Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/16ECCC8AD2EB11EF8ACB44BF762E951A.roa
File: 16ECCC8AD2EB11EF8ACB44BF762E951A.roa (raw, json)
Hash identifier: zjtsy0Xlcr+6k/J24MOf6l0m3bCkKiGAxcclCENcTcs=
Subject key identifier: 8A:CA:3C:35:49:EC:47:37:F6:C2:C7:E2:BB:70:53:A4:5F:0C:97:48
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010757
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/16ECCC8AD2EB11EF8ACB44BF762E951A.roa
Signing time: Wed 15 Jan 2025 02:47:42 +0000
ROA not before: Wed 15 Jan 2025 02:47:37 +0000
ROA not after: Mon 03 Jan 2028 02:47:37 +0000
asID: 17561
IP address blocks: 156.232.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67415 (0x10757)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 15 02:47:37 2025 GMT
Not After : Jan 3 02:47:37 2028 GMT
Subject: CN=678721cd-8884
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:88:b1:c7:06:cd:a1:bf:f0:48:bf:55:cc:43:
b2:42:9f:e2:d0:08:a4:56:d1:3a:a3:1c:70:f6:fd:
6f:70:5a:34:24:3f:c5:ed:b1:3d:38:49:4e:59:db:
80:3f:01:5f:c4:54:83:f3:a6:b4:bd:6d:1a:da:6a:
97:d4:b4:e8:ae:af:cc:ee:f2:6f:61:4c:d3:6f:1a:
41:47:80:e5:e2:3c:4f:41:26:3c:9e:d5:fa:54:90:
9e:44:ae:4b:e0:52:1b:2a:61:91:76:94:53:5a:69:
ff:e3:54:8a:93:40:fb:2a:db:0e:60:42:5b:a1:f6:
1a:22:27:48:47:0a:e9:a7:55:59:56:a8:83:5e:c1:
7b:b7:e1:b2:0d:30:ff:28:70:6f:4d:6d:74:4c:b4:
0c:8c:d8:0b:bd:10:fb:57:d2:2b:7e:5d:d2:3e:4c:
69:aa:de:15:6c:8d:e3:14:2d:b4:77:41:cb:0a:95:
32:17:b6:08:f2:1f:0a:d3:5d:df:53:6c:d8:c2:6f:
03:14:8b:39:b2:f4:10:54:e5:fc:3f:d1:cf:cb:52:
ab:67:4f:28:a7:73:4c:7b:25:96:a0:a0:9c:44:a6:
67:d3:ba:d0:39:48:f4:9c:42:a1:ec:db:c0:c1:0d:
54:a3:50:30:f6:6b:cd:bd:d6:9f:07:cb:60:cc:39:
04:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:CA:3C:35:49:EC:47:37:F6:C2:C7:E2:BB:70:53:A4:5F:0C:97:48
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/16ECCC8AD2EB11EF8ACB44BF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.64.0/24
Signature Algorithm: sha256WithRSAEncryption
87:ba:6f:fb:c4:24:86:42:90:8e:64:d2:01:62:40:f0:e3:b9:
d2:a7:e9:6f:2f:fb:a6:66:de:34:fb:99:8a:1f:29:25:34:49:
1c:18:e6:ac:0e:5a:9a:62:a1:31:30:31:73:5e:06:8e:b2:c3:
a2:6c:00:80:ca:b5:07:91:26:f8:b9:8f:2b:bd:85:a4:17:f0:
53:61:a6:2e:56:d8:e2:53:f7:e7:4c:a9:28:e1:bf:cc:1f:b2:
43:2b:61:43:94:4a:e1:8f:fa:8c:26:f0:eb:6a:24:8b:41:ed:
84:9a:8e:a7:91:e1:34:b6:13:bb:dc:45:aa:ef:4b:8f:74:ad:
d8:37:d1:21:d4:f5:75:45:53:c0:65:55:11:4b:95:69:3d:8f:
31:85:a2:7f:d4:cb:20:be:b9:86:44:89:32:bd:45:14:4f:49:
d4:d1:34:6a:58:22:61:3e:61:b9:94:9a:27:79:87:19:d4:51:
b8:5f:e3:d6:4d:ca:ff:24:c6:bb:38:e1:a5:3d:54:41:e5:81:
4a:e8:7a:5f:00:11:4a:34:64:77:ca:1f:09:e4:9b:34:ae:2a:
9e:97:71:f9:ce:91:9e:52:7a:bc:71:a7:87:c8:65:04:ca:11:
99:b9:d1:f8:d1:53:d3:5a:1b:a5:ea:9c:18:90:48:4b:ce:a2:
a6:81:49:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:42:46 2025 by rpki-client