Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/39DBA36ECD3311EFA2B32F6B762E951A.roa
File: 39DBA36ECD3311EFA2B32F6B762E951A.roa (raw, json)
Hash identifier: qfqoNBtZHI2LxuzHxenJciR8V1TQSwE1OvgSLAO4lB0=
Subject key identifier: 10:75:67:CE:6D:57:0D:81:19:95:BD:B0:72:6C:00:3A:68:12:9C:81
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FE03
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/39DBA36ECD3311EFA2B32F6B762E951A.roa
Signing time: Tue 07 Jan 2025 20:08:57 +0000
ROA not before: Tue 07 Jan 2025 20:08:53 +0000
ROA not after: Sat 13 Dec 2025 20:08:53 +0000
asID: 984
IP address blocks: 156.243.42.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65027 (0xfe03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 20:08:53 2025 GMT
Not After : Dec 13 20:08:53 2025 GMT
Subject: CN=677d89d9-7b67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:da:a5:87:d8:e6:9a:cb:45:b5:a0:09:9b:d7:
46:b8:f5:60:73:79:b1:2b:f8:1b:0e:cf:8b:b3:b5:
6f:96:70:e4:f2:d4:5b:8e:59:62:a8:64:19:2a:b3:
78:73:98:c3:05:3f:17:7f:ed:f5:58:a1:b6:39:98:
9c:2a:dd:80:23:f9:2e:2a:ff:84:05:54:83:a4:83:
fa:fe:5a:e7:c2:8f:68:7c:bc:58:26:03:4a:68:90:
07:b9:a9:f0:a9:aa:c0:97:9f:db:26:61:a1:57:23:
6f:a5:e6:15:07:87:fc:22:31:ad:0f:79:d7:68:d7:
9d:4c:e2:f7:5a:fb:24:d7:94:58:df:d6:4a:11:e4:
19:64:e9:98:05:5b:39:7d:b8:4d:0f:74:4e:7f:b2:
bd:6c:4b:5b:be:4e:23:31:78:0a:5f:27:fb:1b:df:
e6:77:4e:52:71:a1:fb:f1:c8:f6:37:ad:7f:5b:53:
ae:44:de:a7:25:cf:05:b6:c3:71:07:47:83:0d:1b:
c4:2f:13:25:98:4f:5f:c0:bf:25:65:0b:95:8e:3e:
56:73:5f:fb:63:9e:31:9d:08:f4:a2:bb:28:58:e9:
9b:da:bf:98:6b:f7:21:54:31:c7:04:68:45:44:cf:
f1:0d:e3:d2:5f:c6:4b:0a:b7:ca:39:bf:4a:e3:78:
08:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:75:67:CE:6D:57:0D:81:19:95:BD:B0:72:6C:00:3A:68:12:9C:81
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/39DBA36ECD3311EFA2B32F6B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.243.42.0/24
Signature Algorithm: sha256WithRSAEncryption
12:98:9a:10:67:34:60:95:eb:7e:1f:37:06:44:aa:f4:10:83:
27:7a:f0:c8:48:75:df:a6:1f:d4:b7:f8:f0:e5:da:ac:5a:01:
15:0a:61:7f:ad:58:31:b5:97:22:b2:80:f6:64:c4:09:7b:35:
91:cc:c2:8f:cb:77:66:71:0a:78:81:86:db:fd:95:59:50:b3:
f4:11:26:da:ec:f1:9d:2b:6b:9c:0f:94:b6:f5:fb:37:0b:68:
ee:ff:cd:61:87:50:74:9e:56:f0:54:01:22:a9:ce:cd:5b:e7:
29:be:52:e0:8b:f4:29:ba:1b:6b:ba:12:8e:8c:56:c3:ea:c0:
94:3d:4d:45:30:ba:21:ab:34:df:cf:a7:39:ed:23:36:df:b4:
80:8e:47:62:2c:51:a2:36:71:86:d6:19:f0:2d:28:a5:9b:ce:
a3:1b:e2:02:88:1d:32:f2:be:51:7c:9a:b8:be:b2:a2:32:11:
2e:8f:3f:6e:04:41:dc:95:18:66:ef:8b:e0:64:7a:99:a4:76:
96:0f:10:3b:2c:89:c9:01:bb:97:a0:b6:2d:84:83:aa:4e:a8:
36:01:f5:20:fa:2e:0e:59:44:4b:bd:9b:4e:6b:b9:94:28:a9:
d3:fe:47:f9:87:95:2c:ca:b5:9a:3b:f4:6b:6b:1b:ac:0b:72:
33:61:b7:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:36:27 2025 by rpki-client