Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B4988370CD5A11EF89593D63762E951A.roa
File: B4988370CD5A11EF89593D63762E951A.roa (raw, json)
Hash identifier: RXcggx5sFnrtda1TIT7Lf3hbpHS6/nBDZx8SnKE05D4=
Subject key identifier: EA:E4:4D:B9:C1:75:6B:D7:AA:CF:B9:86:69:40:4B:BF:82:4A:3E:BD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FF07
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B4988370CD5A11EF89593D63762E951A.roa
Signing time: Wed 08 Jan 2025 00:51:33 +0000
ROA not before: Wed 08 Jan 2025 00:00:30 +0000
ROA not after: Sat 13 Dec 2025 00:00:30 +0000
asID: 984
IP address blocks: 156.247.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65287 (0xff07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 8 00:00:30 2025 GMT
Not After : Dec 13 00:00:30 2025 GMT
Subject: CN=677dcc15-3436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:12:3c:58:03:67:fe:89:ed:ad:ee:36:2a:3f:
3d:97:3d:06:56:49:e9:f6:a5:74:00:48:78:16:fc:
68:73:1f:21:80:5b:9c:c0:8d:8a:22:1f:66:c0:6b:
3b:b0:e1:81:77:26:eb:37:22:b1:77:e5:de:ba:5b:
5c:b2:07:66:57:d7:c2:2f:7d:56:f8:7e:38:d8:70:
50:f8:17:8a:31:34:a9:97:7e:2c:2a:a5:40:1b:3a:
68:01:4b:3d:4b:40:ed:be:bd:e1:09:53:55:34:a9:
3a:2d:ad:9a:63:9e:ee:75:2f:a7:26:81:2a:32:49:
6c:f1:1a:04:06:49:65:7c:c5:03:7d:5a:f0:4a:21:
74:7a:1b:eb:bc:95:81:ae:1f:13:47:d5:c4:7c:c6:
c3:4f:08:64:0c:3b:46:e1:55:d2:ad:eb:f4:1f:49:
2f:fc:88:fe:6c:75:eb:69:6a:d7:26:ba:a0:b2:fd:
dd:fc:44:24:68:0e:fa:7c:ad:1f:1c:6f:28:d3:38:
6d:d8:8f:2c:5f:f1:06:1d:98:06:c8:df:e2:fa:d9:
dd:04:f8:1f:58:29:d6:20:e2:70:06:89:4e:82:27:
b0:9b:9e:eb:ce:ae:45:de:c9:43:bb:6c:32:9c:94:
82:42:8c:5b:0e:47:10:9e:3b:57:c1:52:5a:c9:ea:
83:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:E4:4D:B9:C1:75:6B:D7:AA:CF:B9:86:69:40:4B:BF:82:4A:3E:BD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B4988370CD5A11EF89593D63762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.76.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:8f:f8:3a:0e:cc:e7:0e:d5:f7:71:2a:7d:e1:4b:2a:08:87:
d6:41:63:c4:2c:e7:82:61:20:e2:a0:37:83:dc:33:07:af:22:
98:8f:db:d5:fb:0f:59:71:c9:8b:f9:5a:35:f2:15:74:f1:47:
85:e1:8c:73:8d:5e:7d:84:e1:03:64:7c:9a:70:22:ac:bb:92:
ae:75:0b:d7:15:46:cf:0a:48:93:c4:42:1c:c2:75:61:10:76:
76:12:56:da:7f:52:03:f2:dd:32:f6:15:51:bc:e9:11:4f:00:
72:5b:c2:08:ed:85:a0:45:1d:5f:98:26:91:f8:ae:75:33:d9:
8d:c4:5e:3c:68:3f:fa:eb:35:08:57:68:58:77:6d:2b:56:c8:
81:26:be:91:e7:68:c5:1c:11:40:b0:81:9e:3c:da:c5:37:c4:
12:bf:1a:90:ac:57:28:64:d7:48:b7:e3:03:3d:b9:e5:fd:ae:
d8:9e:7a:c9:6c:2c:79:f1:5e:64:8b:73:92:b7:85:aa:ab:11:
a7:ee:3f:7f:54:4d:d2:a5:56:bd:bb:59:0b:ee:36:4a:0d:bb:
62:f8:3e:19:77:80:e8:99:fd:75:c1:60:9a:0c:e4:e1:a0:84:
cd:f5:27:c9:6f:5f:a5:10:42:87:35:f5:93:cb:17:1e:50:48:
16:29:2e:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:55:35 2025 by rpki-client