Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/71127DBECCA011EFA063BE48762E951A.roa
File: 71127DBECCA011EFA063BE48762E951A.roa (raw, json)
Hash identifier: QdTqwX4JwP5OD8USiUw/sEmAlDmV+z0+TAShlHxaF+8=
Subject key identifier: 06:C7:3A:D8:6C:E0:A7:AE:27:A1:F0:19:15:A2:B8:6C:EF:A9:B4:27
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F98E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/71127DBECCA011EFA063BE48762E951A.roa
Signing time: Tue 07 Jan 2025 02:38:14 +0000
ROA not before: Tue 07 Jan 2025 02:38:10 +0000
ROA not after: Sat 13 Dec 2025 02:38:10 +0000
asID: 984
IP address blocks: 156.227.125.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63886 (0xf98e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 02:38:10 2025 GMT
Not After : Dec 13 02:38:10 2025 GMT
Subject: CN=677c9395-3f69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:87:2f:f0:7d:cc:a0:07:cb:02:da:40:02:7f:
0a:05:a4:c4:c2:4d:61:4b:3a:1e:d8:9c:8c:93:a1:
9c:6a:1d:8b:78:8a:d4:13:75:69:e2:ed:ad:ad:f2:
49:46:c3:d4:b1:49:5e:00:b2:1a:c2:32:84:35:f5:
59:bd:a5:d7:64:c9:e6:07:32:6b:86:86:28:59:93:
fb:2e:8d:d8:7d:1a:54:2e:b9:1d:d5:e9:51:64:c8:
72:4f:56:d6:22:4b:f3:e6:5b:cd:6a:b1:f3:63:c2:
9d:ee:05:fc:78:fd:bd:e0:82:32:36:54:ce:e6:22:
ef:10:a7:31:9b:06:59:b5:48:88:0e:38:45:c5:67:
06:cf:fd:4b:d5:3e:83:ca:b2:68:f2:56:e3:1f:01:
5a:a3:5d:b1:7c:d1:45:5c:56:e0:6f:8f:e4:f4:32:
3b:6c:ce:59:87:ce:ac:11:ab:2e:38:81:31:0e:57:
ea:f3:d8:63:32:be:f3:98:7e:ed:ea:da:e4:e5:44:
8b:7a:e5:ee:ef:c3:e9:b5:c8:05:b3:05:80:6e:ce:
15:d3:34:19:c8:f7:be:0c:50:37:37:63:3d:79:94:
fe:9a:57:e6:92:d8:d1:cb:4c:a0:5a:a1:59:a4:8a:
67:c7:4b:4e:bc:3f:21:cc:6c:36:ab:81:f4:92:d4:
d9:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:C7:3A:D8:6C:E0:A7:AE:27:A1:F0:19:15:A2:B8:6C:EF:A9:B4:27
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/71127DBECCA011EFA063BE48762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.125.0/24
Signature Algorithm: sha256WithRSAEncryption
07:3f:fa:d0:c2:78:50:e2:a5:1b:06:d1:32:43:e6:9f:34:48:
2c:de:60:2d:4a:32:a6:65:9a:ee:e9:30:f3:e5:12:70:53:2c:
12:1b:3d:21:37:82:2d:2c:1d:48:34:28:20:d6:52:cc:ee:57:
d2:63:00:2c:2f:09:7e:ab:97:b1:dd:bb:48:c1:db:1a:e6:a8:
16:9c:4d:98:6c:86:3f:e5:17:21:29:42:4e:73:92:df:67:b3:
ae:cd:8e:6d:e3:f7:cc:d0:fa:a9:29:2f:8a:2c:a3:d6:84:40:
eb:1a:d0:a9:21:7a:0c:53:fb:73:59:4b:32:f3:2d:bd:c6:05:
9f:a2:84:ad:48:90:24:35:1b:08:ee:86:08:ff:c3:3f:fe:ac:
6b:35:18:d4:2d:80:3b:a0:7c:94:91:7b:6a:b4:02:85:18:33:
b2:bd:d9:ad:6e:cf:8b:69:5a:aa:c2:9f:d8:50:04:4a:99:7e:
97:ad:ca:83:61:79:f9:23:67:08:84:5e:82:d4:b2:3e:66:4d:
3f:c6:f1:31:ac:3a:39:0f:56:49:5a:ce:ca:03:91:3b:75:39:
1a:94:66:2c:3f:93:ec:56:88:60:c5:e2:c8:fe:16:87:7a:8c:
6e:8c:6f:64:62:bc:89:fa:e4:e0:d5:67:81:fa:9f:cd:2c:20:
3c:44:ae:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:59:24 2025 by rpki-client