Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/44B137DCCD1E11EF90206267762E951A.roa
File: 44B137DCCD1E11EF90206267762E951A.roa (raw, json)
Hash identifier: HqEvToewP5wxJQvE8s1zFcA30tsXGwwieiXmIgRibRs=
Subject key identifier: 24:01:77:83:EF:0C:57:EA:62:86:20:4F:1D:E1:86:F1:02:FA:C8:39
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FD5D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/44B137DCCD1E11EF90206267762E951A.roa
Signing time: Tue 07 Jan 2025 17:38:56 +0000
ROA not before: Tue 07 Jan 2025 17:38:52 +0000
ROA not after: Mon 13 Dec 2027 17:38:52 +0000
asID: 17561
IP address blocks: 156.241.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64861 (0xfd5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 17:38:52 2025 GMT
Not After : Dec 13 17:38:52 2027 GMT
Subject: CN=677d66b0-3b30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:4e:91:4f:70:fd:84:47:3d:4d:7c:32:35:32:
17:6b:3c:d0:b1:af:e0:24:3e:16:dc:20:4a:bb:d5:
dc:a8:b5:63:1c:ff:72:ee:9c:ad:7e:37:13:f0:f0:
a4:6a:bd:7d:8a:dc:af:46:9d:3b:59:98:1c:5a:3f:
61:fe:63:19:80:43:73:61:6e:d0:31:fc:e2:16:7c:
c9:d0:fc:df:05:e9:75:94:a4:db:33:48:c2:97:30:
43:8c:39:5a:de:17:f5:7b:91:d4:49:02:ec:59:d7:
b8:a0:05:a2:4b:6c:bb:63:0f:41:b2:1e:80:6b:10:
a2:a4:83:3d:d5:55:22:22:0f:48:6e:29:f7:b9:90:
44:b7:c1:5e:7c:02:ec:50:76:db:be:97:27:dc:18:
61:f9:3d:34:66:1c:3f:77:5a:da:ab:5c:47:2a:10:
55:d0:f1:ab:a3:01:c2:e5:36:c7:d5:d2:b0:f8:d4:
32:ff:f2:04:ae:39:ff:61:0e:da:b9:28:7c:5e:5f:
4e:68:f4:f3:c4:6c:62:b1:18:6a:27:de:99:87:7e:
f2:90:34:f5:b4:98:5e:a0:de:f2:74:64:ce:db:d2:
65:f9:ae:86:ee:1c:f9:a9:81:ca:58:b5:b6:2f:1a:
a9:f9:90:68:2e:bc:3b:28:1d:0f:9c:22:a0:24:38:
71:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:01:77:83:EF:0C:57:EA:62:86:20:4F:1D:E1:86:F1:02:FA:C8:39
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/44B137DCCD1E11EF90206267762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.241.55.0/24
Signature Algorithm: sha256WithRSAEncryption
27:f8:c6:be:2d:e0:e8:12:0b:80:29:4f:0b:58:3a:b3:83:4d:
28:08:ad:5d:fe:3a:7b:96:b4:3f:fc:61:d1:7f:ee:bd:a6:43:
6e:46:80:26:3f:bc:3e:88:ee:00:01:4d:58:78:5e:8f:17:cb:
58:7b:1b:4a:9a:5f:d1:dd:30:ce:70:4b:9d:95:9f:18:4e:4d:
a4:c0:6f:a9:a4:5f:46:a1:ca:5e:04:45:39:09:0e:c5:84:8d:
ff:60:19:22:f3:e0:16:08:e1:1d:1c:c3:5c:6c:92:65:38:37:
e5:3d:fc:1a:88:c3:b5:3c:0d:29:76:51:f6:17:73:72:b6:a3:
2e:5d:c0:8b:7f:e2:6c:cc:42:06:47:47:68:17:98:ca:ba:03:
11:8c:8a:e4:4d:75:b7:99:ae:5a:2b:53:8e:e5:1d:98:6b:73:
4c:8a:ec:2a:dd:75:1f:d3:13:63:7f:c8:3a:4d:e2:6c:d1:39:
66:06:f0:e9:f2:a6:5c:9e:02:23:9c:60:3c:85:97:20:44:f9:
9c:7d:ae:55:3b:1e:16:af:c9:12:ed:b4:72:ba:da:86:7e:c0:
24:19:2c:87:00:a5:27:86:cd:ca:43:39:f6:87:d1:2d:40:27:
e4:bf:4a:e6:20:ed:a2:51:ca:da:c5:74:eb:7a:95:60:2e:9c:
a4:3e:18:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:56:41 2025 by rpki-client