Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1739179ACC9511EFBC5DAA72762E951A.roa
File: 1739179ACC9511EFBC5DAA72762E951A.roa (raw, json)
Hash identifier: r3/hb/gImkdszVMRIVRzuqxREdNyvN62Ocn5Z3esgcw=
Subject key identifier: 6F:D0:DB:7B:86:A5:C3:B4:75:A3:72:B7:BA:F8:94:3A:F2:2F:EF:80
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F92E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1739179ACC9511EFBC5DAA72762E951A.roa
Signing time: Tue 07 Jan 2025 01:16:58 +0000
ROA not before: Tue 07 Jan 2025 01:16:55 +0000
ROA not after: Sat 13 Dec 2025 01:16:55 +0000
asID: 984
IP address blocks: 156.227.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63790 (0xf92e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 01:16:55 2025 GMT
Not After : Dec 13 01:16:55 2025 GMT
Subject: CN=677c808a-f2bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:38:64:f2:e8:7e:d0:80:30:f4:44:ef:5e:ff:
4d:95:e5:db:0c:81:60:5b:42:92:bd:a2:54:ed:a7:
85:37:d8:6f:9f:74:a8:38:e2:2d:79:01:76:0e:b9:
20:bb:8f:5c:8d:5a:74:30:7a:3d:98:e8:83:49:50:
e5:77:83:95:f4:1b:be:bb:e4:b2:92:de:00:45:02:
c6:dd:62:01:ea:30:a6:4e:25:33:31:69:be:46:bb:
93:75:df:3c:ec:9a:33:a6:6b:28:36:1a:ae:ff:9d:
d4:7b:9f:26:e7:ef:db:c4:d9:e8:6d:46:63:b9:08:
ad:51:cf:b4:92:a3:63:7d:00:f7:76:6d:09:90:83:
f2:01:94:cf:c5:29:33:9e:99:f5:ee:6c:c9:d3:42:
37:d3:fe:2d:8d:83:24:a7:7b:3c:3f:d6:2a:db:5d:
6f:ca:7b:db:4a:b9:dd:c0:48:c5:e8:d4:42:be:60:
cf:78:fc:b6:e3:0d:33:80:e8:f7:0e:19:b7:8c:5b:
c1:bb:ca:61:2c:6a:5b:06:7a:92:29:89:ef:bb:e3:
a4:76:00:1b:d6:4f:b2:28:11:73:55:ba:59:bf:53:
ee:43:6a:5b:42:76:ab:07:64:37:46:b7:c2:a8:67:
21:a6:c0:9f:98:e4:9e:4e:d5:7b:10:59:9c:86:37:
d3:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:D0:DB:7B:86:A5:C3:B4:75:A3:72:B7:BA:F8:94:3A:F2:2F:EF:80
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1739179ACC9511EFBC5DAA72762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.76.0/24
Signature Algorithm: sha256WithRSAEncryption
22:4f:14:4a:3b:23:ab:9a:b2:8b:f1:3c:6b:93:47:e3:55:15:
14:f7:7d:22:55:2e:17:7c:20:1f:33:d2:11:8b:ca:b0:aa:0f:
33:0d:42:1a:25:99:82:85:b4:f2:a4:74:da:55:4c:3d:6a:9e:
67:fe:f9:a6:0a:e5:0b:f0:5d:16:9f:ef:e9:0a:6f:d7:9d:94:
ca:13:99:74:68:e1:f3:e2:94:15:e2:67:3d:9d:f6:18:6f:89:
03:87:79:aa:25:75:17:52:ae:6f:91:ca:b8:6f:d3:aa:39:5f:
4a:a9:75:8f:e7:4b:e3:c6:a1:aa:12:e6:d1:a3:1c:4b:ec:c6:
f8:b7:8a:59:7c:41:29:bf:a8:7b:63:56:ce:02:23:4d:8c:5b:
54:27:c6:b5:a3:cb:89:e1:00:6c:24:4f:f5:a1:cf:55:c3:f6:
67:6e:e5:af:15:0f:4d:83:5a:4f:2e:ca:ce:06:b9:7f:d2:db:
87:4c:26:03:83:26:08:20:58:b4:38:5c:9c:a6:3b:f8:74:36:
6d:72:17:6e:17:11:74:1e:f3:57:b1:ed:0e:41:4c:9a:f0:b5:
ff:7c:cc:91:f2:0e:98:3b:1f:b7:9e:fa:32:95:93:b9:f8:ea:
d1:11:02:d4:e9:8b:e8:69:78:6e:2e:35:c8:7b:ba:bc:a6:a4:
de:35:e6:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:38:19 2025 by rpki-client