Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/92024602C34611EFAD4DF65E762E951A.roa
File: 92024602C34611EFAD4DF65E762E951A.roa (raw, json)
Hash identifier: 59vsJppYFkpVZ4J3YZibwbzWCSGcqwcDXPEHgditUmk=
Subject key identifier: 91:9C:C7:CC:9D:3D:3A:1D:1F:45:6C:4E:51:1B:D4:2E:36:73:28:E3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EC0B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/92024602C34611EFAD4DF65E762E951A.roa
Signing time: Thu 26 Dec 2024 05:02:14 +0000
ROA not before: Thu 26 Dec 2024 05:02:10 +0000
ROA not after: Wed 10 Dec 2025 05:02:10 +0000
asID: 984
IP address blocks: 156.245.171.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60427 (0xec0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 05:02:10 2024 GMT
Not After : Dec 10 05:02:10 2025 GMT
Subject: CN=676ce356-eabb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c2:d4:f7:c1:82:2c:16:3e:52:a0:64:26:41:
b2:3b:94:45:b4:f9:ac:56:c3:4b:66:e3:b7:c1:fe:
d9:b6:fe:b4:cb:d0:a7:dc:1e:0b:47:0d:19:6f:ea:
21:97:a1:df:f4:ef:91:51:66:be:7f:bc:4f:f6:ba:
32:db:de:96:23:8d:69:e1:ba:51:67:e4:de:b1:0c:
64:6f:c6:10:65:04:a9:9c:5e:a6:ae:2d:05:d4:3d:
6f:16:e3:ee:75:a8:a8:30:35:56:28:14:60:ef:a7:
92:f2:03:f3:a7:4f:ca:85:fe:ba:01:8d:9c:ed:82:
98:b7:c6:c7:73:63:69:a6:18:54:5f:f5:51:63:13:
8f:51:91:89:a2:f5:1e:23:e4:f6:a6:7d:fd:b9:a1:
be:bd:c5:50:d6:c0:5d:48:21:55:63:a2:83:d1:d3:
04:05:0c:16:33:21:a0:87:a1:7f:0b:d2:a5:81:cc:
89:e7:5b:d6:50:d9:85:cf:34:a0:c0:6f:10:63:51:
7f:8a:47:83:b6:0f:ec:49:60:16:63:e4:35:66:01:
a9:1a:f5:69:88:bf:aa:27:df:44:31:15:5e:7f:45:
4c:3a:e9:b7:da:dc:fc:5c:f9:1e:12:d0:3e:ed:db:
d0:d3:1c:4b:b2:fa:39:15:a4:37:fe:d2:85:be:70:
80:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:9C:C7:CC:9D:3D:3A:1D:1F:45:6C:4E:51:1B:D4:2E:36:73:28:E3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/92024602C34611EFAD4DF65E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.171.0/24
Signature Algorithm: sha256WithRSAEncryption
62:c5:db:40:94:8b:02:41:b4:50:ac:c6:01:77:71:59:98:58:
70:c3:ad:f6:59:ca:ee:25:c6:ed:33:69:10:21:c6:3a:ac:6d:
59:54:ff:31:6e:1c:36:3a:60:cb:48:93:4f:d8:84:02:a8:18:
63:31:60:09:9c:07:a1:26:9b:0b:40:00:d5:61:d4:2a:33:22:
51:98:dd:75:e8:ac:0b:c1:95:fd:dc:05:81:a8:db:2a:fc:49:
f9:6f:ac:6a:62:3f:06:12:40:fd:62:f0:49:51:5c:76:c3:8d:
3b:b1:68:8b:96:7a:c7:b5:46:23:85:8b:e1:6c:46:42:95:73:
91:14:09:31:de:11:ee:cb:1b:07:6c:90:2e:0a:6b:48:ec:14:
a0:f8:b6:b0:9f:aa:0a:e9:09:0b:02:39:98:14:5e:f9:0b:8e:
c4:2a:75:0c:08:60:8a:aa:3f:cf:9a:75:07:8e:45:28:22:96:
47:c8:71:0c:0a:ef:17:8c:ee:4e:14:bc:11:07:d5:a8:c3:28:
cf:41:08:14:ee:c0:cc:f4:0e:f4:29:2d:a4:95:41:d7:a5:8c:
63:0a:34:b3:e2:96:a8:26:6b:0a:4f:fa:c1:c0:4f:65:22:f5:
95:af:e6:2e:25:fb:79:0e:25:55:78:03:38:ee:22:bd:9c:af:
76:fb:84:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:58:41 2025 by rpki-client