Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B32D64ACE4D11EF82862F87762E951A.roa
File: 8B32D64ACE4D11EF82862F87762E951A.roa (raw, json)
Hash identifier: xklhpJsHdUqXAZKsXcJzNZsSVW2Y4ftxDWx0NrBswJo=
Subject key identifier: 38:10:7E:A7:2D:C5:E9:EC:A4:64:E3:59:D7:CE:6D:54:FE:FE:E9:04
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0102CD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B32D64ACE4D11EF82862F87762E951A.roa
Signing time: Thu 09 Jan 2025 05:49:51 +0000
ROA not before: Thu 09 Jan 2025 05:49:48 +0000
ROA not after: Fri 09 Jan 2026 05:49:48 +0000
asID: 17561
IP address blocks: 156.238.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66253 (0x102cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 05:49:48 2025 GMT
Not After : Jan 9 05:49:48 2026 GMT
Subject: CN=677f637f-9345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:d8:7a:71:24:34:e5:c3:84:e0:50:dc:18:5a:
b0:ac:03:04:dc:c5:a4:2e:30:c0:4f:92:93:7a:39:
dc:5e:40:93:3f:44:ad:9d:c6:e1:1a:99:d6:78:77:
c4:48:c6:d7:f1:35:77:6f:e1:7a:85:69:00:d5:35:
0d:f0:29:84:20:69:3b:a8:51:bb:67:44:e9:5d:8d:
25:e6:13:d4:d2:76:f1:96:d3:d0:6a:af:83:90:0c:
1f:f6:59:8d:f4:a1:a9:81:aa:a5:cd:33:19:33:aa:
6a:4b:34:b0:80:44:90:12:cb:ec:99:91:74:82:75:
1e:2c:2c:61:1e:95:78:71:41:ba:a5:08:7d:d9:a6:
cc:88:a6:5c:56:c0:45:7e:bb:fb:78:34:b3:66:73:
9e:bd:ae:6a:71:77:31:5c:05:81:93:c3:79:b6:bc:
8a:bf:fb:8f:ca:44:fe:84:0b:4c:c5:ad:38:78:d3:
c5:f4:61:09:f2:e4:31:ba:dc:dc:c4:f0:33:6c:75:
54:04:66:1f:10:45:0a:fc:60:b2:78:20:1f:2c:18:
6b:61:a9:c3:f7:57:0a:87:cf:1b:52:4a:bf:91:38:
bf:f9:9c:af:2e:69:83:d5:5a:27:a0:1b:36:5c:31:
68:1c:2e:37:00:b0:2e:fe:25:86:d9:e0:ee:b8:ee:
10:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:10:7E:A7:2D:C5:E9:EC:A4:64:E3:59:D7:CE:6D:54:FE:FE:E9:04
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B32D64ACE4D11EF82862F87762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.58.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:d3:29:fd:c4:d2:92:5a:d8:e3:d0:33:c1:ed:f0:e8:81:90:
56:07:c4:eb:0c:af:d3:bb:5d:7d:ac:aa:38:1d:2b:82:66:8a:
f6:8b:36:b4:51:3d:22:5c:7b:68:dc:8a:45:4b:52:d8:45:f2:
80:69:50:f9:7b:ed:1a:f2:58:95:8f:59:b5:36:24:59:91:b6:
2a:2e:07:a3:1f:df:32:31:65:f4:eb:7d:7d:d4:39:04:40:9d:
60:44:ba:ae:06:5c:3d:d4:f8:fb:35:94:74:14:8a:ba:a7:60:
f3:0f:7a:55:ce:ae:36:65:a1:0b:00:80:f2:ab:a8:44:e1:3e:
94:f0:7d:df:05:54:84:f8:8e:b4:7e:14:3e:f8:e2:7f:53:b1:
6c:e6:d0:10:f2:99:e8:a1:a0:82:e0:4e:6b:0f:d2:e1:0c:48:
cf:a1:66:5b:f1:fd:d7:dc:1c:e9:1b:c7:fb:c8:c9:78:98:ad:
be:15:f3:bb:23:0e:d5:af:31:18:fd:ae:5e:37:ac:7b:b7:4d:
98:42:40:98:b3:60:02:e1:8e:b8:21:d3:68:f1:31:16:ad:96:
2a:51:d1:c7:06:ad:16:97:10:fe:3d:ae:58:d1:a5:db:ac:aa:
05:9e:82:74:90:bf:7a:7b:93:40:4c:2c:dd:99:ee:be:08:b0:
e6:cf:a0:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:00:42 2025 by rpki-client