Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7FF5AEC6CC9811EF85F8B78C762E951A.roa
File: 7FF5AEC6CC9811EF85F8B78C762E951A.roa (raw, json)
Hash identifier: exB4+kpyuWlfV4hRW5v4QshDRsjDarlbctiOydxwEYY=
Subject key identifier: B0:0C:4F:3A:7C:18:76:D3:F2:B1:70:B3:AC:57:19:68:A0:B4:51:24
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F94C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7FF5AEC6CC9811EF85F8B78C762E951A.roa
Signing time: Tue 07 Jan 2025 01:41:23 +0000
ROA not before: Tue 07 Jan 2025 01:41:19 +0000
ROA not after: Sat 13 Dec 2025 01:41:19 +0000
asID: 984
IP address blocks: 156.227.92.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63820 (0xf94c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 01:41:19 2025 GMT
Not After : Dec 13 01:41:19 2025 GMT
Subject: CN=677c8642-ff83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:69:9e:f5:6d:3d:d3:d4:1c:e4:3e:e5:0d:6d:
38:a9:6e:bb:21:05:b2:a1:74:f3:69:9d:54:2d:82:
bd:c8:b4:c6:37:f6:03:23:06:a6:df:e5:80:f1:8b:
aa:9c:ad:66:4e:6f:f0:7a:36:3c:52:94:33:2c:84:
d5:f8:e7:2d:5d:46:96:3e:10:c5:99:db:19:b2:cd:
90:c7:86:3a:15:78:97:95:7a:e3:6c:13:7a:bd:69:
65:08:0b:ae:78:14:03:6a:27:d6:df:19:21:86:54:
a1:4b:cb:6b:19:a8:d2:53:98:1a:30:ac:90:97:34:
3c:98:de:8b:fc:8f:e7:6b:0f:9e:a8:6f:d7:90:9b:
ae:07:20:35:62:0b:68:e7:25:d9:08:c5:69:ae:9a:
31:8e:88:b7:54:66:8a:a2:4c:a3:6e:65:a6:3c:90:
72:7a:cf:34:e4:95:e6:72:cf:68:41:70:94:67:08:
e5:1a:1a:15:e6:30:d2:9d:93:4f:cf:a4:b7:45:ba:
a0:38:20:36:52:6b:58:cf:26:74:5a:95:89:64:c2:
3a:18:4e:7a:98:88:db:04:1f:2e:2e:0e:c7:0c:27:
07:28:c7:77:be:c4:ab:b8:cb:8c:4d:61:90:af:7f:
61:4a:19:b5:9e:ee:dc:3f:c9:82:e5:0a:4f:94:4d:
43:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:0C:4F:3A:7C:18:76:D3:F2:B1:70:B3:AC:57:19:68:A0:B4:51:24
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7FF5AEC6CC9811EF85F8B78C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.92.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:47:d1:50:42:47:6f:0d:e4:cd:d9:c3:0a:76:a3:79:95:85:
ec:be:1b:73:ee:dd:4d:2f:79:ed:d2:55:70:4a:b0:0e:8e:ab:
46:e2:b3:6f:8e:31:06:83:12:59:58:f8:c5:86:90:f2:02:39:
2d:85:c3:b1:e8:4c:5d:e1:e4:7e:c2:cb:dc:02:ff:58:d9:0f:
e3:8b:b3:cc:c7:19:77:7d:45:87:32:44:d7:98:80:44:d5:25:
cd:b3:4c:c1:6f:bd:01:ed:63:5b:c4:eb:2d:8b:41:95:0c:0c:
80:64:97:41:44:6f:6d:12:84:44:f6:d7:8c:94:3a:49:17:df:
67:a5:d8:8c:23:b4:66:d7:13:a5:48:9b:32:38:c9:a3:ea:06:
02:94:d4:3a:ce:d8:6a:8e:98:a6:f4:a2:95:8f:03:89:b5:7a:
3b:f6:d5:0f:3d:05:d9:84:91:67:4c:7e:29:60:79:2b:67:d4:
58:72:74:72:90:a4:52:0d:97:fb:05:ce:c0:31:2f:de:97:95:
04:07:e2:60:b6:b2:e6:1b:97:1c:a4:57:6c:42:fe:d5:d1:00:
db:fd:6f:a8:89:ad:3f:33:6e:36:7b:94:f8:ba:21:20:5e:71:
f9:63:b0:d4:bf:b7:d4:00:59:eb:fa:47:a2:99:e4:a8:91:db:
0f:45:4d:24
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAPlMMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTA3MDE0MTE5WhcNMjUxMjEzMDE0MTE5WjAYMRYw
FAYDVQQDEw02NzdjODY0Mi1mZjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyWme9W0909Qc5D7lDW04qW67IQWyoXTzaZ1ULYK9yLTGN/YDIwam3+WA
8YuqnK1mTm/wejY8UpQzLITV+OctXUaWPhDFmdsZss2Qx4Y6FXiXlXrjbBN6vWll
CAuueBQDaifW3xkhhlShS8trGajSU5gaMKyQlzQ8mN6L/I/naw+eqG/XkJuuByA1
Ygto5yXZCMVprpoxjoi3VGaKokyjbmWmPJByes805JXmcs9oQXCUZwjlGhoV5jDS
nZNPz6S3RbqgOCA2UmtYzyZ0WpWJZMI6GE56mIjbBB8uLg7HDCcHKMd3vsSruMuM
TWGQr39hShm1nu7cP8mC5QpPlE1D7wIDAQABo4ICojCCAp4wHQYDVR0OBBYEFLAM
Tzp8GHbT8rFws6xXGWigtFEkMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC83RkY1QUVDNkNDOTgxMUVGODVGOEI3OEM3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnONcMA0GCSqGSIb3DQEBCwUA
A4IBAQB8R9FQQkdvDeTN2cMKdqN5lYXsvhtz7t1NL3nt0lVwSrAOjqtG4rNvjjEG
gxJZWPjFhpDyAjkthcOx6Exd4eR+wsvcAv9Y2Q/ji7PMxxl3fUWHMkTXmIBE1SXN
s0zBb70B7WNbxOsti0GVDAyAZJdBRG9tEoRE9teMlDpJF99npdiMI7Rm1xOlSJsy
OMmj6gYClNQ6zthqjpim9KKVjwOJtXo79tUPPQXZhJFnTH4pYHkrZ9RYcnRykKRS
DZf7Bc7AMS/el5UEB+JgtrLmG5ccpFdsQv7V0QDb/W+oia0/M242e5T4uiEgXnH5
Y7DUv7fUAFnr+keimeSokdsPRU0k
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:43:31 2025 by rpki-client