Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73B76720CE4C11EFA3A00B7F762E951A.roa
File: 73B76720CE4C11EFA3A00B7F762E951A.roa (raw, json)
Hash identifier: nVaHsp6V6ZeWSXKuVqAUbGXBfzgfzzwk3/tkA6lEDdo=
Subject key identifier: 54:60:C4:52:64:14:F9:54:77:CC:CD:28:54:30:EA:5E:28:5D:C0:44
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0102C5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73B76720CE4C11EFA3A00B7F762E951A.roa
Signing time: Thu 09 Jan 2025 05:42:03 +0000
ROA not before: Thu 09 Jan 2025 05:41:59 +0000
ROA not after: Fri 09 Jan 2026 05:41:59 +0000
asID: 17561
IP address blocks: 156.238.54.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66245 (0x102c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 05:41:59 2025 GMT
Not After : Jan 9 05:41:59 2026 GMT
Subject: CN=677f61ab-3047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c8:8d:9b:c0:ea:c9:31:4d:c4:b3:1d:84:e4:
d0:72:a1:49:75:7c:2a:fc:51:c8:93:96:5c:d3:4f:
c3:cd:ff:61:29:ff:de:bd:c0:14:ca:89:7f:3e:78:
d6:b6:a6:7f:ec:b4:65:6b:a5:65:bf:33:64:fa:d1:
66:75:1d:af:a9:fd:5a:be:d5:f9:56:70:51:58:2f:
58:4b:32:9e:0e:c8:88:4f:53:74:fe:23:0e:a2:76:
01:59:c8:bd:65:fe:e3:7b:ac:d9:94:9c:3d:f3:ba:
51:36:b0:7f:ba:ec:70:30:3e:ce:c7:c9:1e:94:1c:
e3:7c:61:a8:10:e1:48:13:63:17:3c:06:5c:91:d2:
94:12:b8:7e:ab:f7:c4:25:1e:02:f8:80:b9:5a:28:
87:96:2f:67:d0:10:24:8b:f3:1e:ff:ff:26:9f:ac:
2b:bb:c4:7e:6e:ba:08:73:1c:4e:43:01:4c:9b:5b:
61:d0:b8:10:84:a5:8a:44:79:3b:46:13:b9:e7:ae:
49:4e:02:44:fd:03:a3:ef:6f:9e:16:b9:f6:9d:2e:
d1:75:72:25:90:d6:fe:af:93:86:9c:fb:d5:f2:63:
72:0d:8d:2b:4b:72:d9:a3:0e:00:39:da:4d:6a:46:
0c:2a:2d:e4:d9:28:b9:d0:12:93:09:9c:bb:7d:b9:
70:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:60:C4:52:64:14:F9:54:77:CC:CD:28:54:30:EA:5E:28:5D:C0:44
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73B76720CE4C11EFA3A00B7F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.54.0/24
Signature Algorithm: sha256WithRSAEncryption
66:3b:c8:2c:34:09:c0:fd:94:2e:ec:4a:ce:d1:2a:46:0c:ab:
8a:06:e8:78:9f:a3:d9:0d:4f:2d:6a:b8:75:d1:cd:25:c8:e4:
b7:45:64:3c:34:7c:b9:12:6b:c8:0c:5d:49:d9:c7:24:1f:17:
02:9f:56:d3:48:e7:0e:2e:d3:38:02:07:2f:11:7d:ee:f2:52:
63:0a:ff:f4:d3:36:ba:21:69:35:8f:5a:0d:0f:ee:00:0a:1e:
10:2d:cb:49:6f:c3:da:7f:36:61:f0:58:2c:34:87:45:10:92:
53:1b:e6:4c:6f:82:2c:4d:97:d4:8f:4b:3f:df:6f:bb:cc:4d:
2f:86:50:39:2a:d6:98:0f:16:76:45:b6:8f:c2:ba:2a:ba:f9:
4c:a4:a2:cd:8c:02:12:44:aa:ec:8c:9b:8c:83:e3:6f:72:c7:
c0:15:ed:44:10:7d:a8:04:93:a9:f5:bf:d1:59:4a:f8:50:bf:
da:2d:39:cb:b5:c2:0f:8d:92:70:eb:63:f5:42:36:42:8f:29:
35:ca:e4:25:ed:11:d0:c2:6c:04:31:d3:d7:e3:48:38:9b:5e:
a0:c7:43:6e:98:b0:96:99:85:0c:8b:07:82:c0:86:36:e0:e5:
fb:6b:df:e8:df:f3:ec:ae:56:a2:dc:60:01:21:ee:09:c6:66:
76:58:74:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:00:43 2025 by rpki-client