Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7DC876D4C98111EF8C017283762E951A.roa
File: 7DC876D4C98111EF8C017283762E951A.roa (raw, json)
Hash identifier: xNQsgOteYZCtb02B1G2rVeiJHU0yvgfg1+4fWA9WaoY=
Subject key identifier: 52:7D:3F:E4:1B:4B:17:90:5A:C5:EF:FD:39:B6:24:EA:65:52:A7:BF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F553
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7DC876D4C98111EF8C017283762E951A.roa
Signing time: Fri 03 Jan 2025 03:19:07 +0000
ROA not before: Fri 03 Jan 2025 03:19:03 +0000
ROA not after: Sat 13 Dec 2025 03:19:03 +0000
asID: 984
IP address blocks: 156.229.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62803 (0xf553)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 3 03:19:03 2025 GMT
Not After : Dec 13 03:19:03 2025 GMT
Subject: CN=6777572b-a6f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e9:17:ea:50:ff:30:85:79:3a:5b:7a:b8:de:
b3:e5:38:83:63:52:fb:82:f4:cc:e0:5d:c5:b3:6d:
70:15:f1:ba:cf:93:03:a0:26:1f:87:ec:63:24:a5:
7f:8d:9c:89:2f:19:29:f9:22:c9:55:70:de:1c:ff:
1b:55:c8:ad:25:23:83:1b:b0:bd:b0:76:2c:25:46:
3a:a6:de:79:36:98:c2:70:50:43:5e:ab:a1:c6:e1:
63:d5:2a:10:7f:c1:fe:19:8e:8b:13:12:04:83:34:
85:26:80:ae:09:45:9c:16:31:09:cd:78:df:a6:27:
79:91:a5:01:57:3a:43:3e:7d:98:1d:46:06:71:35:
6d:27:7c:4e:3a:f3:35:17:1f:39:8a:8d:54:d7:71:
63:ac:34:19:f6:fe:ea:24:0e:be:e8:94:e5:71:d4:
f6:cc:23:43:53:5f:54:ed:86:48:6d:08:9c:e2:3b:
87:92:56:d6:a3:3d:bb:2f:76:ca:d1:0e:fa:f6:71:
26:df:59:e1:bc:57:6e:4c:d4:8a:11:e0:10:be:f8:
2b:98:b3:7c:17:bf:33:e1:2f:13:b1:39:98:ca:2e:
75:fb:ac:5b:d5:4e:58:30:cc:e8:80:0f:e2:cd:19:
63:cd:a1:8d:ac:a4:37:a7:d2:05:61:3c:7e:bc:fb:
9d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:7D:3F:E4:1B:4B:17:90:5A:C5:EF:FD:39:B6:24:EA:65:52:A7:BF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7DC876D4C98111EF8C017283762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.255.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:19:89:c3:bc:d4:41:c5:85:61:fb:e5:b5:5d:8a:e1:d0:80:
a0:b9:77:34:87:73:de:2a:24:d2:28:79:6d:73:bb:fe:a4:12:
a4:65:1d:46:86:7e:f0:85:45:0b:8a:fb:30:2c:5d:79:6a:80:
36:3b:ac:68:d9:c6:0a:57:eb:45:bd:55:38:56:48:96:5e:14:
9b:0d:0a:4a:02:24:45:a5:a3:f8:be:53:ff:8a:a0:ec:4a:35:
a8:a7:c5:2f:bb:07:48:bd:fe:4b:fa:14:8f:7b:9c:1a:b0:89:
b8:90:aa:94:3c:cc:15:0f:4f:29:87:6a:09:7b:50:1d:81:44:
ea:9f:48:76:d4:1e:34:56:4e:b3:4a:97:2c:51:9e:33:ff:14:
70:be:67:17:4b:95:16:04:81:a1:ec:9e:2b:fb:fc:2c:4a:3e:
c7:af:0b:e0:0e:0a:99:11:58:14:84:36:a7:aa:d3:bd:59:47:
41:f7:00:42:ad:c6:02:11:65:b5:c5:0f:07:f8:b3:6e:6f:36:
4c:1f:fb:71:d2:09:25:21:19:bf:cc:0e:67:84:0a:1a:50:76:
6b:af:1e:e8:79:19:17:1b:ab:04:4d:98:13:92:2f:a2:03:18:
1a:df:1b:18:a6:87:4f:02:11:2e:c3:e8:2a:29:00:7e:aa:7c:
d9:73:cd:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:38:28 2025 by rpki-client