Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8649BDAACD3B11EF8B16BD9F762E951A.roa
File: 8649BDAACD3B11EF8B16BD9F762E951A.roa (raw, json)
Hash identifier: aayhWrIVBOd9w2T3XtinhyRwbQLqOMUGKOPuPgvB2Vw=
Subject key identifier: B3:6F:9B:A6:66:93:92:F4:62:22:08:BF:E9:62:29:5F:9C:3B:E6:22
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FE45
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8649BDAACD3B11EF8B16BD9F762E951A.roa
Signing time: Tue 07 Jan 2025 21:08:21 +0000
ROA not before: Tue 07 Jan 2025 21:08:18 +0000
ROA not after: Sat 13 Dec 2025 21:08:18 +0000
asID: 984
IP address blocks: 156.243.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65093 (0xfe45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 21:08:18 2025 GMT
Not After : Dec 13 21:08:18 2025 GMT
Subject: CN=677d97c5-4a0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:6e:41:3f:1b:37:7a:78:eb:4c:66:2b:7a:ec:
3a:7f:51:cc:5f:c4:f0:ca:6e:84:0a:f8:1d:5e:cd:
16:3c:ac:a1:d8:e9:c3:84:da:d0:74:f0:35:22:26:
4e:fb:55:3e:dc:b9:a4:95:5c:69:0a:56:9e:7a:37:
92:1f:6a:66:99:df:be:45:2c:85:7a:ac:98:bc:57:
ac:68:60:43:54:fc:ed:03:a5:99:49:e0:f8:17:8c:
76:4f:b5:a9:0d:10:21:fc:30:14:1a:6e:1d:26:1e:
84:e7:0a:cb:fd:13:c7:a9:a7:d6:2f:91:ab:cb:be:
20:71:76:d6:ce:b3:ce:82:b3:29:42:10:3f:28:49:
a8:11:f8:02:e0:24:cd:1b:a9:6f:bc:a8:d8:06:49:
ab:22:a1:9d:3b:4d:2f:b9:2c:44:70:96:ce:28:3c:
9f:30:dc:75:6f:53:d3:e1:7d:c3:7e:1e:49:03:85:
bb:b6:05:43:8a:bd:82:d6:6d:0d:1c:ec:ae:62:6a:
68:25:8a:f5:bc:d3:0d:06:99:83:35:a5:08:ec:f0:
e7:b5:e9:44:01:2d:34:f6:33:d8:8a:47:74:97:d4:
db:57:92:cc:36:4f:98:b3:20:87:07:6d:e1:2c:55:
b9:38:4a:8d:38:92:ee:bc:d6:58:76:0d:3e:87:e2:
c0:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:6F:9B:A6:66:93:92:F4:62:22:08:BF:E9:62:29:5F:9C:3B:E6:22
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8649BDAACD3B11EF8B16BD9F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.243.75.0/24
Signature Algorithm: sha256WithRSAEncryption
88:0d:84:f1:46:bf:d8:71:ca:50:0e:4c:7c:88:50:ef:29:6d:
66:37:5f:0c:d0:a7:35:f5:1f:f6:36:81:87:97:57:05:20:fe:
6f:e2:9c:63:8a:61:d8:4b:75:62:11:f1:6e:38:24:e4:82:f5:
4d:fc:bc:8a:09:41:d0:1f:11:40:9c:9b:47:15:fb:08:59:7a:
2c:c2:56:2c:cc:f3:ee:b5:a9:31:1c:75:5f:47:02:b4:6c:30:
16:ea:f4:b9:e2:40:4d:93:0f:aa:4a:06:1f:0e:95:44:e8:ca:
33:4c:9c:f8:91:96:eb:98:08:f1:c1:79:8e:e6:b8:b5:e3:2f:
32:1b:a6:e4:ec:ee:f2:72:b9:eb:6e:ad:54:ae:0e:41:ee:ee:
43:89:63:42:51:de:e1:68:f2:59:84:b1:a6:4b:e6:89:70:11:
18:67:39:a9:da:47:59:e6:d6:26:fd:be:9a:54:76:73:d9:91:
c2:63:f4:bd:7f:8c:e3:d4:61:b7:8e:6d:98:1b:98:87:09:66:
88:0e:0d:40:df:06:60:14:ca:f2:d2:71:66:bf:91:ce:ac:d2:
53:8a:6c:96:ce:94:72:ef:8a:ad:df:09:05:a7:fa:41:12:fe:
84:21:0c:5f:04:c5:b0:3b:cc:b4:ef:e9:85:01:f5:35:d3:b9:
f5:55:20:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:47:05 2025 by rpki-client