Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/58C5380ECBCF11EFAC4E308E762E951A.roa
File: 58C5380ECBCF11EFAC4E308E762E951A.roa (raw, json)
Hash identifier: K9sGSIB4OfhNS0EEC4mCDDO/7Vh3aGUmYHDO4uHsBB4=
Subject key identifier: 0F:BF:3B:04:02:7F:90:34:02:9C:A4:84:AC:9F:55:19:C1:80:66:92
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F7BE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/58C5380ECBCF11EFAC4E308E762E951A.roa
Signing time: Mon 06 Jan 2025 01:41:28 +0000
ROA not before: Mon 06 Jan 2025 01:41:24 +0000
ROA not after: Sun 09 Feb 2025 01:41:24 +0000
asID: 203020
IP address blocks: 156.237.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63422 (0xf7be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 6 01:41:24 2025 GMT
Not After : Feb 9 01:41:24 2025 GMT
Subject: CN=677b34c8-87ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f3:a7:8d:da:92:5c:56:1f:59:54:14:c1:b0:
25:e2:f0:f3:a6:ec:f6:a1:65:7c:1c:f2:5d:9e:ff:
3d:5d:77:3d:42:96:9e:d6:ea:38:44:c4:8e:5a:6d:
87:23:2e:26:c5:39:20:d8:e0:36:d8:1f:99:08:b2:
41:37:5e:3e:b5:22:45:57:f2:c6:0d:97:d1:76:ee:
c2:c8:d1:4d:c6:67:46:ff:ad:58:80:28:2d:bb:17:
c4:a2:50:7a:60:10:b1:08:5b:40:a4:a2:38:64:62:
74:63:3b:ad:26:e7:d5:44:38:12:91:4e:63:f8:d2:
f4:8b:08:27:5d:85:00:32:97:13:4b:68:3c:80:bb:
5c:41:80:9a:b2:ec:09:b8:fb:77:bb:35:15:6c:03:
db:f1:76:a9:ba:a8:3a:91:aa:ff:34:c8:ea:d4:92:
1e:82:e5:39:7a:ea:ab:04:87:53:12:75:c8:c0:c8:
8d:2f:2b:14:5b:47:52:d4:8a:fc:31:ab:3b:54:dc:
af:91:e7:b7:ab:cb:1e:d9:52:39:e1:2e:47:b0:92:
86:6b:51:96:78:4b:3a:d3:bb:5c:a4:16:ea:44:e7:
42:2c:0c:64:e6:8d:c4:91:28:9e:d8:01:a0:d4:79:
21:74:f9:04:77:1f:b2:73:62:35:bf:20:c9:85:70:
10:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:BF:3B:04:02:7F:90:34:02:9C:A4:84:AC:9F:55:19:C1:80:66:92
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/58C5380ECBCF11EFAC4E308E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.237.75.0/24
Signature Algorithm: sha256WithRSAEncryption
45:bf:12:26:3b:25:73:8f:94:46:99:c3:f7:d3:a5:3d:77:0b:
18:2a:6d:2d:89:ae:43:64:a5:45:05:fe:ce:34:95:20:d2:5a:
01:64:d8:06:ea:57:1f:bf:29:2e:46:58:cf:61:7c:7d:62:66:
bf:0f:2e:95:17:6f:c3:4c:09:ca:da:0e:17:19:37:d5:61:2b:
30:bf:da:ad:3a:f7:38:e1:47:78:2d:55:88:c1:ea:50:53:5a:
19:56:ed:36:0a:09:f5:0a:8a:79:ca:58:31:04:b4:b8:d2:80:
44:e0:65:75:2d:2e:87:3e:9b:52:36:68:f2:f2:d0:76:0b:84:
03:ed:90:09:b7:eb:2b:a0:ef:ee:ee:c4:6d:f9:e5:46:0c:a8:
ba:36:d9:ae:3d:8d:e1:9f:9e:e8:89:8f:d2:79:ac:46:b1:14:
69:a5:bb:6a:60:64:db:96:0e:54:38:a7:1f:2e:ba:3a:c0:a4:
34:89:53:06:26:71:63:84:28:5e:2d:44:10:e8:cd:bd:7f:5b:
5e:64:38:0b:81:4d:c6:79:6c:0a:c0:85:35:6f:5c:c7:b5:85:
56:e5:f0:22:4a:35:ac:23:ff:6f:fd:e1:7b:e9:41:76:78:c9:
1c:73:3a:09:29:7d:c0:42:89:57:d4:c3:a7:d6:96:ff:4f:5d:
1e:9c:89:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:54:23 2025 by rpki-client