Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B2E939EECDA411EFBB138A4D762E951A.roa
File: B2E939EECDA411EFBB138A4D762E951A.roa (raw, json)
Hash identifier: e6Gv0KMfgEBUSACrN8RXKdvivOTfCWnNk+vXub/OOPs=
Subject key identifier: CC:52:32:13:ED:55:04:14:16:F5:0A:79:2A:D9:30:80:D8:24:8F:03
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010115
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B2E939EECDA411EFBB138A4D762E951A.roa
Signing time: Wed 08 Jan 2025 09:41:13 +0000
ROA not before: Wed 08 Jan 2025 09:41:09 +0000
ROA not after: Mon 13 Dec 2027 09:41:09 +0000
asID: 17561
IP address blocks: 156.253.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65813 (0x10115)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 8 09:41:09 2025 GMT
Not After : Dec 13 09:41:09 2027 GMT
Subject: CN=677e4839-aefc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8c:91:f1:3f:d7:50:2f:d7:ff:9d:55:b7:74:
46:9c:11:63:a7:4f:39:47:d2:3b:6c:91:6f:d2:55:
17:5f:e0:f8:09:10:ca:ea:8d:26:09:cf:ed:f1:eb:
91:7b:18:18:b3:66:b9:54:c2:88:04:bc:e7:09:31:
15:41:02:45:82:c6:bd:0f:dc:2d:98:57:79:99:b1:
46:c0:21:5c:3f:f4:53:22:56:5e:0b:c6:f0:6d:26:
f2:71:c1:4b:e2:d3:05:4d:f3:13:81:4e:9a:e2:53:
cd:52:36:12:b5:5c:79:39:bd:ac:84:32:77:7c:42:
17:15:a7:e9:72:f1:ea:4d:5e:a1:e9:07:c1:cc:73:
b8:af:44:b3:1d:28:ea:81:ef:09:19:7e:a1:6b:28:
25:35:f6:20:22:27:c3:3f:9d:94:0e:f9:3b:a9:8a:
ad:94:ad:2e:22:d5:9a:85:0d:bd:aa:bc:91:7b:7d:
0f:66:db:7c:b9:c9:79:b6:4e:fa:11:49:f6:0b:33:
f9:cb:ff:40:09:62:da:59:6d:8a:f9:5c:b7:c5:29:
08:2b:7d:d4:01:bb:a4:ee:df:12:27:7e:3f:ea:d3:
7e:37:ce:64:74:53:57:0d:6e:7e:78:6a:98:24:ff:
14:af:c7:5b:19:30:28:65:3a:4b:f5:5a:d5:79:69:
98:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:52:32:13:ED:55:04:14:16:F5:0A:79:2A:D9:30:80:D8:24:8F:03
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B2E939EECDA411EFBB138A4D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.253.55.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:9d:25:91:6c:24:ad:14:e3:a6:dc:3d:40:9e:f1:1d:7a:91:
1c:ae:b3:24:5a:a9:c0:7e:00:fc:07:3f:a0:c9:1c:fe:94:c7:
2b:5c:b7:f8:18:d5:b8:8e:e5:f5:cd:18:71:0a:2d:b4:ee:1e:
29:e2:97:85:bc:57:4b:3d:6c:74:fa:53:0e:80:b3:9f:65:39:
d9:1f:78:bf:68:4b:54:37:89:38:14:b9:4c:43:30:e8:34:a1:
28:ee:96:4a:ea:75:65:a0:1a:8d:94:0e:ce:39:12:a6:71:ba:
06:13:4d:b4:61:7e:2a:43:57:2c:a2:e5:4c:cf:60:00:00:34:
eb:3b:0f:5f:f9:ff:15:95:f9:d5:30:aa:ef:0c:ed:ff:f1:c8:
1a:6e:13:79:44:b0:8f:82:7b:e3:d4:dc:13:8e:59:75:b3:a0:
59:db:04:37:98:d0:38:19:93:89:e0:49:62:0b:6b:fc:6d:c7:
fe:d4:4a:18:ad:27:b9:a1:86:97:8b:18:38:8d:99:04:5e:ef:
ab:ca:cb:d8:e4:d8:a0:ec:8f:bc:69:da:09:0d:4d:29:b4:b9:
c5:6f:c2:9c:76:2c:9a:7f:3c:74:66:de:16:9c:eb:1b:e0:de:
e8:82:00:3b:db:f3:98:f0:77:e3:94:09:95:ef:2b:04:bd:81:
a6:6c:ce:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:52:43 2025 by rpki-client