Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6AE9F54AC99711EFA45ED18D762E951A.roa
File: 6AE9F54AC99711EFA45ED18D762E951A.roa (raw, json)
Hash identifier: tklcp3xAo2w8uWn557cMAHVpFnjuek1MXDbXUJqya8s=
Subject key identifier: 1C:D0:B9:6E:F0:DE:51:21:3A:CB:E4:A2:C7:F1:2F:D8:59:8A:0C:75
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F61F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6AE9F54AC99711EFA45ED18D762E951A.roa
Signing time: Fri 03 Jan 2025 05:56:04 +0000
ROA not before: Fri 03 Jan 2025 05:56:01 +0000
ROA not after: Sat 13 Dec 2025 05:56:01 +0000
asID: 984
IP address blocks: 156.233.148.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63007 (0xf61f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 3 05:56:01 2025 GMT
Not After : Dec 13 05:56:01 2025 GMT
Subject: CN=67777bf4-98e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:ac:1e:2f:ae:ea:ce:b2:82:b8:e7:05:6d:c4:
dc:f0:01:27:dd:12:f1:c2:a5:2a:a7:e7:77:df:00:
a3:54:ab:45:03:bc:7b:e4:d5:61:e7:92:c9:9d:f4:
89:65:5f:82:bd:d4:43:b2:cd:85:c4:c5:fd:82:df:
67:d7:68:7a:ad:f6:66:82:4a:1f:74:6a:07:06:74:
f7:9e:89:77:f5:3a:72:0e:85:7b:3e:b1:ff:ea:6c:
31:57:0e:b1:8e:84:16:8a:cf:83:19:45:d4:9e:35:
f0:99:57:a7:c5:b4:8f:ec:60:9a:74:94:4f:9e:4f:
e3:5b:a6:dc:da:91:be:86:c3:c1:10:cd:a2:2d:a6:
5e:71:05:72:cc:e0:47:de:c7:b1:23:2c:48:d4:a3:
e1:de:53:cf:3b:10:a7:2b:63:9d:b6:fe:41:84:16:
59:e3:a6:41:11:99:e0:55:63:52:30:fc:86:33:ca:
ef:6f:4b:cb:23:e4:5a:bb:9a:95:80:d4:fe:e9:c7:
43:bb:8d:7b:c1:86:f1:ff:be:50:44:26:a1:c6:76:
98:8f:f7:02:38:1f:52:13:7e:39:16:30:c4:ea:ca:
ed:50:7f:c2:e4:72:4b:eb:59:13:51:e4:be:e9:73:
e2:a5:c7:61:7a:83:e9:f5:1b:24:ae:e2:6c:a2:67:
ac:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:D0:B9:6E:F0:DE:51:21:3A:CB:E4:A2:C7:F1:2F:D8:59:8A:0C:75
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6AE9F54AC99711EFA45ED18D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.148.0/24
Signature Algorithm: sha256WithRSAEncryption
96:c3:26:b2:fc:0b:ea:2f:b7:57:90:5e:69:1d:d1:5c:3d:f6:
d6:21:c0:ad:55:29:55:9c:5b:de:f3:72:48:ac:42:4c:91:c1:
92:c7:23:00:fc:9d:52:b1:7e:d4:dd:5d:82:b8:df:19:e4:23:
90:9c:1d:a5:7d:83:a3:6f:d9:48:6d:4a:5b:b3:6c:42:e7:d5:
d4:63:c5:fe:9a:3d:fe:f1:47:fc:b0:35:a7:e4:b5:74:a9:d8:
e3:5c:77:ee:02:c9:88:7d:aa:55:3e:93:41:ac:5f:11:a9:85:
34:a2:3b:80:0c:68:3b:b8:cd:87:d3:03:57:31:c7:cc:66:37:
d9:12:5b:55:7a:19:5d:92:d3:34:27:e1:38:12:12:f8:3a:90:
8d:a7:b7:ed:38:8c:db:dd:2a:a3:ee:1e:10:a7:20:10:e9:e2:
fb:63:a4:92:75:36:80:65:1d:38:89:ab:2e:d8:54:cc:14:83:
0d:61:09:b1:0a:7d:ba:bd:a8:14:bf:52:62:f7:72:93:a0:03:
36:65:82:a6:d9:f2:e7:b3:d8:d1:e5:22:65:90:b9:28:31:20:
89:f5:1d:db:38:94:d6:e2:90:ca:63:22:93:52:04:1e:10:f7:
19:59:ac:13:5f:f3:cf:34:1b:83:3f:64:ff:d6:ee:bc:6c:8d:
06:2a:83:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:48:55 2025 by rpki-client