Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/70B61826C33111EF973E4553762E951A.roa
File: 70B61826C33111EF973E4553762E951A.roa (raw, json)
Hash identifier: dcmwuBOCaisNef1fwCkNZAvwpCn6F4uUxITleOpvJJg=
Subject key identifier: 3D:14:B7:90:20:A6:1D:80:74:C1:0E:15:DF:ED:C6:99:88:68:26:E2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EB13
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/70B61826C33111EF973E4553762E951A.roa
Signing time: Thu 26 Dec 2024 02:30:58 +0000
ROA not before: Thu 26 Dec 2024 02:30:55 +0000
ROA not after: Fri 10 Dec 2027 02:30:55 +0000
asID: 17561
IP address blocks: 156.244.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60179 (0xeb13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 02:30:55 2024 GMT
Not After : Dec 10 02:30:55 2027 GMT
Subject: CN=676cbfe2-2e84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:fa:4b:61:6f:75:79:a7:9a:be:d1:2d:36:3e:
48:e4:85:36:a5:87:15:44:ef:d7:b4:a1:0b:43:37:
de:b3:70:5a:19:d8:0e:8f:ff:11:cd:7d:af:52:b8:
6a:93:67:e3:cc:17:70:8c:ec:97:b6:74:77:e5:30:
77:b9:a3:73:27:85:06:73:b5:fe:02:26:87:7e:bc:
9b:c0:02:f3:42:b4:ce:21:94:65:bc:81:86:b6:09:
59:2d:7b:6d:32:59:a3:49:9d:fa:b9:47:bf:8c:f2:
85:63:95:e7:4d:80:e8:59:ce:b2:99:03:1d:3c:42:
6b:07:c5:f0:b2:4c:a7:9d:90:b7:b2:26:9c:f4:b7:
78:ed:d2:a6:41:d2:19:a4:69:f1:0a:6e:c8:71:a9:
0e:d8:3b:de:e8:5b:4f:8c:c3:e6:f7:ea:53:ee:06:
dc:2e:b5:3f:1a:14:74:8c:30:e0:d0:be:11:9c:72:
99:bd:28:49:87:6a:b5:e3:52:c4:b0:11:2f:e8:bd:
a5:17:dd:d3:90:06:e5:a9:98:ea:eb:87:e9:8f:83:
6d:c7:b9:93:80:d7:d0:24:62:b7:e4:cd:27:3e:bc:
b8:15:5f:4d:de:75:75:f5:9a:4c:34:92:4e:53:46:
52:76:ef:5f:27:56:ec:eb:fb:a3:2c:b0:92:6a:37:
1f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:14:B7:90:20:A6:1D:80:74:C1:0E:15:DF:ED:C6:99:88:68:26:E2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/70B61826C33111EF973E4553762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.132.0/24
Signature Algorithm: sha256WithRSAEncryption
03:7a:91:07:4a:2c:c2:18:50:75:c9:1a:a8:cc:f5:59:30:91:
d3:70:ff:48:5d:64:ed:51:72:cc:e1:86:00:b2:0f:ff:00:6b:
bf:64:7a:68:a5:cc:07:42:00:60:68:2e:aa:f2:cd:eb:19:25:
50:30:d6:54:1d:6f:1e:d4:74:7c:1b:f1:28:8c:88:d6:85:de:
2b:9d:71:fe:db:50:26:c1:ee:aa:ff:e5:e7:62:1a:c9:30:2e:
0f:45:86:39:63:7f:bf:d6:b6:95:e2:5b:b1:dd:7c:71:dc:da:
d1:5a:c1:b4:44:8c:b6:4e:84:35:12:85:ec:04:86:18:de:0b:
97:6e:c1:5e:e3:00:c7:f4:db:a4:81:b5:2d:30:da:15:94:53:
b3:c9:56:72:ce:b4:da:5e:ca:21:27:d9:45:d6:5c:e7:23:5c:
4f:b1:b3:a1:01:17:d7:5b:bc:2d:75:ba:b3:de:a3:d2:24:bd:
e6:87:5f:0a:f2:3e:11:12:1a:26:62:43:37:e8:7b:55:ac:70:
e5:17:a1:22:5e:05:c6:4d:0c:12:1e:2f:1e:4d:d1:3c:a5:f8:
76:0e:16:d5:10:16:fb:75:ac:dc:3f:d2:db:19:80:c7:64:92:
22:88:4a:c4:ab:9b:48:9a:f1:38:f5:75:15:a1:22:91:b4:17:
2d:60:0a:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:58:40 2025 by rpki-client