Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1946AE94C99811EFB3B41892762E951A.roa
File: 1946AE94C99811EFB3B41892762E951A.roa (raw, json)
Hash identifier: fTysl5WZ7/wuaZvGQ26KfVinO8jAljCBXk44wcHc4BQ=
Subject key identifier: F6:53:1D:03:81:2D:BF:01:0D:98:C2:72:8B:31:1B:A7:FC:1D:F3:EC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F625
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1946AE94C99811EFB3B41892762E951A.roa
Signing time: Fri 03 Jan 2025 06:00:57 +0000
ROA not before: Fri 03 Jan 2025 06:00:53 +0000
ROA not after: Mon 13 Dec 2027 06:00:53 +0000
asID: 17561
IP address blocks: 156.233.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63013 (0xf625)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 3 06:00:53 2025 GMT
Not After : Dec 13 06:00:53 2027 GMT
Subject: CN=67777d19-b6f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:0d:53:21:ee:a4:aa:63:a8:26:4d:60:ed:b2:
3d:80:af:68:1d:66:1d:ff:25:74:59:b0:38:7d:30:
33:8f:0c:00:5a:f0:7b:2e:72:27:1b:6d:66:89:37:
58:a8:44:22:f0:58:0c:11:4b:c4:9a:c1:f6:39:ab:
98:e6:dd:e0:aa:b3:cf:1b:1a:ca:84:a5:4a:61:8d:
b9:21:6a:47:e7:aa:82:8f:23:ba:fd:2f:b9:89:0f:
32:8e:cc:f9:d2:39:57:a4:d9:b7:aa:67:7d:c6:84:
02:5b:81:a0:19:3e:96:bc:22:74:55:48:8a:b4:68:
1a:5b:3b:f3:28:b0:7a:c8:04:59:02:ae:9d:bd:23:
de:96:65:bc:7b:12:b9:d7:11:e8:ec:d1:e2:5d:70:
8f:e6:50:3e:53:8a:22:97:a0:8d:4f:d8:8a:1d:d4:
88:13:ad:8a:91:20:43:77:dd:1b:fd:84:ea:2f:b2:
81:79:b8:7f:03:8a:ae:ff:b7:0a:1c:98:a2:f7:2d:
e8:f9:11:6f:b8:35:5a:b5:47:63:c9:e8:bd:6e:06:
79:39:fe:01:d8:60:71:2d:63:c7:a9:f6:78:eb:62:
12:9a:ba:62:cc:af:11:23:53:14:ec:4b:7b:fa:49:
87:9a:b8:5a:d3:08:3e:24:a2:e1:63:f5:47:86:2e:
f9:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:53:1D:03:81:2D:BF:01:0D:98:C2:72:8B:31:1B:A7:FC:1D:F3:EC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1946AE94C99811EFB3B41892762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.151.0/24
Signature Algorithm: sha256WithRSAEncryption
18:c9:ff:76:3b:c2:99:38:bc:68:a0:36:27:4c:96:e7:b3:25:
af:b8:23:9d:fa:28:90:21:23:10:7a:b8:d1:98:64:0e:e9:40:
3e:29:bc:64:f3:f6:ff:54:d1:b3:d9:dc:f8:91:1e:6c:65:af:
3e:f8:ef:55:f5:77:96:95:1d:54:bd:2e:19:1b:40:bd:c5:ff:
21:51:e3:cc:9c:09:eb:4a:ac:e8:71:38:24:91:e1:0f:c2:e4:
f9:e8:88:d7:06:ff:b2:c7:7b:72:10:73:3d:ad:e1:b8:69:f5:
76:18:54:2a:51:6e:73:d7:3c:5f:af:73:a3:3c:47:0e:6f:d0:
d5:aa:6b:cb:65:b0:06:68:aa:f8:8b:4b:64:ab:1f:b2:80:92:
fa:05:b4:6b:3f:cf:10:bf:b2:a5:43:8c:89:07:5e:8d:92:d9:
3e:51:b5:8a:6d:39:74:4a:f4:1d:fe:d2:79:f2:5f:63:a9:24:
66:f0:6b:cb:f0:17:55:12:c5:f2:ab:93:a4:1b:3c:62:99:6a:
51:9b:af:0a:5c:09:56:57:83:de:6d:03:73:21:fc:b6:54:e1:
da:72:48:25:f6:40:ce:ba:f2:58:c8:f8:c7:55:83:1c:b3:e5:
3d:2b:dd:28:32:d2:2e:a4:20:0a:6d:f0:bf:12:57:e3:ed:a3:
cc:69:71:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:56:35 2025 by rpki-client