Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B3C766F2C33F11EF9CBB05B4762E951A.roa
File: B3C766F2C33F11EF9CBB05B4762E951A.roa (raw, json)
Hash identifier: 4IUN0c5EhITIJWQijrO5nXf5nrrCVRp6mTeaW9Hgkgk=
Subject key identifier: 65:CD:0F:E1:A2:CA:95:B0:94:E4:1B:B3:D5:3C:A3:62:E9:B8:4A:BA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EBBB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B3C766F2C33F11EF9CBB05B4762E951A.roa
Signing time: Thu 26 Dec 2024 04:13:04 +0000
ROA not before: Thu 26 Dec 2024 04:13:00 +0000
ROA not after: Fri 10 Dec 2027 04:13:00 +0000
asID: 17561
IP address blocks: 156.244.217.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60347 (0xebbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 04:13:00 2024 GMT
Not After : Dec 10 04:13:00 2027 GMT
Subject: CN=676cd7d0-f0c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:57:e8:23:a1:6e:e0:40:8c:64:98:31:a9:46:
9c:00:52:f6:4b:ca:14:1c:4d:d3:24:5a:74:4b:9e:
b5:ac:7f:ca:90:06:bb:e9:ae:d9:cb:47:87:b1:99:
6d:08:5c:88:92:a3:54:13:45:d4:4f:ab:50:58:64:
a0:7b:2b:89:c7:91:1c:67:c6:5e:d2:11:c7:cf:2f:
a9:c0:0c:49:bf:93:c8:52:e0:a7:82:6f:07:f7:8f:
12:5b:fb:b8:60:33:76:a5:af:ad:18:d1:58:53:fc:
88:0e:d7:49:bc:70:5b:44:3e:6d:b5:d4:6b:ea:e1:
61:7d:53:1f:af:9f:84:b0:5d:d9:54:d5:e4:fc:c5:
a2:17:0c:c4:29:74:f6:6b:b4:10:bc:67:2a:e4:08:
9a:33:64:fc:a2:3f:b9:73:bb:3d:f9:5d:bb:85:0a:
34:73:75:a3:44:86:82:28:2b:cd:8e:30:14:aa:f0:
bc:d0:7c:ea:9d:d9:c3:5c:6f:78:0b:7d:7e:ae:20:
a5:5f:79:c2:55:1e:a2:47:4f:b5:51:7c:82:16:8f:
a4:e8:82:6c:1f:0f:9b:07:36:50:e8:54:64:20:ed:
37:94:82:6d:6f:7f:27:f3:16:19:48:65:1e:51:b4:
a5:83:32:a9:f0:ce:79:54:5b:75:75:9e:77:53:41:
98:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:CD:0F:E1:A2:CA:95:B0:94:E4:1B:B3:D5:3C:A3:62:E9:B8:4A:BA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B3C766F2C33F11EF9CBB05B4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.217.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:9b:de:44:df:b5:70:cd:37:7e:dd:71:28:20:1b:39:5c:f9:
f7:53:61:df:43:da:22:ad:a9:e1:e9:0c:6c:51:2f:0b:25:23:
60:5d:80:d2:83:98:de:52:05:59:e1:c4:e7:73:25:47:9f:25:
b2:d8:c4:51:35:e4:85:7b:7c:27:f8:78:f1:a0:f4:1d:8a:2d:
9e:40:48:ba:2e:99:99:60:0b:4d:f1:34:f7:c1:e7:bc:06:37:
8d:af:34:ca:af:a3:45:96:82:90:79:6a:7e:cb:c6:01:a5:5d:
37:fe:95:6b:b6:2e:af:8c:89:73:1a:cd:01:24:64:f8:12:5c:
6f:df:62:d0:a5:03:ed:51:25:94:76:54:58:fd:45:9b:61:b9:
ac:ac:e7:61:ba:59:f8:96:15:38:ed:72:59:b8:a5:e6:be:48:
ea:86:b9:a4:10:fa:9f:53:12:8e:af:f1:32:e5:21:c7:03:4c:
d0:8d:f8:a3:37:b9:b3:02:ab:e2:32:01:27:d1:81:54:4d:de:
42:c1:9f:8b:97:8f:62:63:64:94:85:06:e1:7d:42:a2:ed:bc:
3a:38:4e:ce:df:e8:7e:98:07:46:57:9a:a9:15:8c:35:e4:c9:
35:91:ef:ec:4e:b1:a5:67:8d:e6:00:63:89:c3:be:4b:71:1c:
19:f4:cb:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:54:09 2025 by rpki-client