Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/82B4DE4ECD1E11EFA90F8A69762E951A.roa
File: 82B4DE4ECD1E11EFA90F8A69762E951A.roa (raw, json)
Hash identifier: baI5bSY15QQSj/uSxxKfelnekIP5/gDifFSBNoRg5v0=
Subject key identifier: 42:AA:39:37:4F:8C:3A:9A:BE:6D:43:47:62:D4:4F:48:46:93:04:83
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FD5F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/82B4DE4ECD1E11EFA90F8A69762E951A.roa
Signing time: Tue 07 Jan 2025 17:40:40 +0000
ROA not before: Tue 07 Jan 2025 17:40:36 +0000
ROA not after: Mon 13 Dec 2027 17:40:36 +0000
asID: 17561
IP address blocks: 156.241.57.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64863 (0xfd5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 17:40:36 2025 GMT
Not After : Dec 13 17:40:36 2027 GMT
Subject: CN=677d6718-4268
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6d:99:5b:7f:f0:65:e7:df:74:67:d4:d0:40:
64:99:39:91:4b:1f:9b:96:97:ae:ea:12:fd:28:c8:
7c:fb:7e:9b:b8:51:13:c7:6c:47:fa:48:7c:87:70:
52:7c:22:1d:17:b8:d1:55:3e:69:f9:aa:74:62:ad:
5a:b9:82:9f:b5:39:43:3d:bf:d0:88:69:bc:93:f6:
c2:4e:c4:a0:22:d2:11:db:ef:4d:05:38:66:f9:30:
17:49:f4:e5:cb:2c:30:a9:7c:e2:14:8e:d3:41:18:
77:a3:a1:62:11:43:f8:c8:d2:45:25:25:85:9a:10:
b7:e6:ed:a5:66:d7:74:37:bb:e9:b2:a6:9c:dd:e9:
04:90:ae:4a:1f:51:0d:85:25:6b:89:7c:1d:97:49:
df:01:f8:9b:9b:7a:41:6d:0e:28:6a:18:51:63:08:
42:5a:7a:83:33:55:c8:d2:68:f3:5f:03:f0:0c:59:
2c:09:ad:61:1d:33:39:15:25:3e:98:7c:7a:a5:7a:
87:34:27:27:49:b2:21:09:30:75:88:fd:c3:46:10:
cc:98:d5:16:5a:36:8c:50:70:fe:7e:a9:64:8b:14:
b6:80:26:d9:39:dc:6a:1d:85:4c:ba:91:e3:32:9a:
0c:80:75:9a:b7:99:79:05:97:a2:5f:97:6e:61:1a:
c1:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:AA:39:37:4F:8C:3A:9A:BE:6D:43:47:62:D4:4F:48:46:93:04:83
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/82B4DE4ECD1E11EFA90F8A69762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.241.57.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:3a:a6:47:d5:6b:a8:a6:ae:4b:e2:a5:fe:a0:5d:a0:a6:24:
ff:69:0c:59:d6:95:d8:cf:f3:bc:d3:ed:5a:fe:4f:7b:98:11:
2a:f6:82:ad:63:eb:5a:ea:69:69:b4:b0:2b:51:e0:a8:c1:43:
35:11:87:c5:a4:54:df:a1:28:24:54:21:aa:8a:86:d7:de:25:
d2:07:fa:64:46:b7:3d:e8:74:a1:b7:fd:a1:f4:87:90:38:e2:
96:0b:6a:0c:d0:1a:88:d4:88:d5:ac:25:b6:09:ea:a3:c8:f9:
c2:03:6d:43:b6:f1:90:b4:02:b9:66:5b:52:d0:4b:4f:0d:4c:
ce:ce:a3:8f:f3:55:7f:ed:47:8c:6a:61:c9:24:09:4a:78:3e:
a8:90:91:1f:1c:21:68:3b:6b:40:25:9a:10:4f:53:bd:d6:85:
57:76:dd:7b:55:40:33:f9:a0:75:76:9f:b3:e9:3f:49:10:99:
a7:b6:42:17:e2:a7:3d:cf:01:2a:f1:56:f9:cd:20:bf:2e:44:
ea:76:90:f6:e2:84:14:41:36:0b:8d:48:91:93:d3:8f:51:b8:
67:fa:3e:e5:ca:1c:2b:40:fc:80:26:1a:89:d0:98:9e:f9:37:
39:cb:30:f5:38:03:5d:17:3e:a7:41:6f:25:dc:ec:31:97:11:
c8:c6:93:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:36:47 2025 by rpki-client