Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/692EACB2C28711EF93588AA1762E951A.roa
File: 692EACB2C28711EF93588AA1762E951A.roa (raw, json)
Hash identifier: Lpgo+tpnwsVGmTjNHq1yfHvxmbmQXWQ5Wh3AmmZfnSg=
Subject key identifier: 4B:F9:BE:E1:CD:3F:8D:7E:BE:69:B2:C0:9A:4F:6F:99:74:75:90:B0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E937
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/692EACB2C28711EF93588AA1762E951A.roa
Signing time: Wed 25 Dec 2024 06:13:51 +0000
ROA not before: Wed 25 Dec 2024 06:13:48 +0000
ROA not after: Wed 10 Dec 2025 06:13:48 +0000
asID: 984
IP address blocks: 156.228.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59703 (0xe937)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 25 06:13:48 2024 GMT
Not After : Dec 10 06:13:48 2025 GMT
Subject: CN=676ba29f-4d6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:29:a0:6e:2f:21:80:3e:e9:b1:76:1d:0c:fb:
9e:6c:6d:dd:f7:e1:29:e7:73:1e:62:e9:f0:be:e1:
55:32:20:4d:b5:d8:43:d7:ca:76:35:fe:b3:66:48:
8e:81:47:cb:99:8d:c4:e3:72:3f:11:c5:1e:2c:1a:
30:7b:0c:59:e2:02:6a:40:3c:ba:24:b4:33:f2:79:
b1:0e:74:6d:48:34:4d:9a:4d:c2:9d:11:d6:1e:7c:
28:c6:40:46:1d:d3:d1:68:39:11:28:18:7d:ae:5b:
17:d9:3b:50:d7:5b:7f:20:c0:fc:be:2d:d3:a6:36:
b5:b5:5f:4f:5f:7e:eb:38:bd:20:ec:e9:eb:47:5b:
53:a4:7f:cc:87:18:c2:d0:11:c3:bc:38:d7:30:89:
73:a5:ca:d9:89:52:10:1b:3d:68:0d:43:f1:ad:f8:
8a:5f:e5:b2:f1:ce:bc:03:a6:68:06:ce:b0:e1:97:
92:17:47:a9:f0:b7:03:7b:81:40:b9:69:48:87:df:
81:15:62:84:26:0a:86:a5:0e:6f:7c:28:11:58:6c:
6a:fd:c1:cf:39:67:37:81:67:50:58:30:44:03:df:
b9:8c:38:66:11:aa:e5:6c:db:f8:e2:4c:97:65:d6:
2e:e3:a3:ba:b2:b1:6e:9f:8d:2c:26:62:bd:f6:f7:
23:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:F9:BE:E1:CD:3F:8D:7E:BE:69:B2:C0:9A:4F:6F:99:74:75:90:B0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/692EACB2C28711EF93588AA1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.59.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:63:24:23:b4:2d:c6:9f:9e:de:b0:e9:a6:bb:24:c1:fd:d2:
17:a0:8d:04:a5:b4:10:6f:71:15:d5:6b:cc:fe:83:67:1c:1e:
ac:28:a5:7b:71:96:a1:0d:9d:0a:cc:f5:74:40:b0:76:25:3a:
2d:bd:08:c7:2b:5c:9e:e2:64:bc:c6:ce:c4:cf:24:48:2d:31:
c3:65:2c:95:11:66:69:11:01:c0:a8:9f:0b:4a:d8:b8:66:17:
55:a7:87:0f:58:f0:be:67:f3:c7:ec:90:2b:f9:c3:4e:5c:24:
3e:c8:7a:1d:86:2f:d6:80:2f:c1:84:38:f9:9b:4f:af:0d:29:
9f:77:5b:ef:80:e7:8f:36:c3:98:a7:32:0a:24:79:66:10:da:
42:26:dd:a7:00:6b:24:89:f8:d0:88:60:57:24:a5:c4:a3:3b:
ce:51:91:f8:10:13:cf:30:83:48:69:9f:74:cf:c1:d8:af:c0:
2c:1f:81:dd:ff:81:04:08:69:f9:78:d0:9a:81:20:1d:e7:42:
f9:1d:3e:8c:4a:2d:e6:d1:56:e7:f4:1d:fa:09:a2:18:f8:84:
e2:c3:a9:00:f0:82:5e:c0:ab:23:9a:97:76:6e:f9:47:b8:81:
62:3c:95:e3:07:cc:07:51:f1:dd:97:58:2d:8e:b8:c5:1e:7f:
ae:45:cc:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:51:49 2025 by rpki-client