Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/48387316C98111EFA3A26C83762E951A.roa
File: 48387316C98111EFA3A26C83762E951A.roa (raw, json)
Hash identifier: eFLxuPGyrJZXuEgAyZX6gKHLTTGWAU0l9IJxPkm1aIQ=
Subject key identifier: 7F:64:81:EC:50:09:EE:D0:AD:BC:6C:42:6A:03:60:01:B0:6D:F4:19
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F551
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/48387316C98111EFA3A26C83762E951A.roa
Signing time: Fri 03 Jan 2025 03:17:37 +0000
ROA not before: Fri 03 Jan 2025 03:17:34 +0000
ROA not after: Sat 13 Dec 2025 03:17:34 +0000
asID: 984
IP address blocks: 156.229.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62801 (0xf551)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 3 03:17:34 2025 GMT
Not After : Dec 13 03:17:34 2025 GMT
Subject: CN=677756d1-34ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:72:35:64:c7:0a:61:dd:86:5c:6c:97:9b:eb:
03:0f:af:a5:68:6e:33:3b:46:90:63:09:43:1a:a6:
ae:ec:1a:fd:7f:4d:04:a1:0a:b5:8f:4f:c2:98:4e:
af:9f:53:3a:7d:70:bc:a2:12:35:a5:ee:07:cd:a4:
b1:f0:f8:bb:3b:bf:b9:ff:9f:9a:96:ac:7a:08:6e:
d9:a9:b3:1f:33:8a:8b:98:db:21:71:1d:45:26:df:
1a:1d:aa:c9:92:25:83:3f:80:3d:3c:c9:7c:cc:ce:
b9:8e:fe:b0:7d:74:be:38:42:ae:3c:a7:e8:a9:da:
d5:da:02:7c:94:3a:85:a9:f0:18:21:a1:75:6a:e4:
c3:73:25:4c:e0:05:fc:04:f6:ac:e3:b2:42:9a:e6:
17:23:6f:32:85:3e:c9:18:36:07:fe:18:3c:23:16:
87:d6:50:cc:29:1a:9d:96:bd:09:a4:87:7c:e4:6a:
b5:2d:a2:f0:9f:4e:1b:c3:72:e6:fe:f5:75:df:92:
55:74:15:db:9b:1e:c9:79:16:d7:a1:93:8a:b6:2b:
02:33:fa:fc:50:e6:57:1b:f9:28:2a:1d:da:7f:55:
00:37:f0:9a:f1:eb:3c:0d:09:29:53:6b:34:5f:60:
0b:22:d1:10:6a:11:ba:a9:c3:54:b3:81:60:31:7a:
8c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:64:81:EC:50:09:EE:D0:AD:BC:6C:42:6A:03:60:01:B0:6D:F4:19
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/48387316C98111EFA3A26C83762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.254.0/24
Signature Algorithm: sha256WithRSAEncryption
64:71:eb:4d:ce:9b:ad:0f:dc:d7:64:82:c9:91:7e:66:ba:bd:
87:37:e7:02:80:14:5b:81:fb:e1:00:70:ce:2d:c8:67:48:70:
cc:eb:b6:59:38:e2:7e:4d:56:03:3a:9f:a5:d1:a2:98:00:25:
0e:c8:a1:a4:40:b5:ba:18:c8:ef:f8:f5:55:05:c1:b5:32:fc:
53:58:6e:e9:74:47:ab:4e:ed:aa:1d:21:6e:6d:bd:93:b6:fc:
91:ed:ca:17:23:71:02:be:73:14:44:a2:16:13:14:6d:00:75:
5d:1a:0b:6b:35:2e:e3:00:b4:a9:81:a6:74:0b:31:ec:39:d5:
84:3f:87:b2:14:2c:81:33:31:70:1f:2d:8b:1e:b3:54:ab:f8:
6a:2e:b4:52:14:54:6c:d9:5d:a9:dc:d0:74:6d:18:bb:f2:31:
f8:82:4d:c1:66:b3:4a:49:e6:c8:72:de:71:fa:bc:1c:a9:10:
a5:cc:fb:5d:47:3b:46:02:8f:c2:96:9b:52:c7:04:f4:98:a0:
a2:2a:a3:57:48:c7:fd:88:4f:0a:ea:1f:3c:1e:5c:3d:b5:24:
5e:d2:9f:23:80:18:03:05:b8:16:dd:01:ba:f1:78:a0:e0:f6:
85:b3:7f:3d:72:85:7b:63:c2:9c:f5:89:28:0c:ee:78:c1:e1:
3f:72:c7:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:58:27 2025 by rpki-client