Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B54F81AACCF711EF974B4175762E951A.roa
File: B54F81AACCF711EF974B4175762E951A.roa (raw, json)
Hash identifier: m4yv6PJKW2eMbYK3MYJjZ2ZUdVaYMMMxtuSQuMQ14j4=
Subject key identifier: 5B:5D:98:0D:74:10:AC:0B:53:D2:14:7B:AC:D0:B0:59:CE:6B:A9:8B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FC25
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B54F81AACCF711EF974B4175762E951A.roa
Signing time: Tue 07 Jan 2025 13:02:54 +0000
ROA not before: Tue 07 Jan 2025 13:02:50 +0000
ROA not after: Mon 13 Dec 2027 13:02:50 +0000
asID: 17561
IP address blocks: 156.236.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64549 (0xfc25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 13:02:50 2025 GMT
Not After : Dec 13 13:02:50 2027 GMT
Subject: CN=677d25fe-a022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:09:5c:ff:b8:a7:df:da:cc:4b:87:45:46:65:
04:88:e6:bb:77:35:97:80:a9:97:02:43:da:0c:1e:
f4:a6:5b:96:fc:e5:a3:52:57:0f:9c:a6:b0:b7:d6:
5e:21:8c:37:62:b8:fc:9e:e9:0c:61:86:56:3c:78:
6b:c7:70:26:13:fb:cd:44:f1:ee:e5:1e:60:1c:62:
a0:15:33:eb:7f:30:31:9d:e6:33:08:7e:6b:2a:3b:
b4:53:64:74:9f:f8:98:c7:3d:e7:b1:f6:6e:d1:be:
54:33:c7:0c:03:cb:f1:f2:cb:01:cd:e7:e1:37:a3:
1d:e5:ee:c9:e6:e8:c6:a8:c0:6e:af:88:ee:49:35:
f2:d4:98:c4:32:d4:29:fc:81:46:15:83:43:3e:98:
08:0d:a3:c9:cb:ab:15:ab:d0:ae:88:74:9a:c1:08:
e1:74:5c:d1:d9:e1:4a:23:3e:9d:94:53:80:bb:aa:
14:13:8c:4c:31:b6:9e:d4:d3:54:2e:44:25:e5:d6:
6d:30:19:0b:84:4f:72:c7:77:a6:0d:b4:2b:1a:b4:
29:c0:07:b3:98:d3:6f:0b:45:8d:be:56:85:5b:b7:
44:f3:dd:84:17:a0:09:f8:54:56:7a:9f:2f:a5:f3:
bc:9a:51:58:2a:1d:53:5d:bf:9a:0b:22:8a:08:b7:
a1:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:5D:98:0D:74:10:AC:0B:53:D2:14:7B:AC:D0:B0:59:CE:6B:A9:8B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B54F81AACCF711EF974B4175762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.101.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:fc:f9:7d:25:cc:bb:78:b0:58:e5:dc:8f:07:b9:f8:18:a5:
45:ba:78:af:cd:72:09:c3:21:ac:b0:7b:51:e0:16:c1:67:55:
fb:94:b6:e2:57:a4:a3:df:b3:cc:c4:69:c3:a0:4f:e7:08:ca:
e0:a2:84:ab:e0:8d:fe:da:8d:61:1e:9f:c3:8e:76:ea:0b:ae:
01:57:2f:4e:d0:36:e2:e5:fe:97:e6:46:01:b0:a9:86:27:a9:
d4:fb:c6:ff:27:3a:ca:bf:31:57:e4:fe:dd:d4:9e:84:4d:03:
d6:37:ff:f3:e3:e3:7c:48:2c:09:da:9c:96:a7:35:42:a8:33:
3a:44:3a:82:2d:d4:69:22:3b:f1:3c:92:3c:17:2b:51:3b:58:
cd:18:c6:91:7d:af:62:1a:c4:a7:11:a9:34:af:ee:af:da:37:
6e:17:af:2c:e6:10:c3:07:43:a3:e1:d1:65:f6:cd:29:f2:51:
d6:c4:02:ac:fb:d7:ac:31:96:df:42:cc:92:57:56:f2:d8:64:
53:57:5c:ee:b5:a2:88:80:93:89:dd:85:be:bb:28:27:60:87:
c9:ca:f5:b2:95:ee:6c:d4:38:3f:d7:d6:02:17:4a:55:f6:e6:
07:8b:0f:2c:6a:7b:a8:bb:ca:d0:01:ab:ce:09:82:6f:73:10:
d4:24:ae:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:01:34 2025 by rpki-client