Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A22D72B0D17711EF805EB78B762E951A.roa
File: A22D72B0D17711EF805EB78B762E951A.roa (raw, json)
Hash identifier: P4G9I3lXU3HudlurI5d5ceWdEahRWeAK54jUG4t6hKY=
Subject key identifier: 4A:98:24:CA:6A:58:6D:CD:5C:71:12:61:8F:03:D0:C3:14:E4:1B:6B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01065C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A22D72B0D17711EF805EB78B762E951A.roa
Signing time: Mon 13 Jan 2025 06:28:42 +0000
ROA not before: Mon 13 Jan 2025 06:28:39 +0000
ROA not after: Thu 06 Feb 2025 06:28:39 +0000
asID: 60223
IP address blocks: 156.229.232.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Feb 2025 06:28:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67164 (0x1065c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 13 06:28:39 2025 GMT
Not After : Feb 6 06:28:39 2025 GMT
Subject: CN=6784b29a-fbe8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:02:bd:96:6e:f3:35:b1:df:3a:23:21:b8:fe:
6a:a7:c8:2c:9b:49:48:73:9d:51:eb:62:a8:8c:05:
71:75:98:ea:e4:3a:0a:d4:0f:b1:5e:eb:a2:17:f8:
2d:18:bc:4d:a3:83:3b:d5:eb:f0:2c:db:6f:14:6b:
48:10:32:96:b4:b7:e8:d3:b2:54:cb:1a:2c:57:99:
5d:61:0f:07:a1:71:fb:c4:f4:59:aa:56:dd:0e:64:
0b:88:49:3d:32:22:10:40:88:6a:53:8f:01:ba:88:
27:73:09:ed:3e:a4:8d:8e:ca:fa:75:b9:79:15:b7:
b6:26:a8:62:5d:c7:f0:46:d0:a0:53:ec:8e:ea:37:
b4:12:84:0b:1e:ff:09:9c:38:4e:c0:bf:12:64:64:
a8:0c:c8:c3:e8:21:c7:5b:a2:dc:c3:1c:10:67:5e:
e9:d9:29:52:ae:ab:29:56:b3:c7:6c:e9:d3:db:7f:
37:f4:5e:e1:50:c6:86:82:74:fe:1c:83:a0:ab:e6:
a8:4c:f6:2b:a6:0a:0b:d5:9b:84:6e:10:6a:ef:90:
fc:3f:97:79:0b:13:c8:4a:26:7b:cd:ac:cf:18:d8:
ae:d1:e9:eb:2d:00:3b:33:30:20:c3:23:bd:80:f5:
bd:24:2e:ba:af:05:ae:0a:b2:ce:5b:84:32:9b:da:
be:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:98:24:CA:6A:58:6D:CD:5C:71:12:61:8F:03:D0:C3:14:E4:1B:6B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A22D72B0D17711EF805EB78B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.232.0/22
Signature Algorithm: sha256WithRSAEncryption
62:f7:93:98:bb:0b:d2:0b:bb:d6:06:b1:5a:17:57:c1:94:66:
21:ed:a7:8f:b7:f6:79:6f:af:dc:86:90:a5:d8:c2:a8:4f:07:
e6:7f:82:77:05:10:f7:a0:57:31:41:3b:32:c4:5f:1b:33:40:
3c:61:d0:d9:94:81:44:ab:ab:25:7a:57:2f:c5:a9:f7:7f:fa:
86:72:24:b1:35:0e:35:1e:6b:ba:46:aa:47:2e:77:e1:bc:ac:
6b:6f:92:31:5c:47:79:52:74:6b:1d:52:df:9d:2c:de:3b:f7:
95:37:67:94:37:41:3e:95:87:0e:5f:65:cb:68:41:80:ee:28:
00:ae:75:13:19:2a:e0:22:9e:03:d3:2f:28:e4:3f:c9:ee:36:
36:c4:52:8b:7e:54:b0:3a:51:4b:b6:75:58:3e:6b:e0:95:4b:
cf:cc:00:cf:20:60:e3:1f:e3:99:88:34:ca:7c:fa:c1:72:87:
e9:14:ac:8c:60:ff:a0:fd:d8:d3:45:72:29:33:23:8b:0b:e1:
3b:bb:32:b8:21:3a:ce:5c:53:2c:bc:14:f6:e3:c0:c9:39:06:
59:e2:88:59:4c:9e:91:7c:07:5d:97:09:c5:62:e4:2f:aa:11:
6b:89:9b:33:d9:c8:3e:10:59:c6:f7:43:05:00:3e:bb:1e:11:
ee:84:0f:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:45:45 2025 by rpki-client