Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7A16C5A2CD3411EFB313BC73762E951A.roa
File: 7A16C5A2CD3411EFB313BC73762E951A.roa (raw, json)
Hash identifier: ghP/L+Ns8dRIsuAUurll11JQwfta8UJ1il8Zn3QbnS0=
Subject key identifier: 3D:56:9B:E7:9F:DC:85:BC:5F:6F:98:3F:E3:E4:8D:3A:EC:9B:1C:BE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FE0D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7A16C5A2CD3411EFB313BC73762E951A.roa
Signing time: Tue 07 Jan 2025 20:17:54 +0000
ROA not before: Tue 07 Jan 2025 20:17:50 +0000
ROA not after: Mon 13 Dec 2027 20:17:50 +0000
asID: 17561
IP address blocks: 156.243.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65037 (0xfe0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 20:17:50 2025 GMT
Not After : Dec 13 20:17:50 2027 GMT
Subject: CN=677d8bf2-4fea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6d:33:84:29:54:9d:45:87:f7:51:7a:17:6a:
7e:a8:cc:86:86:6d:73:4d:9e:9e:17:2d:e7:94:cb:
eb:63:0e:7b:53:a3:14:a7:00:38:f0:4e:99:5a:f7:
37:b7:67:99:53:ba:f4:f7:e3:bd:db:37:a2:d1:ea:
f3:73:df:f7:e3:5f:07:10:59:c6:6b:04:f0:0f:dc:
46:91:cb:7a:e8:1b:73:8c:17:07:73:49:c7:73:90:
70:cb:73:17:85:4d:39:70:3e:19:63:ef:f0:05:02:
68:12:f5:44:4b:4a:f0:af:26:ba:1d:d8:e2:b1:f3:
f2:8b:a1:2d:7e:e8:36:ac:9f:26:e4:37:54:c4:7b:
e0:f6:af:12:61:b4:fe:24:03:e4:c4:c0:91:e3:65:
94:cf:e1:6a:24:3c:ce:f1:57:c6:45:55:a6:43:ef:
f4:99:b2:9c:08:5b:07:b4:09:fb:0b:c2:0c:fc:e7:
9b:4b:6d:f9:2f:3a:9f:de:33:f4:94:35:5b:a4:68:
4d:73:ae:a7:71:76:b0:59:d5:1e:ac:03:9c:52:bb:
e0:62:9d:22:5b:b8:13:c1:d7:05:11:50:8a:9b:de:
9c:8b:17:c1:33:24:66:bc:51:03:19:98:c8:7e:af:
33:f6:b9:bd:94:1f:46:5c:78:65:a9:6e:aa:6f:b8:
0a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:56:9B:E7:9F:DC:85:BC:5F:6F:98:3F:E3:E4:8D:3A:EC:9B:1C:BE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7A16C5A2CD3411EFB313BC73762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.243.47.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:77:f3:05:03:9b:55:14:07:02:89:12:b2:1f:85:02:73:40:
63:00:7a:65:c4:be:cc:10:79:0c:67:fb:fd:d0:f2:22:b0:c3:
5e:17:c2:65:dd:19:0d:db:d7:c4:6b:3e:cf:3e:b6:69:70:2f:
d2:bf:d7:4a:5c:8a:a6:ef:40:b3:08:8f:03:e3:de:76:c0:35:
ea:7d:f5:bf:98:bb:7f:72:93:7b:b5:09:9e:77:35:ef:59:14:
b7:28:7b:d3:c7:f0:75:4b:f5:b3:e5:a9:ac:f9:d3:41:a4:92:
17:bd:41:20:1d:7a:5b:66:6a:78:4b:7d:a1:e1:7d:6b:d4:79:
57:25:3e:2e:3a:3b:06:22:80:09:58:77:02:dc:46:b5:57:a8:
3c:4d:e0:19:c9:fa:4b:02:bc:d3:ff:32:30:f7:9e:ce:4a:f6:
90:17:82:02:f8:2e:78:01:e8:fc:57:2d:0d:f6:03:b9:2f:3e:
1d:96:05:f4:f1:77:fe:de:3c:24:fd:eb:8f:36:fe:01:67:c6:
88:b5:ad:d3:81:fe:71:05:3a:94:50:7b:3a:f7:0b:dd:3a:84:
a5:c0:70:22:18:01:f4:79:82:0d:b3:1d:64:ff:dd:24:07:73:
41:f2:ad:da:72:f6:73:b6:37:94:97:de:e5:02:10:e0:4c:9c:
38:e2:74:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:54:09 2025 by rpki-client