Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7CF2D23EDFFE11EFA5C46BA6762E951A.roa
File: 7CF2D23EDFFE11EFA5C46BA6762E951A.roa (raw, json)
Hash identifier: JsXopZ+EhHuTU7najzYJAKCk1Xtpomevx3WPz+q9bgE=
Subject key identifier: 0F:2A:6C:47:DB:DE:44:B0:12:FB:BC:AA:24:60:00:F0:7E:C2:2A:E8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0116CF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7CF2D23EDFFE11EFA5C46BA6762E951A.roa
Signing time: Fri 31 Jan 2025 18:09:18 +0000
ROA not before: Fri 31 Jan 2025 18:09:15 +0000
ROA not after: Tue 04 Mar 2025 18:09:15 +0000
asID: 213599
IP address blocks: 156.229.230.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71375 (0x116cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 31 18:09:15 2025 GMT
Not After : Mar 4 18:09:15 2025 GMT
Subject: CN=679d11ce-001a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:23:bd:45:40:2f:77:5a:63:3c:22:e0:36:1e:
e1:59:25:64:54:65:21:1c:06:c0:cd:5f:66:e7:73:
61:c5:e5:f6:27:f9:00:ac:ef:ee:74:4f:75:b2:84:
66:a4:2a:0c:05:52:0f:f9:7e:b9:93:71:50:d7:6d:
ab:88:78:07:5e:a4:0c:1d:9f:d6:da:6b:fa:ff:0d:
4a:d6:be:aa:ee:34:38:91:64:58:5e:bc:39:5d:a0:
f0:e0:5a:2b:98:ef:ac:0b:58:81:31:5e:27:0e:70:
4e:f3:b7:af:e2:e8:c5:ee:7d:80:86:b0:7f:a7:45:
77:2b:ec:2c:69:b7:f7:f1:d7:15:d7:4f:c8:c0:51:
aa:e4:7d:23:94:22:35:e5:78:57:3d:5f:e8:c3:c7:
90:63:93:92:f8:81:cb:d9:0d:f3:8e:dc:bf:5d:af:
26:c5:ca:70:4f:f5:06:b3:7f:5d:fc:f9:73:4a:b3:
65:aa:55:8b:4e:65:e8:5d:41:a3:ff:83:92:5b:0a:
9b:9a:16:6f:82:33:3b:22:8b:0b:70:a6:60:0f:c7:
4c:13:ef:5d:a6:65:02:38:21:1c:f9:d2:19:8f:59:
71:85:15:0d:87:e6:a3:c0:11:d9:75:dc:d2:b6:ab:
a4:29:ad:34:96:f2:05:27:ff:2b:ff:07:51:92:09:
3e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:2A:6C:47:DB:DE:44:B0:12:FB:BC:AA:24:60:00:F0:7E:C2:2A:E8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7CF2D23EDFFE11EFA5C46BA6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.230.0/24
Signature Algorithm: sha256WithRSAEncryption
01:f1:61:52:8f:96:a4:c7:5c:b0:5b:fa:0a:fb:f1:09:1d:d1:
df:09:c4:0c:c5:ff:cb:4e:dd:7d:ae:c1:8a:6f:e1:f3:94:96:
51:94:28:41:bf:9a:24:a5:be:09:42:52:db:63:72:8d:be:25:
5d:47:a7:31:d8:c4:1e:c0:ed:60:f6:25:b6:be:76:ec:b8:0c:
24:9a:0f:95:88:18:20:72:ce:c0:54:20:5b:59:ef:8c:6e:c8:
6f:0c:71:1e:30:e8:c4:db:43:9d:70:d1:e7:9f:d7:b0:9e:1e:
32:9b:f1:c8:fd:ff:ac:26:2a:50:db:ef:5c:f1:e3:7c:f4:53:
74:ed:01:51:5e:53:ed:79:72:04:3a:d2:56:a8:df:0f:8d:33:
ad:ac:7c:59:fa:bc:d5:2a:76:33:c4:d4:46:82:2f:65:47:07:
55:c6:1e:b0:e2:c3:80:9d:48:e1:36:d1:0f:e7:b1:09:71:36:
d3:0a:ce:3c:64:c8:29:d2:a1:ec:50:b9:d9:1d:ec:b0:00:26:
d8:64:d6:49:4d:d8:eb:81:d0:7c:3b:5f:4c:e3:fa:b0:11:bd:
d0:fd:d1:a3:f0:cc:da:69:9c:21:f6:b3:c5:1f:de:ef:f2:22:
a2:6a:22:3c:b0:9c:7f:95:b2:6d:07:36:5b:5a:15:d5:b1:03:
5c:66:ca:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 15:04:00 2025 by rpki-client