Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/76FBC804CCCB11EF9789D15D762E951A.roa
File: 76FBC804CCCB11EF9789D15D762E951A.roa (raw, json)
Hash identifier: kvix9ifKnHe/X60oKdjfYueQ2i8dAcz9wm60j0bKms0=
Subject key identifier: 6E:5A:4D:23:22:B5:90:11:E0:24:B5:D3:DC:E8:9C:E0:AD:F0:A4:18
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FA7E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/76FBC804CCCB11EF9789D15D762E951A.roa
Signing time: Tue 07 Jan 2025 07:46:12 +0000
ROA not before: Tue 07 Jan 2025 07:46:08 +0000
ROA not after: Sat 13 Dec 2025 07:46:08 +0000
asID: 984
IP address blocks: 156.233.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64126 (0xfa7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 07:46:08 2025 GMT
Not After : Dec 13 07:46:08 2025 GMT
Subject: CN=677cdbc4-4904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:15:a9:99:f8:5f:1e:6b:48:b9:57:0e:11:9f:
2a:f7:dd:fa:d1:38:5e:95:64:8f:1b:88:87:f8:12:
dd:64:d2:e7:b9:8c:c7:56:c9:f6:cb:bd:f4:25:c0:
9a:4f:9f:d3:25:e1:1c:ab:83:1f:25:42:9f:48:48:
bd:8a:ed:13:ff:c0:28:23:c9:d1:6c:a1:d3:e1:04:
59:02:5a:fa:f4:33:52:60:05:05:65:15:e5:09:03:
95:c4:1a:05:cd:61:74:06:39:a6:22:61:f2:93:c1:
f5:aa:ea:8a:9b:f1:62:a7:04:d5:39:22:88:51:90:
5e:0f:2b:40:2a:71:02:73:8c:09:0b:be:6f:c0:2d:
35:3d:5c:07:e1:01:a5:7e:5a:27:c2:86:7f:ec:9a:
e9:65:02:c6:13:7b:7c:14:be:68:28:82:be:f5:fe:
57:b8:77:1c:57:26:53:d3:b2:8d:cd:6d:0b:59:02:
90:44:b2:e0:5a:fd:60:1d:9a:9e:e6:66:80:77:e4:
3b:4f:18:34:cc:e8:3f:34:05:cc:2b:2e:c6:0e:3f:
1e:e4:46:7d:8e:75:bd:f5:9f:fc:3c:a1:2e:f8:73:
f3:77:82:1f:45:1e:85:57:69:31:3c:b6:32:0e:26:
6e:17:11:cf:cb:83:cc:06:e6:cb:42:ee:5f:db:8c:
07:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:5A:4D:23:22:B5:90:11:E0:24:B5:D3:DC:E8:9C:E0:AD:F0:A4:18
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/76FBC804CCCB11EF9789D15D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.114.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:21:31:3e:68:26:0d:fb:26:10:1f:02:ab:63:10:8f:36:fb:
5f:5d:07:ff:ef:87:68:16:bb:0b:85:c6:ee:e4:87:81:86:52:
79:11:81:f3:fa:9d:f3:4b:03:3d:4e:12:d6:de:90:e4:ff:89:
72:79:bd:88:be:ef:41:f8:73:05:ba:a6:46:7d:90:79:23:14:
3d:b4:2e:5a:96:22:72:a3:b6:5a:5c:8d:05:37:d7:37:2f:23:
95:98:25:ca:7e:ed:5e:bc:cc:43:39:f1:63:74:34:1b:0d:78:
4f:71:c6:5c:de:03:fd:0c:27:54:b3:38:47:e9:aa:98:d0:06:
29:c4:73:17:5c:95:4f:c1:e1:ea:44:29:d2:06:dd:55:83:47:
4b:f1:4b:f0:1d:bf:d3:3a:16:d8:8a:bd:11:6d:6d:3e:0e:c1:
f3:6f:e9:0c:7d:7d:14:7a:4c:3b:07:8c:77:d2:8e:9c:32:03:
6f:b9:bf:98:11:aa:b0:88:5c:b9:32:81:bb:3f:f7:77:3b:bd:
58:10:e9:b2:25:24:7a:9d:dd:fe:95:0f:74:d1:80:01:b6:fa:
cc:f9:a6:81:09:59:e5:d1:84:30:86:92:3b:68:c9:40:2c:41:
27:e4:45:fd:ab:5a:93:78:4d:1f:1f:09:9b:3e:ae:76:a2:b8:
c6:f4:5d:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:47:13 2025 by rpki-client