Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/79F0CBAEC33411EF9CFD5668762E951A.roa
File: 79F0CBAEC33411EF9CFD5668762E951A.roa (raw, json)
Hash identifier: uxEWx6vqpCs4MVzpGkRxll/GlOPTz9tksNIX/zzWTNg=
Subject key identifier: 0E:CD:1E:FF:AF:5A:F7:1A:A8:B5:94:91:10:DF:40:A0:FA:24:A5:DA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EB37
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/79F0CBAEC33411EF9CFD5668762E951A.roa
Signing time: Thu 26 Dec 2024 02:52:42 +0000
ROA not before: Thu 26 Dec 2024 02:52:39 +0000
ROA not after: Fri 10 Dec 2027 02:52:39 +0000
asID: 17561
IP address blocks: 156.244.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60215 (0xeb37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 02:52:39 2024 GMT
Not After : Dec 10 02:52:39 2027 GMT
Subject: CN=676cc4fa-ec3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:d5:db:4e:d4:42:bb:20:87:dc:d1:aa:dc:89:
4a:50:9b:2c:5b:ac:6f:6b:47:22:b1:12:13:aa:68:
b3:2a:e6:d8:7e:36:cb:3f:38:23:20:39:82:b1:a1:
61:95:1d:43:68:b9:f0:47:17:71:fc:9b:cd:47:05:
78:3f:64:59:71:20:ce:44:1b:53:9f:b0:b6:8b:be:
ef:ba:3b:87:68:da:9d:4f:18:87:c9:d3:cd:6d:4a:
eb:d1:b5:38:31:c1:f3:41:f9:b6:0a:89:43:38:1c:
17:84:5a:74:16:36:5d:d9:a4:4e:3f:4a:43:99:50:
f0:78:b1:97:99:bd:d4:e1:1d:93:07:cd:bc:09:9d:
8d:3f:7e:8d:72:ec:9a:02:1a:ba:4f:9a:3c:c6:aa:
dd:98:b5:9e:25:f8:ad:39:ae:29:8b:8b:af:e3:2b:
5e:f0:3e:7b:92:01:62:94:04:ca:fc:d3:52:1f:71:
12:a6:77:9b:67:be:d7:3c:fa:7c:06:e7:72:f0:85:
5d:b2:f2:5e:98:1d:84:49:10:a5:b4:04:6e:00:3d:
03:48:85:6b:a8:76:17:40:c0:19:8a:2e:f0:f8:ae:
df:3c:22:56:3c:65:2a:20:17:ed:36:7a:b6:83:2b:
53:01:91:69:f8:d8:83:0e:af:7c:49:06:ec:a3:bf:
af:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:CD:1E:FF:AF:5A:F7:1A:A8:B5:94:91:10:DF:40:A0:FA:24:A5:DA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/79F0CBAEC33411EF9CFD5668762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.151.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:70:a0:c1:62:22:0d:5e:49:31:90:88:f8:d9:ac:ab:47:06:
e0:d4:d7:39:ee:38:3b:ca:cd:94:4f:02:77:e7:4a:40:8e:ca:
a4:3f:3b:26:a9:1d:e4:41:d8:94:94:67:57:54:ce:b6:8d:fa:
2f:cb:b1:d1:4e:cc:c4:84:13:b5:d8:48:97:00:47:05:3e:8b:
41:d7:f1:0a:ae:ab:fe:ec:e6:75:75:45:80:70:04:0e:a7:da:
dc:58:df:8d:fa:ed:46:5b:b4:c0:f9:51:ec:e9:d9:1c:b7:90:
b2:df:16:1a:2c:b2:17:10:db:e7:25:8d:c4:65:c0:77:16:a3:
16:13:5d:59:5b:52:d0:1e:0d:e7:d5:d1:12:45:e2:74:8c:c0:
1b:e9:bf:4a:a4:05:5a:39:23:38:4d:5a:e6:7d:e0:9f:73:d2:
e6:e8:63:be:e9:95:15:d8:ff:ef:16:df:ec:f0:42:37:05:2f:
b7:8a:2e:e3:0a:11:a4:38:e0:a6:39:1f:eb:8c:31:2b:b5:04:
b9:e1:e5:ac:02:10:49:10:f6:7e:f8:5b:8c:b0:e2:c1:72:4a:
12:8f:94:99:d9:5f:34:ef:c9:d6:82:70:cb:74:cd:f6:0e:2d:
f0:99:b0:35:c0:21:94:d4:9f:a3:00:f6:0a:53:f0:c7:1b:f1:
eb:54:90:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:47:59 2025 by rpki-client