Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/83FE562ACD7511EFAE1713A4762E951A.roa
File: 83FE562ACD7511EFAE1713A4762E951A.roa (raw, json)
Hash identifier: 1+b+lHmKjCP2BqAzQVDri5BDiHswhaLQ451TgZdbMic=
Subject key identifier: 96:E2:A1:63:04:D8:84:C0:01:65:F2:EE:73:F1:5B:C9:62:51:EA:5E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FFAD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/83FE562ACD7511EFAE1713A4762E951A.roa
Signing time: Wed 08 Jan 2025 04:03:28 +0000
ROA not before: Wed 08 Jan 2025 04:03:25 +0000
ROA not after: Sat 13 Dec 2025 04:03:25 +0000
asID: 984
IP address blocks: 156.248.96.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65453 (0xffad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 8 04:03:25 2025 GMT
Not After : Dec 13 04:03:25 2025 GMT
Subject: CN=677df910-b2c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:35:06:fe:3f:9e:cd:f5:bf:c0:1e:8a:bc:9d:
7c:41:89:af:f0:be:82:cb:57:d6:8b:a2:01:94:99:
04:63:e1:c1:ed:3d:37:e9:04:84:7d:58:27:29:bb:
90:22:7c:8c:31:b2:c8:25:b5:28:91:53:42:38:2e:
85:a4:49:6d:98:25:96:15:91:ac:3d:bf:71:2f:08:
1a:0f:97:da:2a:a6:fc:cd:91:44:01:08:d7:3f:1e:
f9:2e:55:c2:53:6f:2a:aa:ba:e2:15:05:1c:22:9e:
cb:c5:fd:32:29:d1:e5:b7:e8:f5:5d:06:a5:e0:f6:
76:44:20:11:89:46:2e:b2:9b:0f:53:e3:92:3d:cb:
b4:82:d1:a7:d7:df:4f:70:5a:7c:26:d8:52:8b:1c:
96:91:d9:29:9a:a0:80:c4:18:d2:21:f9:36:ba:df:
62:71:c9:a0:e1:ea:84:7e:c4:93:be:c7:51:5f:4e:
36:c1:15:bc:54:f8:f4:f9:6e:95:85:41:aa:31:e8:
73:8b:e0:df:ad:62:ad:3b:81:f5:68:0a:15:b5:06:
2d:02:06:8d:1c:95:5f:6b:fe:20:da:97:06:01:af:
10:e3:be:27:1a:0f:57:ff:01:81:9d:40:59:f9:4a:
d8:a6:23:21:1b:4c:8b:d2:f9:54:c7:be:6c:ce:60:
98:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:E2:A1:63:04:D8:84:C0:01:65:F2:EE:73:F1:5B:C9:62:51:EA:5E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/83FE562ACD7511EFAE1713A4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.248.96.0/24
Signature Algorithm: sha256WithRSAEncryption
81:f0:fe:dd:3b:8f:7e:09:27:44:a2:12:eb:d2:d2:63:d3:ff:
16:18:5a:ea:e9:58:66:a1:d5:51:21:ef:05:e2:a3:4a:00:14:
7e:61:89:17:42:2a:f6:ab:21:bf:b6:f5:67:fe:cc:2d:34:91:
85:62:f2:31:1b:37:c1:00:29:e3:cc:a2:f7:51:40:82:c4:76:
a0:2c:33:7b:bb:57:f9:09:3b:b2:e0:b3:ca:5e:69:e2:13:07:
62:10:c8:26:de:46:60:bc:51:ff:f6:da:40:2a:5f:8d:2b:d8:
ff:ee:42:0f:cc:6d:f7:48:dc:87:02:04:9d:07:12:93:a1:7a:
2e:66:dc:0b:15:32:e9:84:46:e2:20:4b:0d:60:77:15:3d:8e:
8d:54:e5:2f:dd:37:13:ff:8b:a2:10:d6:02:f5:4a:52:4b:3f:
1b:a6:f0:d9:a1:42:64:6a:a7:01:ac:c8:ff:34:57:9c:3d:ce:
53:cf:01:d2:a6:b2:82:36:9d:b3:a7:9a:57:69:45:a6:37:5a:
7c:3e:1b:e2:c0:98:ad:ab:86:1c:b3:9d:0a:b6:30:94:6b:d5:
b9:03:a5:ba:a3:3a:d8:49:f6:04:5f:0c:b5:fe:46:c6:d4:62:
ea:0f:35:e6:a5:e4:61:48:e3:43:b8:56:89:9f:50:3e:e0:35:
19:14:f7:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:44:26 2025 by rpki-client