Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/416A58E6C34711EFBF733A63762E951A.roa
File: 416A58E6C34711EFBF733A63762E951A.roa (raw, json)
Hash identifier: DMbw88dPwwJ4IIcE54d4tlBWJTJ7avrqjsL9lk1Jnn0=
Subject key identifier: 45:46:B2:BB:D9:B0:02:B6:B9:3A:33:3B:FD:B8:1E:4D:09:85:95:47
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EC13
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/416A58E6C34711EFBF733A63762E951A.roa
Signing time: Thu 26 Dec 2024 05:07:08 +0000
ROA not before: Thu 26 Dec 2024 05:07:04 +0000
ROA not after: Wed 10 Dec 2025 05:07:04 +0000
asID: 984
IP address blocks: 156.245.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60435 (0xec13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 05:07:04 2024 GMT
Not After : Dec 10 05:07:04 2025 GMT
Subject: CN=676ce47c-dcf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a0:1a:d5:dd:d7:02:90:21:51:93:32:b7:63:
b4:b7:e2:fb:8c:b3:78:fc:c5:2e:dc:6a:77:9d:f8:
8c:46:ec:85:2f:2a:d9:70:65:d6:17:f3:b3:05:be:
b9:22:ca:37:88:9b:ca:da:b0:73:33:28:aa:df:04:
6f:94:da:35:44:cd:46:51:8e:3f:b7:bb:b0:29:f5:
d4:90:9e:bd:b4:8c:12:19:dd:f8:fa:70:a9:8f:f3:
d7:f3:82:95:43:b8:eb:ae:fc:58:59:21:19:d4:73:
d1:01:67:3c:53:c0:49:c2:87:f2:92:1b:9e:e9:ff:
ab:8a:c2:30:24:72:ca:96:e4:86:c8:7f:0c:dd:83:
31:a2:cd:e1:65:11:29:98:0e:9f:a8:41:c3:b1:40:
76:81:4b:8a:54:e1:37:d7:c6:ed:c1:cf:4b:58:69:
23:c7:05:dd:24:03:62:f2:70:bb:30:4f:fc:49:b8:
45:13:2f:27:9b:32:b5:7e:0f:a6:c7:a7:54:ee:6e:
88:f9:94:43:ee:69:9c:d5:c6:03:0d:a1:77:ff:dd:
e1:71:47:be:80:87:4a:a6:ec:f5:c2:54:be:29:a9:
87:38:68:cc:41:ba:a4:69:56:a8:94:69:46:a6:63:
8a:35:14:45:61:58:e1:ab:ca:0e:e8:c5:e8:05:81:
1c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:46:B2:BB:D9:B0:02:B6:B9:3A:33:3B:FD:B8:1E:4D:09:85:95:47
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/416A58E6C34711EFBF733A63762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.180.0/24
Signature Algorithm: sha256WithRSAEncryption
55:53:a9:26:ef:24:cf:10:c8:f7:89:64:ab:f4:43:72:50:30:
71:e4:d8:06:7c:33:27:b1:d7:20:99:f4:57:4d:80:1f:28:d1:
33:d8:94:8d:91:8a:09:ce:0f:c7:04:e0:93:a5:b9:ea:c1:c4:
5e:29:33:cd:07:00:81:ec:88:5a:e6:37:3c:a9:4b:0a:00:5c:
bc:97:ec:2f:ea:24:15:40:b6:3a:d7:d2:bc:6e:c6:e1:9a:62:
4d:5c:45:5e:99:d7:0c:c6:74:02:da:57:a5:18:b9:b8:88:61:
ce:35:d5:55:2c:af:41:2c:20:7b:d3:7f:b6:15:0d:56:ee:1a:
8c:6f:a1:23:3d:ed:ab:f8:02:69:9f:d3:bd:c5:e9:f0:d8:92:
0e:48:fd:fc:0e:47:d9:6d:ca:ec:70:e0:f3:64:5b:ff:48:35:
58:b9:ba:59:1c:b3:9a:75:3f:2f:5b:f6:1d:8e:dc:0d:ca:5e:
4b:95:fb:93:b7:98:d4:ff:fa:26:b3:01:63:44:ed:c7:5c:5d:
6f:73:18:05:b2:77:1b:c0:15:f5:5b:66:1e:ee:65:bc:cb:42:
d7:8f:03:f3:dd:c6:eb:16:0b:2d:5c:b5:cd:7e:76:85:13:1a:
68:a9:c9:1f:4d:d8:4d:55:bf:26:b4:98:e3:50:44:e3:3a:85:
76:e5:42:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:58:54 2025 by rpki-client