Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7A240AF2C27E11EFA571AB6B762E951A.roa
File: 7A240AF2C27E11EFA571AB6B762E951A.roa (raw, json)
Hash identifier: iawfKG4lrtgHmSjTsntnigjfEpfnbGlAjpIHzogqTVc=
Subject key identifier: 21:53:5E:F5:BA:AA:DB:D7:A8:63:75:E8:BB:6E:56:60:58:D2:42:73
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E8C9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7A240AF2C27E11EFA571AB6B762E951A.roa
Signing time: Wed 25 Dec 2024 05:09:54 +0000
ROA not before: Wed 25 Dec 2024 05:09:51 +0000
ROA not after: Wed 10 Dec 2025 05:09:51 +0000
asID: 984
IP address blocks: 156.227.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59593 (0xe8c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 25 05:09:51 2024 GMT
Not After : Dec 10 05:09:51 2025 GMT
Subject: CN=676b93a2-aa9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:60:92:25:96:91:47:82:c0:a2:b0:69:76:17:
55:8f:50:e2:41:4c:a5:2c:bf:24:b7:f8:d4:c4:89:
c7:e8:e1:2e:58:38:ff:75:be:05:41:85:52:05:a7:
de:46:f1:98:4f:c6:55:5a:a6:16:81:c0:5c:56:19:
d7:18:59:52:fd:c4:bf:de:3f:5b:80:c2:c5:26:4c:
a4:38:69:1b:b0:2b:61:3c:e2:c3:ba:48:1d:65:47:
b8:9f:9a:99:c2:d0:3d:c4:a9:39:1a:91:46:1c:89:
8a:aa:31:bf:7c:14:5d:cc:e6:28:28:f6:1f:08:46:
aa:3c:0a:a3:87:c2:d8:f0:2d:f3:64:c4:4f:cc:8e:
47:0d:1b:0c:f6:79:ec:23:d3:85:78:34:91:39:a5:
43:be:ad:ed:ae:a0:58:4f:4f:69:f0:c9:39:bc:4f:
d7:f7:b6:7d:40:aa:70:5a:de:b7:c5:d4:f4:12:98:
38:94:90:90:e1:dd:10:a8:9d:a4:84:fe:57:22:c5:
1b:4d:b5:50:ce:24:80:21:eb:5e:38:4f:f2:08:52:
38:c6:6d:45:76:ec:40:fb:0d:db:19:e2:13:3f:70:
62:70:c4:d6:8f:55:42:da:11:24:9a:7f:b6:9c:5d:
48:c4:a2:93:a3:1c:be:6b:a2:18:76:73:41:6f:5b:
ef:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:53:5E:F5:BA:AA:DB:D7:A8:63:75:E8:BB:6E:56:60:58:D2:42:73
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7A240AF2C27E11EFA571AB6B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.182.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:9c:71:0f:b3:eb:e3:b6:2b:56:4e:78:58:7a:38:69:66:ba:
4c:74:32:72:b0:ff:a3:2b:da:39:d9:85:66:bf:7c:6e:80:ea:
5f:d3:2b:a6:d9:b8:e2:41:4f:33:9b:d6:db:4a:da:f7:02:f6:
3a:b8:92:3f:aa:ba:24:15:50:e9:4e:37:36:c8:c8:fe:8a:5a:
a7:5e:b9:f9:29:a1:da:f4:d2:57:53:19:3c:39:41:8e:d9:8a:
7b:08:58:77:0e:a2:9d:34:9c:7c:51:f1:d3:0e:a5:6c:46:52:
1f:f2:46:63:88:6c:b6:2f:63:6e:f9:9e:63:ae:43:fb:eb:c4:
fc:6f:73:43:aa:39:ee:6a:ac:d2:27:4b:c8:de:87:43:90:ef:
5e:b7:e7:fb:06:e7:26:85:e3:51:26:e1:c7:1f:7a:6f:b6:9f:
3b:8a:f3:95:8f:50:14:f8:2b:78:6e:85:4e:5c:7d:0d:64:0b:
aa:50:89:bf:0f:0d:81:43:72:fb:88:af:78:30:7f:97:f3:71:
de:1f:d5:7f:df:01:38:82:87:8b:33:45:c6:0d:55:ad:65:c5:
13:4b:32:3b:02:af:82:41:8b:ba:b9:9e:19:bf:a4:08:78:26:
2c:a2:82:96:f9:bc:18:04:aa:52:53:c4:75:9b:13:6f:f6:79:
88:b1:b7:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:36:02 2025 by rpki-client