Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1F01AC72C28511EF9C19D392762E951A.roa
File: 1F01AC72C28511EF9C19D392762E951A.roa (raw, json)
Hash identifier: t26xX+2PAqqLWi0XqvSkgP5MtmlZSFmCkelb1nVVTME=
Subject key identifier: 9B:13:0C:B4:F9:24:15:32:5A:B1:93:86:D9:AF:CC:A9:01:6C:64:1A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E91B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1F01AC72C28511EF9C19D392762E951A.roa
Signing time: Wed 25 Dec 2024 05:57:28 +0000
ROA not before: Wed 25 Dec 2024 05:57:24 +0000
ROA not after: Wed 10 Dec 2025 05:57:24 +0000
asID: 984
IP address blocks: 156.228.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59675 (0xe91b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 25 05:57:24 2024 GMT
Not After : Dec 10 05:57:24 2025 GMT
Subject: CN=676b9ec8-3b02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:24:22:51:1f:b4:a2:d7:e4:22:96:94:27:86:
04:9e:50:01:8c:f0:38:5e:2b:e1:14:f3:54:4f:54:
12:4e:6b:bc:bc:3b:46:e1:83:c4:5d:8d:73:6d:d9:
cf:3d:82:67:53:40:6a:1c:17:31:23:43:ff:9b:1d:
f6:20:a7:8e:f9:89:d3:86:0b:e3:17:fc:2b:ea:7c:
c7:69:8e:d6:c4:2d:14:b8:12:22:dc:91:b7:ab:4d:
2b:19:80:54:bc:45:5c:89:69:d3:a2:ed:36:ba:0f:
9b:8a:30:36:4f:c3:83:d2:de:48:62:90:37:d3:43:
c1:73:68:b5:8f:94:57:0f:d4:2d:28:78:e9:01:7f:
7b:b2:f5:58:ec:f8:b7:ca:2c:f1:a0:7f:4e:b9:6f:
59:65:08:82:c7:cd:69:b8:11:9b:7e:af:6d:77:e0:
4c:56:e1:a5:43:f4:00:ac:80:0a:d4:2e:4f:3b:9e:
cd:20:83:73:80:69:2a:e6:59:b0:87:1f:c0:31:ad:
7d:3a:40:65:ab:49:17:d8:ae:5a:2f:f9:1c:ef:0e:
e6:2e:e4:81:6d:1c:48:2e:38:6f:05:95:96:f1:66:
d3:2a:e5:0b:77:0a:d2:fb:46:79:56:d8:59:2f:e4:
c1:18:d7:b4:f6:2a:c1:4a:07:a1:18:2f:17:7e:39:
f0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:13:0C:B4:F9:24:15:32:5A:B1:93:86:D9:AF:CC:A9:01:6C:64:1A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1F01AC72C28511EF9C19D392762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.45.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:ba:62:56:c0:94:57:8a:29:ca:e2:51:21:db:3d:9c:f1:17:
39:20:24:0e:fb:25:55:b7:70:4e:70:4f:cf:d1:f5:4f:5b:12:
5e:20:56:5d:67:a1:43:0a:36:31:12:d5:c0:45:86:72:7a:48:
06:d2:34:f8:26:b9:3d:38:28:88:b8:eb:54:90:d9:25:b9:0e:
da:00:71:51:aa:62:32:a7:8b:1a:73:de:44:4d:32:56:9c:8b:
80:a3:46:71:71:61:da:58:19:22:bb:62:d9:3f:7d:0b:1e:c9:
65:05:95:88:3a:b5:70:b7:36:9a:ee:95:f1:19:6d:3e:26:af:
3e:08:6f:47:d1:02:74:90:42:4e:ee:2b:83:70:26:98:f5:ba:
d3:bb:67:e1:70:08:8e:f3:64:5a:6f:8e:6a:69:52:16:39:7a:
08:ed:29:ab:86:4f:20:52:20:37:85:2d:9b:eb:54:c5:e6:67:
ae:f8:f8:ce:01:23:29:56:e5:78:ba:f0:a4:1d:30:a2:63:aa:
65:ef:20:01:d4:32:f1:9b:e9:85:ec:41:b1:a4:43:61:08:33:
b6:e9:89:ec:07:f9:8d:81:a3:68:de:4f:56:27:b0:9c:48:84:
b1:35:6e:bd:22:07:da:26:c4:ea:d4:ce:70:33:70:0a:54:61:
14:6e:7b:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:53:32 2025 by rpki-client