:48 +0000
ROA not after: Tue 04 Mar 2025 06:57:48 +0000
asID: 138152
IP address blocks: 156.232.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58398 (0xe41e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 16 06:57:48 2024 GMT
Not After : Mar 4 06:57:48 2025 GMT
Subject: CN=675fcf6f-dcbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:c2:11:31:92:0f:4e:a3:48:69:cd:09:87:de:
54:69:36:54:4d:2d:68:49:6d:a4:59:9a:2b:5c:63:
27:9a:a3:84:0d:2f:3a:01:95:ed:40:4c:6b:2a:10:
92:c9:00:ad:2a:19:fe:63:ac:0d:6d:f7:6f:38:69:
ed:3d:f1:ec:8b:07:00:a2:6c:77:0c:1b:b4:fe:1a:
e6:fb:5c:e8:3e:91:16:b3:f3:b5:c7:1d:39:34:76:
62:3f:03:80:78:21:e1:44:84:ea:4e:3a:96:65:08:
dc:f2:82:70:ee:26:4e:a0:ef:e1:2d:d0:54:5e:e7:
d7:8e:a9:fc:db:e5:33:56:f7:d6:66:c0:1f:87:96:
35:b7:81:cf:b9:01:1c:04:f6:d6:66:d5:c8:3c:1c:
4d:52:67:43:0f:06:66:36:ed:91:c6:2e:df:93:db:
88:9e:ed:84:0e:5e:91:ae:b9:ff:a6:80:8f:67:51:
9c:b1:3e:19:b5:07:dc:07:f0:a5:d7:02:2b:30:71:
d4:b5:6c:c9:f0:86:6e:ec:62:dc:4e:10:c8:6e:ca:
98:7d:dc:91:28:a4:91:6d:7e:72:31:d1:25:0d:a1:
43:30:0e:7b:80:61:99:63:17:b4:f1:73:a1:79:75:
ae:62:82:4f:2d:f7:57:a8:08:29:3a:be:7a:f0:b1:
e0:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:37:BE:82:0C:D7:09:A0:34:3A:87:6A:04:19:18:E6:37:DF:99:58
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/112FAEE8BB7B11EFB14B60A7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.13.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:43:b3:ae:71:f0:1c:71:e8:db:b4:25:75:fd:22:8f:ec:f8:
0d:60:fd:89:c7:2a:e5:e5:d7:2e:c2:0a:d2:5f:77:8b:02:2d:
d7:03:fe:18:9c:aa:15:3a:58:0f:6e:1b:e8:91:4f:41:96:50:
2f:f3:92:46:36:2f:7f:57:6f:d5:c3:16:0f:c7:dd:d4:24:70:
db:c6:a6:cd:50:6c:9e:25:56:2d:8e:21:93:75:5b:23:7b:0f:
be:2c:50:ae:70:39:ba:87:98:16:f8:cf:9c:55:e5:10:b4:6c:
94:b9:9c:55:47:8d:9d:56:78:c7:cf:37:bb:16:ab:b0:e5:fd:
91:b4:48:c1:57:15:16:1e:31:fb:0b:c2:86:84:05:93:20:0c:
78:9b:6a:97:29:c2:fe:8b:80:7e:4b:ec:76:9e:6f:de:d2:20:
ef:b9:19:83:7b:70:11:5d:ae:97:1f:2f:fe:67:af:f0:73:3b:
f4:c9:11:9c:7b:d5:61:db:bf:3c:7b:06:2e:a5:1f:b9:ca:a7:
dd:bd:6c:10:45:a5:71:7d:06:85:dd:18:e6:95:83:37:8c:89:
d2:8d:b1:42:46:ce:d9:58:e8:fc:f5:ca:9c:e1:ef:a0:d4:83:
23:a1:da:af:32:23:9c:94:36:aa:7b:8a:f1:c4:c1:d6:e1:28:
31:e2:91:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:48:51 2025 by rpki-client