Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B32654B2C97311EF8785569B762E951A.roa
File: B32654B2C97311EF8785569B762E951A.roa (raw, json)
Hash identifier: ij8S9wzRbYR/mlZNaiWFcOSXQupwSNeQeEavcXWtMcs=
Subject key identifier: 29:70:B0:BA:AB:C2:5D:A1:C1:12:26:B0:36:AD:B0:F4:E2:40:D0:68
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F4CF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B32654B2C97311EF8785569B762E951A.roa
Signing time: Fri 03 Jan 2025 01:40:24 +0000
ROA not before: Fri 03 Jan 2025 01:40:20 +0000
ROA not after: Sat 13 Dec 2025 01:40:20 +0000
asID: 984
IP address blocks: 156.227.89.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62671 (0xf4cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 3 01:40:20 2025 GMT
Not After : Dec 13 01:40:20 2025 GMT
Subject: CN=67774008-4924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c1:d6:0a:bb:2f:bb:45:f4:3a:17:15:3c:59:
08:bf:a2:b8:c2:5c:09:18:08:93:56:83:46:68:80:
f3:4e:ea:c3:bb:ee:4c:f5:11:ac:48:9d:72:af:a8:
2b:b3:87:23:61:64:22:71:53:c3:63:6a:30:b7:b7:
4e:b8:92:9d:63:18:36:d6:77:e4:9b:d9:47:ea:6d:
64:35:71:e6:fd:0d:f1:59:c0:c8:ed:6c:89:2d:b6:
42:b4:ea:59:a3:08:d8:0a:3a:c6:40:4c:06:67:59:
16:80:10:9f:3e:6b:bd:8c:e4:2e:d6:f6:2e:28:de:
34:13:33:6b:03:50:42:d2:fc:f8:bd:ae:3b:df:c0:
7c:e3:9f:e8:f0:d6:7d:a3:67:fa:65:fa:06:03:30:
6d:95:3e:cb:d5:39:04:cd:73:c2:eb:06:29:2e:78:
70:e6:44:89:6b:38:17:4e:3e:c1:42:64:ce:bf:ea:
57:be:3b:15:42:56:19:78:32:ec:53:19:da:19:36:
e1:00:02:6b:ab:a9:8b:49:98:38:e9:aa:ec:60:a6:
a9:20:f9:68:a3:71:f1:a1:bd:bb:6b:2c:ec:a1:c8:
a7:eb:92:da:ab:e6:d0:70:50:da:18:73:53:20:8e:
6a:c4:cf:30:ea:ee:94:12:ed:2c:f1:a2:7f:55:77:
e9:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:70:B0:BA:AB:C2:5D:A1:C1:12:26:B0:36:AD:B0:F4:E2:40:D0:68
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B32654B2C97311EF8785569B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.89.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:9c:7d:82:f4:f9:34:a2:d6:2c:03:63:48:33:52:a4:3e:46:
7c:83:2c:94:8b:09:aa:c7:cd:8a:c6:de:2c:d1:1d:c8:99:a1:
e8:f3:79:da:1e:52:d6:a7:df:82:d2:ed:79:69:6b:13:4e:7d:
e1:3f:ad:ad:be:09:88:e5:df:c5:86:bf:46:33:c8:e6:b6:7e:
f9:6b:36:28:df:07:49:a1:06:a4:21:de:cb:ca:0d:bc:da:35:
2f:75:de:28:6a:c6:03:3c:cd:0a:65:e6:2c:2d:64:17:6c:4a:
f4:6d:d6:33:22:e2:e1:96:de:4c:7c:73:e7:72:de:09:2d:16:
e4:be:18:b4:01:0b:fc:ce:83:be:94:38:1d:46:21:d6:0e:8c:
ba:1d:19:bb:75:e7:42:a0:fd:e1:4b:54:37:e6:30:a6:cc:25:
76:8c:d0:d5:46:e2:9a:72:87:30:b2:b4:0b:32:29:01:a8:45:
50:e7:5d:58:65:ac:5f:7d:23:ff:11:f1:d6:0e:2d:e2:c2:e5:
28:d9:d7:d8:0b:6d:4d:66:65:f0:f7:8d:6d:fc:9d:94:6e:66:
c4:ea:d1:0b:30:29:a6:84:2a:28:82:8d:fd:13:f3:a3:6d:ae:
89:87:1b:01:f7:e3:03:3b:03:24:8b:98:9a:e1:bf:d3:73:6a:
35:51:5e:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:44:01 2025 by rpki-client