Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/11EA2DDCCCFF11EF97396AA3762E951A.roa
File: 11EA2DDCCCFF11EF97396AA3762E951A.roa (raw, json)
Hash identifier: +wwEgGQLVJki1xHdtsMeJ5B0mKdq4i+9skOGoVPi+bQ=
Subject key identifier: 1B:ED:4A:7B:7D:B3:DA:1C:EB:B1:84:E1:CA:FF:D1:42:C2:F0:1F:B5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FC61
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/11EA2DDCCCFF11EF97396AA3762E951A.roa
Signing time: Tue 07 Jan 2025 13:55:36 +0000
ROA not before: Tue 07 Jan 2025 13:55:32 +0000
ROA not after: Sat 13 Dec 2025 13:55:32 +0000
asID: 984
IP address blocks: 156.238.105.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64609 (0xfc61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 13:55:32 2025 GMT
Not After : Dec 13 13:55:32 2025 GMT
Subject: CN=677d3258-6d17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:5f:4f:c4:a5:8c:52:ef:46:9b:1e:9d:c0:02:
b5:f2:15:21:af:cc:80:d1:f8:98:44:8a:15:c4:01:
c2:cd:14:39:8b:e5:d7:6c:8f:2e:70:9e:62:ee:0b:
94:31:71:fd:2f:fa:29:3a:d8:27:6d:71:3e:68:83:
83:37:b4:58:0b:20:5d:55:d2:ac:3f:ab:e4:f3:37:
fd:64:e5:c8:42:80:85:6f:3f:07:96:c0:72:dd:e8:
8f:77:f2:75:5e:68:ff:aa:f4:e1:1a:a5:e5:ca:7c:
54:c3:9a:c7:da:6a:1b:97:1e:e3:2f:e7:1b:d9:31:
5e:92:9d:b0:0d:d8:11:02:b7:00:12:3d:89:1e:8c:
55:1b:5f:6a:ed:a6:ae:c3:7e:63:1c:95:58:ad:0c:
54:cd:9a:aa:b3:de:ef:1b:9e:df:5e:cf:fa:55:b3:
6e:30:2a:ad:ff:20:ec:7c:10:48:6a:30:1c:4c:d1:
91:5a:55:2c:08:68:65:3b:ba:07:5d:de:1a:27:06:
c7:a1:da:42:bd:42:17:ff:fe:0d:00:21:e7:7b:d7:
38:4f:fb:0e:75:e2:fa:33:30:b5:e6:49:b8:13:15:
fc:b2:ba:83:38:2d:ac:18:fd:88:6b:a8:64:cf:a8:
d9:0e:f6:66:92:b7:ff:2d:14:cd:09:c3:f4:6d:eb:
94:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:ED:4A:7B:7D:B3:DA:1C:EB:B1:84:E1:CA:FF:D1:42:C2:F0:1F:B5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/11EA2DDCCCFF11EF97396AA3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.105.0/24
Signature Algorithm: sha256WithRSAEncryption
00:d3:8b:ac:ac:28:f2:86:e1:ca:47:de:b4:5a:28:ee:f2:c4:
d8:72:3c:92:12:87:ce:d2:95:6f:b1:1c:d7:cf:38:43:65:34:
a0:ad:6e:73:4e:43:4b:85:64:00:99:f1:bb:52:0e:7a:d4:35:
70:c4:43:14:cf:58:8c:bf:c8:47:67:59:4b:e1:50:f1:97:fa:
5d:a9:5c:f0:ec:0c:72:8d:d4:8b:49:2f:5d:ee:e1:e4:ec:90:
85:cd:39:e5:43:d9:10:97:8f:b0:a0:5e:89:7d:5f:5c:6b:24:
ce:d0:c5:39:e5:09:e5:f6:2a:5e:88:c0:47:7d:96:19:4d:b1:
18:25:5d:5d:bb:22:ae:f6:66:45:f9:f5:ff:1e:1b:ce:a7:ec:
24:1c:93:db:ec:1c:ca:17:26:83:a3:c2:5d:62:cc:f1:3b:47:
2c:d0:d3:80:5f:0f:aa:04:c3:12:5a:44:20:a8:49:31:b7:16:
d7:a9:72:5e:07:0c:d9:94:c4:54:52:f3:84:b1:a4:5f:ed:75:
50:1b:4d:cc:13:40:0f:e9:0b:33:b5:94:57:4c:b8:94:13:22:
29:bf:f6:bc:3b:cb:9c:59:f3:01:38:fd:47:38:62:fa:27:ea:
9b:75:4f:c3:bf:37:d0:12:e1:45:51:86:93:a1:c3:c8:0d:e9:
10:98:4a:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:49:43 2025 by rpki-client