Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BA080396CD5D11EF84D63E79762E951A.roa
File: BA080396CD5D11EF84D63E79762E951A.roa (raw, json)
Hash identifier: s8064veAzM6BwgF8FRDHRjrpJXa74SguSy+SaA8yU/M=
Subject key identifier: 93:E6:66:21:5A:54:8D:E3:4B:5F:34:C9:25:FA:FD:3C:CD:59:B7:5B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FF19
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BA080396CD5D11EF84D63E79762E951A.roa
Signing time: Wed 08 Jan 2025 01:13:11 +0000
ROA not before: Wed 08 Jan 2025 01:13:07 +0000
ROA not after: Sat 13 Dec 2025 01:13:07 +0000
asID: 984
IP address blocks: 156.247.84.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65305 (0xff19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 8 01:13:07 2025 GMT
Not After : Dec 13 01:13:07 2025 GMT
Subject: CN=677dd127-4b59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:3a:13:e3:14:d6:90:e4:fc:6c:50:f0:f3:64:
c3:d7:06:52:63:e5:5f:7d:a4:37:a8:43:f3:de:67:
20:ad:63:d7:86:9b:41:81:82:89:f9:27:5c:93:47:
cf:6c:b3:85:3e:1c:eb:57:48:2a:6a:70:d2:3a:54:
ca:a3:96:6b:7e:ea:0f:15:be:45:ea:a6:e4:03:25:
07:39:0c:62:05:6b:ab:2e:10:83:04:65:83:aa:b4:
8b:b6:a1:70:aa:35:9e:cf:d4:3e:84:e3:04:09:14:
ae:01:7f:1c:a8:fa:ab:2b:c5:31:98:c3:77:a3:ae:
7c:9a:21:96:d4:b6:5e:26:63:1c:df:1f:ea:1e:aa:
fe:a2:a7:4a:bb:f4:f5:ec:89:a9:9b:5e:a3:b1:8a:
4e:e9:1c:d0:c4:e8:cf:f2:53:af:77:2e:64:0a:1a:
a8:79:c8:e7:a8:86:f6:92:cd:71:31:36:56:6f:0c:
00:fb:25:96:fb:c6:ff:9b:0c:30:e4:95:99:09:39:
be:9a:eb:c2:15:62:42:fb:51:cd:9d:d0:fe:9b:7e:
7e:43:a4:f4:c4:f7:b9:2a:b7:46:e6:45:3e:74:8a:
af:37:da:dc:3e:4f:25:ed:a6:3b:b4:7c:0a:ac:ae:
3e:45:81:0e:28:6f:f1:dd:24:6a:29:df:bb:7c:d5:
f6:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:E6:66:21:5A:54:8D:E3:4B:5F:34:C9:25:FA:FD:3C:CD:59:B7:5B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BA080396CD5D11EF84D63E79762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.84.0/24
Signature Algorithm: sha256WithRSAEncryption
41:17:cb:5d:b4:84:43:f2:ea:be:67:a9:f7:6d:c2:65:d3:eb:
4e:07:5e:5a:e7:79:4c:83:3f:12:6d:83:77:7c:2f:e5:5c:8a:
04:ab:c3:67:3c:a5:15:d9:75:50:6d:c0:7e:4a:84:01:40:f5:
cb:83:79:44:ed:f5:ab:cd:62:5e:ed:76:81:cf:f4:a4:54:a5:
31:f8:5b:79:ab:7e:44:f7:52:bc:34:e4:ef:6a:38:c1:16:9b:
53:5b:39:b7:b2:25:42:ed:5b:45:29:af:94:be:ab:7d:a0:31:
fc:26:95:00:0b:4a:15:b8:28:07:a1:fd:81:e7:88:90:29:1b:
e6:0f:53:3e:3f:32:f7:db:0b:80:ac:60:73:4b:9d:d7:d0:47:
e5:89:4d:7b:9f:dd:68:c3:d9:f0:35:4c:cc:2d:8b:75:82:f4:
9c:4b:7b:a7:69:a1:42:fe:a3:32:2a:d8:f5:1f:25:ad:38:2a:
32:d5:6e:01:9d:10:a6:45:04:90:7c:76:11:73:3c:d1:82:34:
eb:ba:48:8f:0c:5c:b3:82:7c:8d:6f:69:85:41:26:aa:a7:09:
24:51:1f:3a:92:aa:01:93:cb:8b:02:1d:80:97:f4:27:7a:f7:
83:87:ec:3c:e7:04:d9:fa:63:06:15:46:2f:40:29:c9:17:6d:
5a:c6:93:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:47:57 2025 by rpki-client