Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7135C590CDA311EF9431D844762E951A.roa
File: 7135C590CDA311EF9431D844762E951A.roa (raw, json)
Hash identifier: 058otFEjIUknzIDyy65W7WyKYkoi09B5gnxPOy+7Wvo=
Subject key identifier: C5:E0:2E:0D:AE:D4:87:DC:29:D3:E3:3E:95:FD:E9:7E:36:98:D2:4A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010101
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7135C590CDA311EF9431D844762E951A.roa
Signing time: Wed 08 Jan 2025 09:32:13 +0000
ROA not before: Wed 08 Jan 2025 09:32:10 +0000
ROA not after: Mon 13 Dec 2027 09:32:10 +0000
asID: 17561
IP address blocks: 156.253.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65793 (0x10101)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 8 09:32:10 2025 GMT
Not After : Dec 13 09:32:10 2027 GMT
Subject: CN=677e461d-e7e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:44:df:76:cf:78:69:a8:29:f4:f7:e9:ac:6a:
f4:a5:22:7e:8e:b0:93:93:15:6d:bc:6b:bc:51:51:
91:7a:68:f8:8e:a8:9e:45:77:06:c3:79:b3:39:7c:
12:66:36:ef:34:64:e4:0e:1c:d1:e6:5e:97:15:f2:
43:11:28:b7:9a:d8:70:49:72:0a:8a:3f:4c:26:39:
68:c4:a4:b9:18:5c:aa:f3:78:1d:cc:1f:78:36:ad:
7c:42:90:33:b6:4c:f1:b3:81:bf:4c:ad:83:0e:3e:
e1:b2:ac:aa:3a:6d:70:1a:e5:65:cb:35:0c:79:70:
ed:1f:65:3a:a4:9c:cf:60:a1:88:3b:87:ee:3b:c3:
a4:10:aa:ca:a6:19:e2:13:ed:1f:a6:98:f1:27:be:
de:93:2c:ef:b7:0d:b3:ba:fe:89:6f:50:74:54:c0:
d2:e4:c0:dc:69:18:fc:82:22:93:cb:fe:1a:d1:31:
be:c5:d4:16:00:38:87:2a:08:be:af:9d:47:95:3c:
a5:bb:b9:d7:04:d1:e0:6b:7d:4f:ce:98:13:ec:18:
d3:1c:a0:b9:13:87:74:7f:ee:96:07:61:1e:64:07:
16:ef:ef:12:79:1f:b3:73:cd:a2:d9:b3:ae:21:dc:
37:9e:7d:1b:03:0b:8f:14:ec:9a:fe:76:b1:e8:9f:
dc:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:E0:2E:0D:AE:D4:87:DC:29:D3:E3:3E:95:FD:E9:7E:36:98:D2:4A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7135C590CDA311EF9431D844762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.253.50.0/24
Signature Algorithm: sha256WithRSAEncryption
66:bb:17:05:31:2a:4d:6d:2e:ae:fa:6c:21:85:ec:a1:b0:70:
f7:1c:5d:a7:63:61:6e:43:fc:6a:e6:83:7f:c1:1f:a1:3d:1c:
6a:a6:ab:00:51:78:6d:4c:42:55:69:44:7d:6e:d0:ad:cf:c5:
28:10:44:fb:49:ac:6d:56:34:f6:e2:81:65:6c:fd:6e:35:99:
5a:5d:62:b9:9e:86:35:23:8f:b1:3c:3b:00:56:1b:63:cd:11:
a8:cb:80:be:8c:10:a7:55:2b:ad:21:1c:bb:d6:c8:cb:45:1a:
da:7e:6e:76:a5:2e:11:d8:0d:08:67:d5:52:b8:6e:9c:40:30:
e6:78:04:91:8c:fe:bc:0c:d9:e9:29:ad:44:51:de:07:b5:16:
73:a6:12:2e:d7:c5:a3:9f:d4:c7:02:dd:d5:9d:93:e7:64:b3:
6b:99:e9:e4:49:13:6b:69:7c:1e:97:63:49:2a:0e:d9:23:58:
84:0e:a8:f2:37:ba:0e:fb:b1:47:15:8d:cd:89:be:77:80:d3:
b0:47:ab:82:a4:ea:76:00:e0:fa:54:af:a0:d7:af:51:31:fd:
70:29:9c:a2:6a:36:a5:5f:97:ae:4f:28:9b:aa:48:9a:e7:1f:
75:ca:ac:8d:7c:a3:11:65:9b:07:c1:92:a5:ce:36:ed:fb:0b:
31:a8:1b:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:41:02 2025 by rpki-client