Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52295D30C35B11EF8854F261762E951A.roa
File: 52295D30C35B11EF8854F261762E951A.roa (raw, json)
Hash identifier: xFss2Atnp6FJcexsbe0v1z9tXCApuyPDy57PIkeAvvU=
Subject key identifier: BD:76:19:C0:77:B5:DD:6B:4B:F5:A8:EB:1E:40:D7:8E:1C:0B:23:06
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EC65
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52295D30C35B11EF8854F261762E951A.roa
Signing time: Thu 26 Dec 2024 07:30:46 +0000
ROA not before: Thu 26 Dec 2024 07:30:42 +0000
ROA not after: Sun 23 Feb 2025 07:30:42 +0000
asID: 63139
IP address blocks: 156.227.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60517 (0xec65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 07:30:42 2024 GMT
Not After : Feb 23 07:30:42 2025 GMT
Subject: CN=676d0626-eb91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:eb:fc:9e:ba:a7:99:67:93:5c:c1:9d:12:f5:
ec:10:52:d6:5d:a7:ba:30:e9:c8:41:88:b9:bc:a1:
a7:fe:2d:c1:27:da:e5:1b:61:03:4e:6f:02:68:f0:
e7:8e:d9:19:fa:18:25:92:f0:bc:a5:bb:f9:1b:f8:
ac:62:2e:cb:ff:e2:66:f3:82:88:8e:9e:e3:ac:e9:
24:24:fe:9e:90:c8:93:e4:a3:71:b7:57:43:4a:f6:
41:b1:27:3e:b8:73:d3:b0:8f:79:fb:07:d3:0d:bb:
3a:0c:9c:0c:6d:7f:84:d1:4a:32:bc:2a:09:bd:40:
14:7f:c9:27:f6:2c:ef:53:24:22:a4:e0:bb:60:ff:
a9:24:ae:f0:49:61:18:c1:7f:96:f6:40:ba:c0:0d:
c6:a0:c1:fa:e5:04:c8:85:82:0f:c5:bf:c1:e2:27:
39:de:a7:58:a8:f4:9a:f5:95:f8:d8:5e:c4:e1:c8:
6e:f5:5f:84:c1:58:49:0d:68:41:b0:8b:e8:b0:55:
1d:b0:a3:ba:81:3b:db:b4:4b:0d:cd:e2:7c:8b:76:
5f:a9:98:00:53:4a:cd:db:2d:87:c3:fc:39:a8:3c:
ba:d8:12:7d:1e:4e:c6:be:e3:70:51:aa:83:9b:de:
72:5b:e8:f8:e6:46:15:de:ad:dc:9a:ae:c6:36:94:
18:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:76:19:C0:77:B5:DD:6B:4B:F5:A8:EB:1E:40:D7:8E:1C:0B:23:06
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52295D30C35B11EF8854F261762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.9.0/24
Signature Algorithm: sha256WithRSAEncryption
99:a5:fb:a2:08:67:a1:4d:02:da:96:d6:18:45:2e:d2:0f:33:
0e:10:03:6a:b8:96:2d:4c:0a:f9:e8:7c:1c:61:df:2c:f0:aa:
60:ed:4a:8d:df:38:b6:69:68:43:90:8a:17:fa:2c:ed:2f:e2:
76:ac:f5:2e:28:d4:d5:a4:62:67:e0:ac:3c:ca:b7:2e:e5:34:
55:d6:6d:c2:7e:25:59:84:ae:ec:fc:6d:e8:23:50:79:1d:8e:
09:92:46:57:13:5e:e1:8d:91:78:4e:51:16:0c:d8:95:38:90:
e8:5f:ab:12:74:f3:cf:96:53:c1:93:2e:9f:c8:fc:b7:66:07:
be:b0:f7:7e:cc:72:c7:29:2e:4b:83:9d:75:c5:6f:96:53:20:
fa:86:a1:fe:a8:6e:e4:98:23:48:d6:5f:1e:19:d1:58:5d:3f:
fa:da:e3:aa:5e:bb:5d:84:71:72:4c:0a:34:fb:d4:f2:c8:6e:
77:61:49:01:0e:6d:37:0d:52:d6:6c:b7:2e:48:fa:bd:fd:4f:
03:41:4e:04:6a:f7:23:c5:71:09:f2:66:6e:84:02:4a:e0:c6:
57:45:16:99:54:3f:ec:33:46:42:1c:16:87:4a:57:e6:8c:07:
85:10:0c:f9:ce:8e:96:a0:65:1c:61:48:db:c8:35:47:84:11:
54:29:a5:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:52:40 2025 by rpki-client