Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/17081AE0C95811EF9ED31268762E951A.roa
File: 17081AE0C95811EF9ED31268762E951A.roa (raw, json)
Hash identifier: DSz6ULwO40m39cX/yOFv9kUHMXy2rFiSIKA5ouhOsTg=
Subject key identifier: 59:0D:28:CA:3D:4E:AD:70:48:8A:46:68:37:96:95:B7:25:E1:EE:23
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F40A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/17081AE0C95811EF9ED31268762E951A.roa
Signing time: Thu 02 Jan 2025 22:22:45 +0000
ROA not before: Thu 02 Jan 2025 22:22:41 +0000
ROA not after: Mon 13 Dec 2027 22:22:41 +0000
asID: 17561
IP address blocks: 156.226.158.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62474 (0xf40a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 2 22:22:41 2025 GMT
Not After : Dec 13 22:22:41 2027 GMT
Subject: CN=677711b5-39d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:04:2b:1a:44:c6:77:e7:83:e7:4b:03:93:b5:
cb:c7:ea:2b:52:3e:38:f8:e4:af:f7:24:1f:65:03:
10:8e:e7:ec:9b:c0:90:97:6d:7f:8f:a7:22:7c:58:
5d:34:0e:1f:13:2e:df:23:1f:0d:7f:48:2a:f3:cb:
54:51:00:3b:80:18:e4:3f:42:a4:11:42:50:c6:64:
6f:63:1f:7e:cd:86:36:6c:4a:c1:55:53:bf:72:c5:
09:59:5b:ba:31:27:1c:3b:57:11:fe:98:4c:01:b8:
06:8e:67:31:ab:d2:eb:4f:21:4e:db:c8:5f:e5:f3:
52:76:48:82:c8:14:f9:39:88:e3:06:54:5d:66:64:
f3:73:27:be:47:88:64:a0:09:18:82:87:77:eb:aa:
01:de:c0:64:82:88:23:fc:be:1f:48:20:09:79:36:
d4:e8:64:46:42:1c:09:8a:47:84:56:1f:31:c6:a6:
86:96:a5:6e:0d:1d:a5:85:e8:34:f8:6a:71:8d:b7:
0b:27:03:a3:81:36:58:48:ac:b5:3d:70:ff:9f:80:
ba:9f:ae:6c:8b:16:22:d0:7e:84:24:67:ce:56:0d:
e1:0c:d5:96:80:84:27:41:3a:4e:72:97:dd:9a:1a:
93:07:95:45:68:b2:2b:47:e9:2c:b4:12:4c:39:96:
8a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:0D:28:CA:3D:4E:AD:70:48:8A:46:68:37:96:95:B7:25:E1:EE:23
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/17081AE0C95811EF9ED31268762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.226.158.0/24
Signature Algorithm: sha256WithRSAEncryption
37:62:e5:ce:9c:68:08:79:47:42:8d:d6:82:a8:35:ac:f5:ee:
26:b0:d9:e5:ba:98:ed:a7:4f:e5:7e:2a:2d:08:09:8b:e2:f1:
18:14:20:0a:94:2c:02:58:5c:80:16:14:61:8b:5a:5c:7b:87:
c9:08:26:c0:ec:7a:14:0d:71:f5:32:45:63:97:a6:67:61:a1:
1f:7e:5a:f2:d1:47:6f:8f:04:8e:36:7a:6b:56:10:d9:6c:97:
36:b4:54:ed:69:f9:76:3b:dc:2d:e2:2b:e9:da:6a:85:90:bd:
ff:a1:82:3c:2f:ce:2c:16:2d:45:20:8c:50:aa:2c:c4:c4:a2:
d9:7d:27:41:84:c3:7e:1f:dd:6e:3f:5c:fc:b1:80:b3:e0:b0:
74:2d:8f:54:07:7a:ed:07:a6:25:c0:d3:d9:3b:b6:33:55:c0:
b7:0f:eb:3f:27:53:32:2d:80:73:4a:f1:39:2a:d7:4b:15:7b:
77:a3:cb:59:05:f7:71:3a:2a:27:95:b7:1c:6d:df:ea:d4:a3:
9e:03:dc:5d:c6:78:c1:62:06:c4:7e:52:66:b4:72:13:d5:06:
4f:82:bd:7b:80:2a:eb:82:bc:42:0e:0a:6b:52:07:8b:50:b5:
a9:b4:12:54:5f:b8:7b:28:7d:99:08:11:22:ae:bc:fd:9b:70:
99:a6:48:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:48:25 2025 by rpki-client