Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/19B239FCC28611EF9E860C99762E951A.roa
File: 19B239FCC28611EF9E860C99762E951A.roa (raw, json)
Hash identifier: XE6ukI2IY5fFHyVRfpSl0jJQtXbPavYFfK31mx8Hfvc=
Subject key identifier: 49:6A:31:F4:79:0A:63:C6:B6:88:E6:7E:A7:38:2A:7C:F5:2B:AD:81
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E927
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/19B239FCC28611EF9E860C99762E951A.roa
Signing time: Wed 25 Dec 2024 06:04:28 +0000
ROA not before: Wed 25 Dec 2024 06:04:25 +0000
ROA not after: Wed 10 Dec 2025 06:04:25 +0000
asID: 984
IP address blocks: 156.228.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59687 (0xe927)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 25 06:04:25 2024 GMT
Not After : Dec 10 06:04:25 2025 GMT
Subject: CN=676ba06c-15ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:dc:fb:1b:7e:5f:33:dc:47:dd:2d:06:df:87:
e6:b0:5f:0f:71:40:eb:7f:ac:4c:1c:b1:f8:60:26:
ee:db:31:06:d2:20:20:2f:26:c1:73:aa:0d:b2:c8:
d5:a6:b2:f8:bf:2e:e7:56:3e:8c:e3:26:92:7c:fa:
3d:f9:a8:f1:c2:dc:1b:26:b4:13:f5:84:b9:10:21:
31:e4:f0:3d:87:65:0b:ad:f7:e0:3b:58:e6:f3:83:
05:13:d6:2c:0d:df:5f:31:0d:79:86:95:7e:84:48:
a4:96:c1:6b:b9:0f:a7:af:50:99:94:7b:98:26:7d:
df:60:d0:f8:93:25:50:7b:00:5c:e2:0c:41:bf:b2:
1a:a4:33:a3:54:a2:e8:56:51:de:72:b2:24:39:12:
a6:5d:fa:38:63:aa:15:2d:ef:a5:28:78:95:16:db:
85:82:08:ff:3f:7e:dd:2c:d1:7c:05:2d:b4:05:35:
2d:33:d8:e2:ed:df:26:9f:c8:43:60:d1:4d:d8:93:
66:a3:59:bc:93:4c:76:9a:0b:e7:17:c9:34:67:62:
7d:38:54:80:9e:31:93:71:6b:0f:79:ee:3f:8e:65:
29:17:60:c7:2a:f4:4f:f6:5f:08:15:75:0f:6d:4c:
03:f1:3d:3f:4d:3f:2a:f0:e8:e3:b9:33:87:11:dd:
ca:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:6A:31:F4:79:0A:63:C6:B6:88:E6:7E:A7:38:2A:7C:F5:2B:AD:81
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/19B239FCC28611EF9E860C99762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.51.0/24
Signature Algorithm: sha256WithRSAEncryption
50:1e:7f:de:1f:2e:0a:44:e4:96:2e:53:4b:4a:18:4e:10:54:
3e:47:f9:a0:ce:6c:b5:d5:f8:e5:44:37:86:52:7c:d7:bb:0e:
e4:ef:bd:4d:12:25:fd:51:84:e1:32:d5:56:e0:87:43:79:ca:
5f:2d:51:f9:73:85:b4:01:53:6d:30:a7:52:4e:d7:11:c8:85:
98:41:8e:78:ae:7e:1a:eb:cd:51:0d:83:5b:26:51:d0:68:76:
25:fa:a1:ba:65:d8:a4:99:7f:31:a1:3e:72:0c:09:c8:c0:bc:
02:17:fa:cc:8c:27:7e:d3:68:e0:1f:e6:80:7c:2e:ad:c3:c3:
8d:7e:ae:05:fd:db:e9:bf:e5:90:3c:f8:fb:d8:a1:8e:52:c1:
25:09:c6:77:14:4b:1d:7a:eb:13:58:df:91:45:0b:75:26:3f:
1a:c9:fd:a9:3d:30:7c:02:10:c7:e4:a0:af:3f:2f:56:cb:7f:
fc:cf:3a:a1:d9:58:bb:ae:b7:14:78:52:c0:df:a9:a5:29:18:
32:0b:8c:29:c6:36:2f:0e:d1:e8:27:4e:31:1a:93:3d:43:38:
50:0b:89:a3:e4:d4:cf:5f:e1:6a:df:45:65:78:31:42:21:8b:
4a:73:76:1d:e9:71:1d:14:96:52:cf:52:f3:90:a4:ce:47:c5:
7a:5f:a4:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:45:39 2025 by rpki-client