Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/83E2831CCD3111EF9A029360762E951A.roa
File: 83E2831CCD3111EF9A029360762E951A.roa (raw, json)
Hash identifier: xVgU6qohfI7Fp/inVbrF+HOvVp8p6CDGCAz97tbSkkU=
Subject key identifier: 0E:CD:CA:09:7D:A0:7E:14:53:C8:21:90:8D:4C:DE:42:C2:6D:3E:95
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FDF5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/83E2831CCD3111EF9A029360762E951A.roa
Signing time: Tue 07 Jan 2025 19:56:42 +0000
ROA not before: Tue 07 Jan 2025 19:56:39 +0000
ROA not after: Mon 13 Dec 2027 19:56:39 +0000
asID: 17561
IP address blocks: 156.243.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65013 (0xfdf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 19:56:39 2025 GMT
Not After : Dec 13 19:56:39 2027 GMT
Subject: CN=677d86fa-fea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:73:8d:e9:b1:19:e8:98:66:69:53:5b:18:dd:
69:eb:d3:d2:88:d1:43:65:01:35:ff:a3:bb:07:2a:
6c:e2:bb:ba:73:03:f9:d1:88:a7:19:0a:ad:45:8e:
45:be:2f:fe:d4:a5:1c:5f:d7:af:d4:3b:09:9e:35:
53:f7:01:cc:c3:d4:0a:5b:be:cc:54:1d:75:2e:b2:
d7:92:47:e4:99:6b:01:77:f2:2e:2f:8c:f5:91:33:
b0:a5:b8:d2:fc:80:34:25:3d:b9:da:17:63:af:f6:
22:18:8a:1f:51:9d:35:c4:9c:62:f8:96:fa:b8:33:
33:32:74:e6:b1:fa:13:97:24:74:c7:a7:b3:48:73:
8f:ad:9a:d6:9f:64:23:f9:cb:76:a5:4c:4e:10:6c:
83:c7:d8:43:1d:05:e0:7d:f7:0a:c8:41:55:c6:9f:
67:57:4b:ad:ee:6d:be:ca:b8:c9:fd:b6:eb:04:ac:
39:e7:dc:a5:84:43:c8:24:be:c5:79:53:d0:ec:62:
82:1b:c2:8b:cd:35:db:78:42:ec:d6:82:1f:39:17:
52:ae:57:4a:bc:8a:bc:fd:d5:bb:c2:65:89:39:d0:
c8:8a:78:5b:e3:6c:a4:bf:88:e7:2f:9b:78:6c:47:
b0:29:3b:4d:4a:d4:8a:0a:a1:49:bd:a8:1c:bf:4c:
5a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:CD:CA:09:7D:A0:7E:14:53:C8:21:90:8D:4C:DE:42:C2:6D:3E:95
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/83E2831CCD3111EF9A029360762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.243.35.0/24
Signature Algorithm: sha256WithRSAEncryption
78:ca:d4:b4:3c:50:b0:0c:8e:05:41:a3:bc:c1:19:c9:4b:d1:
c2:ad:e7:dc:79:cd:04:ff:d1:ec:4c:13:bb:c5:7a:04:94:56:
63:7f:ad:b7:f8:2d:9d:30:92:1f:73:f9:82:d6:70:91:c1:df:
c2:0f:81:fa:8b:1c:a8:b0:de:9e:39:79:8c:b0:c9:79:fc:ad:
ff:df:6e:ad:92:d1:a1:2d:63:3f:bc:fd:c1:bb:c8:e8:68:42:
13:c6:34:bb:94:bd:26:4e:c5:2d:9b:78:c7:54:44:45:37:02:
70:b1:52:76:41:d7:ce:8b:8f:ca:57:45:9d:3c:dc:05:4f:96:
d2:df:31:a4:6d:1d:ca:56:43:4c:fb:e4:60:86:0c:26:97:05:
85:2b:29:b8:76:26:3e:29:7c:86:a4:d3:04:36:0b:a5:e0:77:
d9:60:99:7c:eb:2b:16:ae:3a:9f:24:af:e9:33:23:53:0a:78:
e0:17:0a:ac:5b:e8:af:e8:0f:a9:85:51:7a:0b:83:68:dc:d9:
b7:71:85:4b:8f:c4:c6:fe:38:dc:a3:ae:fe:58:49:f2:19:59:
ce:bf:af:20:1a:d9:49:32:ad:f6:cb:05:45:12:1a:20:41:d7:
87:22:05:6e:0e:f1:5d:78:9a:69:6b:84:f5:49:e1:cd:0b:40:
00:a4:6b:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:55:10 2025 by rpki-client