Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A8376402CCE711EFADE34991762E951A.roa
File: A8376402CCE711EFADE34991762E951A.roa (raw, json)
Hash identifier: 7rrEb1ifHoyQ9ZUXsJFZmApFVE1qt8YV/Q88gaU85rY=
Subject key identifier: 44:B4:89:84:C7:FA:98:9A:9D:35:61:90:4D:A1:C6:88:2C:E8:31:5C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FBDD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A8376402CCE711EFADE34991762E951A.roa
Signing time: Tue 07 Jan 2025 11:08:00 +0000
ROA not before: Tue 07 Jan 2025 11:07:57 +0000
ROA not after: Sat 13 Dec 2025 11:07:57 +0000
asID: 984
IP address blocks: 156.235.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64477 (0xfbdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 11:07:57 2025 GMT
Not After : Dec 13 11:07:57 2025 GMT
Subject: CN=677d0b10-f357
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:3a:1f:dd:07:25:3b:15:ec:32:45:16:45:6a:
33:d3:bc:84:f5:69:68:51:d0:4a:18:0d:4c:de:68:
f2:79:4c:bb:80:e4:3c:b6:09:98:57:f2:b4:70:a8:
8e:6e:fb:f3:ad:c8:0d:88:ed:f7:fb:c9:6d:33:46:
0f:05:a7:58:16:b4:38:fc:f3:70:ec:66:5d:15:a0:
86:4e:35:d4:ae:7e:a6:81:e7:38:d4:d3:48:fd:04:
b2:2f:d4:7a:b5:a7:2d:bd:c5:82:e1:d0:ae:64:5c:
46:44:24:ac:c9:23:b6:f0:dd:04:97:a9:1b:3a:48:
e2:67:8d:d9:6c:5a:2c:fb:b7:c0:a0:c0:83:e8:f9:
91:d9:1b:9a:48:74:1d:95:13:26:ed:47:e1:9d:4d:
4e:ac:09:f4:ef:60:05:c9:11:1c:68:6d:1a:7c:71:
a7:6a:72:13:ac:59:39:dc:7d:79:0d:a4:54:a3:e0:
25:99:1a:ff:4f:08:fc:7d:7f:bb:c4:ff:29:d6:6f:
14:01:b7:e2:87:c8:f4:52:bd:43:d9:7e:32:70:d6:
b4:aa:88:bd:d8:63:1c:46:45:7d:04:f4:3d:3c:09:
b3:f2:76:00:39:cb:cf:47:3a:9c:48:af:36:58:9a:
47:47:3a:72:6f:52:52:c9:42:ec:4b:51:a3:59:99:
6e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:B4:89:84:C7:FA:98:9A:9D:35:61:90:4D:A1:C6:88:2C:E8:31:5C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A8376402CCE711EFADE34991762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.235.76.0/24
Signature Algorithm: sha256WithRSAEncryption
83:e9:25:29:37:54:c1:ce:57:59:28:4f:bd:bd:90:65:4b:85:
f5:89:77:76:bd:57:53:49:b8:56:10:ae:3d:79:e0:14:b6:bb:
14:f3:1d:ab:a2:79:e5:f5:16:97:ce:46:f0:87:73:74:db:a7:
08:4a:ce:11:07:07:b3:0c:1c:94:d8:37:9c:65:64:20:07:00:
78:c3:e6:ce:05:f0:3f:99:f1:e1:ab:88:4c:34:cb:2a:c4:1f:
da:06:7a:28:7e:75:8c:c9:d7:01:04:39:34:cd:e7:73:04:87:
37:09:b9:11:15:85:f2:a4:41:56:dd:5e:ad:c6:dd:10:b0:46:
9d:2a:53:62:69:25:87:62:73:7a:44:c5:81:9e:c0:fd:a6:ed:
bc:78:52:a0:f0:0a:12:81:9f:65:50:df:83:9c:44:35:ad:e9:
f0:fb:ba:02:a6:49:1a:c3:40:60:92:da:f8:42:bf:a4:0e:22:
7a:51:89:a8:27:cf:81:36:74:4e:5a:07:1f:cf:65:ff:84:84:
c1:66:78:11:67:c7:01:25:22:4e:71:31:4a:de:f8:59:f8:c3:
bb:49:32:f6:53:1f:c8:4c:4b:18:dc:b2:b9:9c:ec:d9:bb:85:
12:dd:b7:56:a7:a4:8b:b7:d0:83:fb:c7:d4:40:dd:25:4e:f3:
88:c4:6b:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:55:32 2025 by rpki-client