Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/54B214D4C98211EF9373DF89762E951A.roa
File: 54B214D4C98211EF9373DF89762E951A.roa (raw, json)
Hash identifier: tiI6GIkJhSjxKRvm8n04iUsSkeN1xA7cRQWj/SHzGqg=
Subject key identifier: C8:E3:E0:1B:2F:75:36:3A:D1:6B:BD:1D:A7:94:19:C7:98:FC:B5:35
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F55B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/54B214D4C98211EF9373DF89762E951A.roa
Signing time: Fri 03 Jan 2025 03:25:08 +0000
ROA not before: Fri 03 Jan 2025 03:25:04 +0000
ROA not after: Mon 13 Dec 2027 03:25:04 +0000
asID: 17561
IP address blocks: 156.230.19.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62811 (0xf55b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 3 03:25:04 2025 GMT
Not After : Dec 13 03:25:04 2027 GMT
Subject: CN=67775893-cbc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:25:d5:12:91:a4:20:aa:d0:ff:90:7b:d4:ea:
87:14:98:eb:5e:9b:ba:5b:8f:fd:47:fe:78:9e:a6:
c2:e4:f7:a0:15:b6:e0:30:f0:d5:34:01:4a:66:17:
25:a1:c7:c4:97:ec:de:e1:79:38:10:9f:fd:bc:87:
00:b5:11:38:15:02:df:63:e7:e3:84:c5:45:76:3f:
21:1f:82:78:d6:cf:8a:ac:0b:2f:c1:ce:12:7c:e7:
c2:3d:6a:d1:4b:1e:83:54:46:b3:28:23:fa:1c:8b:
f1:6f:00:95:78:02:a5:09:85:85:a5:87:ff:f3:c0:
62:41:12:d7:e4:b8:4e:11:49:31:21:06:62:b3:df:
68:d1:e3:b3:c2:06:43:2c:ca:d0:b3:9a:7b:81:0a:
05:68:e6:15:32:22:21:59:39:6a:b3:47:0b:6b:85:
25:2a:90:2b:7c:d6:cf:17:9f:a5:47:e6:d7:0b:e6:
2d:62:87:5e:15:a2:30:1c:3e:12:26:0f:e6:ca:4f:
8f:1f:2b:2b:ab:87:0f:3a:f7:49:ab:a2:8c:7b:0d:
20:38:ec:f6:a3:95:94:0c:ad:29:32:b2:51:f3:9e:
eb:8e:d9:9b:be:7f:77:b0:4a:c8:d1:08:3e:01:4a:
85:94:4e:f3:ea:ee:c2:6a:0a:5b:c1:9a:7c:8c:3e:
a9:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:E3:E0:1B:2F:75:36:3A:D1:6B:BD:1D:A7:94:19:C7:98:FC:B5:35
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/54B214D4C98211EF9373DF89762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.19.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:69:1c:a5:34:35:23:1c:de:28:f4:64:8f:20:28:aa:5b:74:
e2:88:1d:37:4d:2d:36:b5:0e:77:5c:5e:0e:aa:d7:df:ad:01:
cf:7f:08:de:d8:ee:42:d5:b1:7a:3e:6c:df:7b:7d:10:21:72:
b2:96:67:37:1a:22:4b:5b:88:62:4c:74:31:38:b9:85:49:8a:
e0:cf:a9:45:5c:16:ef:66:b0:4b:98:2d:3e:bc:0c:4d:ae:e6:
dc:b8:d2:57:7a:86:e1:bc:91:99:6e:e5:1c:6e:73:f6:26:9f:
06:3e:bf:4c:2f:4b:f6:b3:be:20:98:71:03:fc:b5:e7:b9:6f:
25:d9:e2:ab:1d:68:7d:a7:b8:1a:b0:cc:0d:5e:7b:c5:4e:21:
8a:eb:09:6e:66:b4:64:8b:28:3d:a4:39:d9:cf:ad:f3:fc:4d:
a6:ad:fc:9d:36:e0:77:d2:97:47:af:7a:f0:63:97:83:e8:a0:
1b:ca:bc:38:30:91:70:94:06:94:68:a6:d8:56:01:93:19:1e:
68:90:f3:f0:91:63:0d:9e:17:25:a4:99:95:7b:3a:63:b1:cd:
23:40:de:f1:09:75:55:97:a7:05:2e:b1:42:be:71:d9:e0:68:
ed:82:d9:84:49:40:5c:23:0c:e8:88:ee:4f:54:9c:33:31:30:
39:f3:d7:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:56:21 2025 by rpki-client