Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/932745C8D30411EF958AC567762E951A.roa
File: 932745C8D30411EF958AC567762E951A.roa (raw, json)
Hash identifier: rlyv/CU96U7fdEkMWbN08FfMOp7qfhRpGvbk4vDbnwg=
Subject key identifier: E9:51:AE:12:B5:BB:D8:A8:32:41:F0:BB:51:97:71:3E:2A:1F:71:86
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010805
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/932745C8D30411EF958AC567762E951A.roa
Signing time: Wed 15 Jan 2025 05:50:07 +0000
ROA not before: Wed 15 Jan 2025 05:50:04 +0000
ROA not after: Sat 03 Jan 2026 05:50:04 +0000
asID: 984
IP address blocks: 156.254.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67589 (0x10805)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 15 05:50:04 2025 GMT
Not After : Jan 3 05:50:04 2026 GMT
Subject: CN=67874c8f-7c6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d6:0b:0a:68:54:4f:02:0c:7f:da:bf:96:47:
4c:30:79:15:f9:5a:7c:9e:2c:e6:ec:10:69:f7:31:
6f:70:a2:e3:6d:85:9b:2d:67:62:fb:d0:be:cf:a6:
fb:0f:2d:c5:e5:6b:72:97:26:13:1a:22:3f:f4:fe:
19:dc:f8:18:ec:0d:6b:bd:02:6f:39:6a:72:ef:29:
f4:d5:5b:d6:4e:5f:ed:eb:dc:c5:51:17:8d:ec:ac:
52:77:9c:68:52:c1:5d:44:55:d4:ce:28:23:27:0d:
cc:93:df:4b:72:f3:ed:4e:0c:74:c2:ab:52:92:76:
8b:26:04:4c:39:64:fb:a2:56:49:cf:72:b6:71:b6:
34:3f:59:11:c9:84:6a:5b:6c:73:fc:b7:8f:e6:29:
bb:03:91:d7:b4:9d:88:f9:73:21:4f:ce:41:4b:6d:
de:0f:d1:b9:2c:0b:fc:93:1f:53:73:f7:a1:e1:9b:
fb:cf:8c:4c:46:a6:ed:aa:47:cd:bd:de:05:01:56:
5d:5f:11:bb:23:16:9e:46:16:7f:76:35:d5:b3:de:
e8:c4:bf:23:63:17:2f:73:40:28:13:24:72:e5:2c:
83:4a:5f:08:74:6d:6f:49:41:cf:81:0f:b5:b9:f7:
47:b5:b0:52:17:3e:67:5e:e9:ac:78:17:68:9f:8b:
d2:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:51:AE:12:B5:BB:D8:A8:32:41:F0:BB:51:97:71:3E:2A:1F:71:86
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/932745C8D30411EF958AC567762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.254.45.0/24
Signature Algorithm: sha256WithRSAEncryption
69:be:65:29:f2:f3:01:7e:ad:33:06:c3:ac:3c:7d:24:5f:76:
c5:20:b8:18:01:2c:e6:b1:18:41:38:b3:91:5c:88:f0:ae:cc:
06:4b:b7:19:4b:df:3a:00:b7:c8:2b:00:2c:c8:04:07:ce:58:
d0:f8:7c:e6:01:86:3b:1a:83:72:d8:22:9e:a1:e0:04:f4:9f:
0e:b1:46:a9:b6:7d:1a:f3:7f:0b:85:48:8f:46:cd:7e:f4:7a:
50:77:4a:ee:fe:6c:3a:b7:34:66:92:8b:2a:6c:cd:f9:45:e7:
4f:62:d7:a8:80:9c:ed:de:cc:59:0f:c3:26:78:b9:d2:f8:68:
5a:55:40:0b:8c:a5:2b:a7:ac:86:4e:03:30:5d:0d:a3:d4:6c:
2b:33:23:e6:43:d7:08:95:db:f3:75:f5:13:89:6b:b8:28:fb:
3a:31:4c:71:47:ec:84:97:c9:37:59:be:65:d3:e1:f3:7d:13:
ed:16:5a:31:f3:1d:b0:01:28:4f:4d:04:ef:c7:88:00:c6:21:
51:96:99:db:08:0e:56:9d:bb:e7:3f:75:b0:0f:da:82:50:60:
73:26:36:54:70:2f:c1:06:4c:6f:9e:ac:15:c0:01:83:28:a7:
d6:33:0f:68:0d:ba:c1:16:bf:cf:17:0e:20:54:d6:b8:87:16:
e8:00:5c:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:55:13 2025 by rpki-client