Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AB69C152CCFA11EFA5107286762E951A.roa
File: AB69C152CCFA11EFA5107286762E951A.roa (raw, json)
Hash identifier: sLSTIfHqD0m9/bSUueW7PzGBsYRrTMGJD0WS104pgzI=
Subject key identifier: A1:7C:AD:8E:1C:0A:A7:5F:65:F4:2E:30:9F:D4:23:E3:C4:3C:30:12
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FC3D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AB69C152CCFA11EFA5107286762E951A.roa
Signing time: Tue 07 Jan 2025 13:24:06 +0000
ROA not before: Tue 07 Jan 2025 13:24:02 +0000
ROA not after: Mon 13 Dec 2027 13:24:02 +0000
asID: 17561
IP address blocks: 156.238.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64573 (0xfc3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 13:24:02 2025 GMT
Not After : Dec 13 13:24:02 2027 GMT
Subject: CN=677d2af6-61a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:0c:e2:df:7e:4b:20:0b:a0:6f:c8:a8:81:45:
7b:bc:fd:ac:57:41:d2:ea:b4:53:a9:7f:05:4f:6f:
70:1c:59:fb:fe:e5:a9:00:47:0f:6e:fe:a2:53:50:
a1:c9:9b:4c:ce:1a:79:f7:e8:27:f7:f3:ab:f3:5c:
64:2f:13:e2:b3:af:4c:e4:5c:fd:8e:2a:aa:a0:52:
ca:4d:8d:40:18:64:7f:38:c5:53:be:6e:c6:d4:b6:
c8:75:3b:70:c3:e4:4d:76:8c:27:70:86:9b:67:c0:
86:1d:35:7f:92:36:37:3e:26:39:a0:d2:fe:73:91:
37:d4:d3:54:09:37:2e:1b:cd:99:77:47:eb:cf:9d:
b3:c4:b1:30:4c:ad:10:0a:30:8a:ea:a2:89:d9:0d:
09:70:01:e5:de:87:84:fc:7f:88:a0:d4:23:40:93:
61:55:c8:a1:d3:33:41:ac:e7:a7:71:ab:e3:11:0e:
48:db:1d:6c:2a:bc:8f:44:7b:cd:cc:75:46:46:9b:
54:6f:8f:37:87:8c:10:5d:c1:71:19:46:9b:e9:9d:
8b:7e:66:bd:2b:10:a6:ac:ef:6c:51:1b:fe:19:2f:
95:9c:cc:ca:26:c9:42:38:fa:c5:50:19:2e:7b:2a:
56:52:09:40:b6:34:04:0f:06:d2:cf:35:aa:ed:8f:
d4:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:7C:AD:8E:1C:0A:A7:5F:65:F4:2E:30:9F:D4:23:E3:C4:3C:30:12
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AB69C152CCFA11EFA5107286762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.24.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:3e:dc:08:2b:d0:cf:18:11:3d:9d:fc:bb:9c:35:26:ec:13:
11:16:05:c5:8a:d3:d5:2c:5c:28:9a:50:2b:5e:64:e8:a1:08:
37:d3:f3:21:6c:61:f4:0d:78:8b:1a:23:71:bc:9c:6d:a8:6c:
94:b9:7d:51:d6:1e:d9:11:f5:d9:9b:db:72:7d:44:f9:1c:fd:
fd:63:87:de:97:48:a5:23:33:2c:dd:a4:19:96:70:e9:cb:93:
5d:2c:1e:41:eb:21:18:f7:66:17:0c:03:7f:ed:2d:58:5a:b2:
8e:2b:4a:d5:8a:0a:42:30:0b:88:44:e4:3b:40:69:19:50:44:
07:19:dc:8c:95:3f:a1:f7:3d:10:1a:99:9e:1f:02:b3:af:02:
60:ad:36:ab:97:3d:5c:97:21:8c:26:96:9e:34:8c:36:4f:48:
75:a9:d4:8e:dc:57:d9:f3:a9:02:e8:a8:8f:a0:10:d9:bf:d9:
99:91:5f:7b:0a:69:5f:3e:52:67:f0:36:69:11:1e:0c:a2:fb:
2e:b4:05:a7:2f:8c:01:27:c8:bb:0c:c5:43:04:e8:a6:92:eb:
8d:9a:83:48:e2:a3:84:b1:1c:29:78:55:59:b2:ed:c5:2e:9e:
e7:ab:80:55:3d:88:a6:2b:2b:d2:55:aa:41:d8:aa:5a:9f:7e:
d2:fe:4b:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:49:42 2025 by rpki-client