Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6BEF0C08D30311EFA959595F762E951A.roa
File: 6BEF0C08D30311EFA959595F762E951A.roa (raw, json)
Hash identifier: QHvLmVRcIDMCtSM2XkTgHpJMsmoiB/IoOTebTyhWbw8=
Subject key identifier: 33:DC:B7:4E:85:1F:8D:9C:B8:47:95:32:BE:82:B7:5C:F6:05:E5:50
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0107FD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6BEF0C08D30311EFA959595F762E951A.roa
Signing time: Wed 15 Jan 2025 05:41:52 +0000
ROA not before: Wed 15 Jan 2025 05:41:48 +0000
ROA not after: Mon 03 Jan 2028 05:41:48 +0000
asID: 17561
IP address blocks: 156.254.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67581 (0x107fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 15 05:41:48 2025 GMT
Not After : Jan 3 05:41:48 2028 GMT
Subject: CN=67874aa0-fb4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:da:18:57:ee:7c:5c:ab:07:8f:82:0b:5d:48:
ef:2e:d2:0c:2a:08:5f:95:d8:30:57:bc:51:ff:f3:
51:51:d5:3b:76:3d:c7:d7:b6:b7:6b:bb:e9:2e:7c:
f9:c8:f0:7c:9e:0f:7d:b3:2c:d4:77:23:55:b3:52:
94:73:25:65:ab:47:05:57:74:9d:83:ea:e5:97:5f:
c5:52:cd:e0:ca:66:66:d5:db:3b:f7:6f:03:db:ba:
b9:6b:4c:a6:61:97:e5:e1:87:56:c8:e7:b5:de:87:
ac:df:ce:df:9e:ec:fd:a7:f7:e8:fb:83:ff:4b:ba:
34:24:82:98:a2:78:d4:ed:52:a5:35:ce:8d:11:33:
08:7a:2f:28:aa:11:38:91:85:0c:2d:e5:78:54:fb:
cc:d2:64:17:ca:68:7b:2a:c7:fa:be:95:d2:af:06:
2f:80:5d:14:80:b7:ca:a4:de:a6:d7:ed:19:fd:69:
32:08:fe:96:df:0a:82:1e:2d:08:1b:8f:f0:23:83:
eb:68:1c:1d:d8:16:8f:8d:38:53:aa:50:b1:cb:9b:
92:5e:dc:d6:33:a4:b9:ee:c9:51:2c:cd:f8:f9:6d:
7c:ec:53:92:e9:38:cd:bb:c4:b6:a7:82:ef:bf:6c:
b4:3e:a5:6e:9f:ee:5a:f8:82:0a:08:d3:73:65:8f:
93:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:DC:B7:4E:85:1F:8D:9C:B8:47:95:32:BE:82:B7:5C:F6:05:E5:50
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6BEF0C08D30311EFA959595F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.254.41.0/24
Signature Algorithm: sha256WithRSAEncryption
47:f4:ba:4f:7a:b4:cf:97:75:8f:fa:94:c5:73:d9:d2:41:e5:
15:8e:44:06:cf:69:ca:8e:b0:bd:e4:ba:8f:0d:81:c9:3a:24:
dd:a1:c6:fc:4b:22:d2:1f:1a:b7:f4:42:18:9b:5c:59:75:71:
40:e0:78:6a:4a:2a:43:af:29:b3:52:15:8c:3f:02:9e:f1:53:
c6:2f:5b:80:99:72:0c:5f:6e:1c:23:5a:01:5a:66:7d:bd:33:
ed:3d:09:03:3d:87:c9:4c:45:59:da:92:31:77:b4:ba:81:81:
84:88:dd:16:eb:63:0d:05:a2:c0:f2:a0:3f:cb:53:2d:1a:c9:
38:5c:a3:c6:05:f7:59:b9:72:89:99:07:43:d2:c4:00:73:fd:
91:84:28:28:fc:67:e5:ac:f3:ad:a3:fc:08:82:ba:f7:76:e8:
f4:92:a0:13:71:96:3e:b2:d5:76:7d:cc:35:7c:b3:bc:cb:74:
47:3d:24:25:e0:92:76:f8:8d:e6:c9:76:0a:ca:81:69:d3:33:
82:1a:1c:45:51:b1:c8:e5:ed:09:53:96:dc:bf:f3:1c:07:d6:
b2:47:67:f9:2d:2c:47:f5:d1:04:f8:2c:b6:b1:7a:6e:ad:f8:
dc:68:ba:b7:fd:3b:ed:7b:3a:4e:8a:e9:0a:90:21:b0:8c:54:
70:a3:d6:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:55:49 2025 by rpki-client