Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9EB6BBC4CCC611EFA9CCB0BD762E951A.roa
File: 9EB6BBC4CCC611EFA9CCB0BD762E951A.roa (raw, json)
Hash identifier: e/iL+1BQkcdslfR0BazR3GFFAz5DK67KLuxf9CPRROc=
Subject key identifier: 16:FD:1A:60:91:93:F8:0C:53:82:D8:71:52:EC:AD:A3:D3:BE:1E:B7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FA5A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9EB6BBC4CCC611EFA9CCB0BD762E951A.roa
Signing time: Tue 07 Jan 2025 07:11:31 +0000
ROA not before: Tue 07 Jan 2025 07:11:27 +0000
ROA not after: Wed 12 Feb 2025 07:11:27 +0000
asID: 64267
IP address blocks: 156.227.11.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64090 (0xfa5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 07:11:27 2025 GMT
Not After : Feb 12 07:11:27 2025 GMT
Subject: CN=677cd3a3-1b36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f3:40:0b:1f:e7:3b:6a:15:37:d5:2e:2f:eb:
12:5b:70:bb:94:ea:2b:82:6c:83:8a:c0:d0:a4:9a:
90:1f:ce:8a:8e:e1:c3:7c:61:a5:6c:a4:21:ce:98:
a5:f6:d3:5a:9e:6a:1c:34:84:2d:b2:44:07:98:1e:
da:6c:2e:7b:c5:77:8e:bd:ce:58:ec:75:56:f1:35:
af:cf:f6:30:5f:34:96:4a:d5:34:5e:d6:16:7a:09:
3e:2d:44:19:c4:30:73:79:96:a0:68:50:42:37:b6:
17:94:29:3b:ff:05:87:e5:e3:2e:7e:d6:86:a2:a9:
64:26:45:aa:d8:bf:c8:07:2d:e5:fe:8a:2d:bf:72:
11:02:92:51:40:73:26:3f:03:14:dd:35:4c:3c:f9:
8f:25:55:69:7c:63:c8:1a:f7:10:d2:a6:06:19:03:
ba:c3:47:3e:42:97:97:36:b2:28:da:70:eb:8d:24:
3e:0f:c7:63:04:b3:90:d5:d7:a1:39:50:9f:1e:65:
5e:f4:a7:bd:b1:df:1e:98:17:1f:59:bd:6f:9b:8d:
4a:25:06:a6:6e:68:b6:e7:d5:7a:71:7d:c1:28:bd:
d2:f5:ac:6d:64:31:2e:e2:fd:b5:35:a8:e9:bb:54:
e8:3e:5f:bd:43:a0:f3:11:f4:20:5b:2f:28:29:8a:
a8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:FD:1A:60:91:93:F8:0C:53:82:D8:71:52:EC:AD:A3:D3:BE:1E:B7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9EB6BBC4CCC611EFA9CCB0BD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.11.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:6a:55:db:23:d6:44:6e:b2:39:79:98:39:e6:d4:4b:a5:9e:
b8:69:32:be:42:ea:9b:55:e1:f1:90:e2:c4:28:28:32:d7:3a:
5e:17:d2:8b:7d:7b:3e:ea:f9:d0:cf:bd:9c:b6:cf:f5:8f:a7:
2a:be:af:e0:b6:5d:cc:99:0b:77:a9:92:e4:6b:f4:19:3a:db:
22:ca:3e:74:d7:76:cf:b4:8a:f7:f5:c9:7c:4a:0d:8d:56:eb:
2f:35:52:bd:81:6f:b8:a5:c1:5f:41:3f:a7:09:a8:fe:6c:e9:
ba:ff:20:e8:97:5a:a8:69:a4:b1:d6:b4:97:5b:27:b5:ca:cc:
de:5b:87:2d:4d:79:b9:78:84:51:65:83:d4:98:c7:45:45:79:
65:19:07:cf:95:62:2e:bf:9e:d8:bb:5b:9a:a8:dc:0c:dd:b4:
0e:ee:20:da:76:80:0e:cd:a3:07:4f:ae:a0:cc:d1:c0:66:4d:
51:f3:97:4d:c7:fa:fd:4e:91:24:ef:a3:68:4d:ee:00:f7:92:
3e:36:37:0a:64:dc:b6:36:e2:41:82:a0:19:a2:91:0d:01:46:
8a:fd:43:54:26:de:30:dc:b0:2a:a0:17:ba:0a:8b:a7:77:1e:
0c:f2:f0:6f:0f:0e:95:43:fa:4c:71:bd:ea:64:4e:14:16:00:
75:60:06:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:54:58 2025 by rpki-client