Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/62CE9F28D2F211EF89264472762E951A.roa
File: 62CE9F28D2F211EF89264472762E951A.roa (raw, json)
Hash identifier: QaZ35d7835v/r+L5lS1A8QelRJMMkmbT67xXRXNpnOM=
Subject key identifier: D1:6E:5A:73:7F:D3:B1:82:87:07:58:9A:E0:05:EC:9C:AE:1C:57:57
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010789
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/62CE9F28D2F211EF89264472762E951A.roa
Signing time: Wed 15 Jan 2025 03:39:55 +0000
ROA not before: Wed 15 Jan 2025 03:39:52 +0000
ROA not after: Sat 03 Jan 2026 03:39:52 +0000
asID: 984
IP address blocks: 156.243.126.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67465 (0x10789)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 15 03:39:52 2025 GMT
Not After : Jan 3 03:39:52 2026 GMT
Subject: CN=67872e0b-d589
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d6:33:da:74:13:1b:d6:22:ab:6b:f9:a0:c8:
3d:d9:1c:c9:f3:8a:3f:4a:91:55:9c:7a:c9:73:5f:
51:22:38:b9:59:59:79:1c:3f:38:c9:97:16:27:7c:
75:18:37:50:e7:e8:9b:8c:a3:54:75:7f:f3:25:b4:
65:be:fd:f6:bd:79:99:93:e8:74:8d:80:4a:b8:70:
45:1d:87:74:7e:8d:22:d3:ce:f7:15:f4:69:3a:e7:
3b:80:2b:13:46:27:a4:4b:07:8d:c6:6d:f8:a0:86:
52:11:18:01:b1:c9:b5:db:95:56:ad:8f:26:e4:17:
61:9b:b8:df:44:d1:3f:bd:f9:39:9e:6e:3f:5a:82:
9c:42:68:69:13:c6:b8:69:76:a4:94:c8:89:4a:a3:
e9:86:4e:d1:fb:0f:fb:82:16:21:79:00:a7:e8:c2:
a1:19:cc:dc:58:1b:ca:f2:08:57:e2:4f:ca:7b:01:
2a:e3:0a:6b:49:7b:ae:21:aa:ab:da:30:84:23:99:
1e:6f:ff:7f:68:a6:f4:b0:01:b7:3c:0a:8b:ce:12:
21:4b:2c:f8:95:21:fd:c2:7a:7c:f2:18:47:55:e8:
e0:a7:47:8b:14:11:2d:55:20:23:31:3d:49:3d:40:
5d:49:3a:17:48:e9:1b:78:1e:e6:ec:68:e5:8f:0f:
f2:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:6E:5A:73:7F:D3:B1:82:87:07:58:9A:E0:05:EC:9C:AE:1C:57:57
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/62CE9F28D2F211EF89264472762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.243.126.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:e5:6b:51:bd:33:b5:1b:fa:71:27:43:d5:88:49:12:c0:de:
51:97:a4:bb:c5:1d:5a:f8:dd:e2:5f:e0:3c:78:07:1a:72:17:
48:74:f4:04:7e:2c:18:5c:b0:b4:ab:b7:16:48:0a:ba:75:93:
6f:09:50:a3:4d:0e:d2:59:20:6f:8e:37:7c:dd:43:c1:06:37:
64:16:50:e5:70:1f:a8:3a:04:66:f4:19:7b:df:76:7b:4b:5c:
fb:d6:6c:f0:56:bf:c3:4f:b3:9c:5d:01:d8:62:28:36:bf:c3:
7e:57:e8:ef:05:80:d9:c5:5e:17:d7:1a:ae:17:d9:f5:99:90:
52:ca:48:0b:b1:63:7d:28:1f:aa:e5:7b:36:d1:14:fe:4b:00:
44:09:a7:35:38:97:e6:97:84:f0:01:8f:7a:86:e7:da:80:59:
49:57:08:d8:73:7b:ef:b3:36:4d:2f:7f:42:a6:b2:19:18:e9:
0c:75:e4:47:ca:0e:1b:d8:bc:d2:8b:25:30:1f:fc:7e:ab:fe:
14:e6:9c:c8:8c:03:db:72:cd:39:96:a8:55:46:76:62:c4:ab:
b3:37:51:25:ac:7a:a4:6d:6f:35:3b:4b:db:16:26:5b:f8:d6:
05:aa:6d:50:1d:b8:2c:78:ce:74:71:b3:68:9d:9c:4e:78:ed:
5e:2a:ca:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:50:04 2025 by rpki-client