Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A8E87116C28311EFB846378A762E951A.roa
File: A8E87116C28311EFB846378A762E951A.roa (raw, json)
Hash identifier: 7LbhMlNIAs9a5PSOGph4ApaAATqKL9kvcXer4KoBEWg=
Subject key identifier: F4:EA:5C:FC:CC:8B:E1:7A:0B:CF:98:15:E6:6C:0B:9A:23:7D:DE:55
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E909
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A8E87116C28311EFB846378A762E951A.roa
Signing time: Wed 25 Dec 2024 05:47:00 +0000
ROA not before: Wed 25 Dec 2024 05:46:57 +0000
ROA not after: Wed 10 Dec 2025 05:46:57 +0000
asID: 984
IP address blocks: 156.228.36.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59657 (0xe909)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 25 05:46:57 2024 GMT
Not After : Dec 10 05:46:57 2025 GMT
Subject: CN=676b9c54-5341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:1f:15:41:57:0f:3c:1c:ba:ca:8b:f5:ee:28:
27:1b:4c:ff:55:ec:db:c5:11:8e:9f:7f:50:11:a3:
bb:27:78:87:41:8c:cb:2e:b8:1b:4a:55:6a:b9:1f:
e3:62:3c:af:ef:78:56:d1:3b:8d:14:15:26:b6:82:
29:5b:c8:22:0c:56:48:41:44:e4:1b:ae:a0:73:3f:
97:36:66:b6:e3:b9:26:54:4c:8d:32:95:d1:b2:a4:
b4:8b:39:58:1f:80:3f:a2:68:53:1d:98:3f:28:49:
b7:f3:30:a7:d0:cf:07:71:d1:3c:ea:a7:ec:3a:d9:
fd:96:7a:33:d1:dc:38:00:f1:79:64:a2:05:29:94:
d5:e4:a3:0b:92:4b:50:6e:73:3c:43:1b:cd:5f:aa:
7c:26:d4:4e:a3:55:6e:5d:45:da:c2:f6:ec:68:e4:
86:4e:9d:df:e0:98:a5:f0:71:57:c5:54:14:e6:b3:
28:a3:99:37:a6:1a:49:95:ce:71:40:f4:6a:6b:8b:
80:14:cf:ec:8e:3f:c0:cd:d0:a3:65:17:27:6b:88:
cb:74:15:95:89:f2:00:d3:6a:d2:ac:f2:03:90:58:
b2:f2:58:98:39:3e:81:62:ee:28:ee:60:92:fc:75:
8e:51:e3:5f:bc:d9:fd:bf:d5:47:88:c5:54:a9:77:
61:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:EA:5C:FC:CC:8B:E1:7A:0B:CF:98:15:E6:6C:0B:9A:23:7D:DE:55
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A8E87116C28311EFB846378A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.36.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:61:9b:31:e9:94:4c:71:bc:28:71:9a:ca:56:bb:97:09:ca:
a6:d7:f1:c5:b0:5d:e6:d8:81:69:16:33:6e:83:be:ed:74:4a:
1d:0b:a2:2a:c1:e7:36:b4:87:b3:c4:af:33:ae:70:7f:34:40:
38:f3:c9:3c:b6:3d:8a:86:83:43:f5:62:67:d0:f5:97:f9:9b:
d0:44:2f:54:43:7b:2b:b1:3f:39:a6:46:0c:fe:f9:18:9e:c6:
92:6b:72:61:5b:f1:c1:5b:5a:df:60:ef:24:69:13:0f:6e:b2:
69:75:7a:8e:70:ec:cc:3a:4a:88:29:76:10:f0:2d:80:ff:ec:
23:6e:e8:09:ad:b8:63:c6:70:93:01:a0:a7:f4:dd:1a:c0:fa:
8e:f7:d5:32:c3:cc:47:8c:be:b1:7c:dd:18:34:a0:e5:e0:60:
93:cf:76:93:06:87:d1:27:89:6a:1f:ab:f4:4e:2e:79:fe:47:
cd:d0:d4:18:bc:f7:16:54:c4:a0:7e:79:cf:45:97:a8:b8:ef:
76:4a:ec:f7:85:74:11:2a:71:4b:90:cd:17:34:98:40:ac:e4:
a5:a8:9b:2d:96:3c:e3:38:1c:54:2e:d5:92:28:fc:21:44:76:
4b:c5:bb:81:c7:28:01:d9:ae:77:f4:bd:fc:0f:de:a4:57:fb:
3d:1a:77:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:59:00 2025 by rpki-client