Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C2EFEB66B3E211EFB5B0FE5A762E951A.roa
File: C2EFEB66B3E211EFB5B0FE5A762E951A.roa (raw, json)
Hash identifier: 9iVHhqUf7D5q9caNc0Fm+7uTq9Q7m/hdx1i99OhnzK0=
Subject key identifier: E7:26:67:3A:1E:01:33:93:DF:8A:36:56:D2:4A:97:74:20:C7:D0:72
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E085
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C2EFEB66B3E211EFB5B0FE5A762E951A.roa
Signing time: Fri 06 Dec 2024 14:59:59 +0000
ROA not before: Fri 06 Dec 2024 14:59:55 +0000
ROA not after: Tue 20 Oct 2026 14:59:55 +0000
asID: 137263
IP address blocks: 156.224.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57477 (0xe085)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 6 14:59:55 2024 GMT
Not After : Oct 20 14:59:55 2026 GMT
Subject: CN=6753116e-b76b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:fc:65:44:58:52:2f:18:06:ed:27:4b:f2:b4:
4b:cf:ff:fe:a0:cc:02:3c:5d:2e:fe:f9:51:7b:24:
41:90:f9:7b:77:2c:05:b0:f4:9d:7b:82:72:05:e7:
bd:71:da:5d:c1:ab:1f:79:86:39:41:f9:53:6e:35:
05:44:3b:4d:e4:67:c5:e0:b4:05:4d:b7:6d:f9:d8:
28:be:e5:6d:db:8d:b4:ae:2c:64:58:7d:61:af:0c:
53:45:18:21:ea:93:93:8b:07:c3:14:61:b7:27:b6:
c9:ff:6b:94:3b:a5:99:33:83:04:7c:35:af:f6:a6:
88:03:ac:2e:6b:a8:f0:53:8a:7e:8d:74:b9:ee:42:
7b:86:51:c6:66:64:a3:58:a4:be:09:ae:b2:63:b1:
ea:b3:c8:e0:bf:dd:55:fe:86:96:8c:1c:8d:fa:2a:
6f:ba:86:9b:05:d0:6c:e3:a9:5b:1b:4f:24:0b:c5:
47:19:c5:8b:d6:d3:e7:71:d5:38:79:bc:d7:fe:6c:
ea:82:29:1d:7c:fc:7c:e7:fc:90:43:60:b9:bc:3d:
c1:e4:df:83:cc:a9:ea:70:6a:ee:f8:6a:96:be:a0:
1a:f1:33:bb:3d:10:74:1f:49:1c:14:cb:14:09:eb:
f3:37:6e:27:3b:8d:94:64:07:2b:17:70:20:04:9f:
55:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:26:67:3A:1E:01:33:93:DF:8A:36:56:D2:4A:97:74:20:C7:D0:72
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C2EFEB66B3E211EFB5B0FE5A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.224.81.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:da:72:f9:1c:51:2a:66:11:6d:d7:2b:79:61:ab:89:8e:0f:
0b:61:e1:af:72:63:24:6b:3e:46:80:89:61:c5:2d:fe:06:10:
6b:56:95:49:4e:75:2d:f8:c8:b9:ac:a5:73:f8:e1:b8:be:e7:
88:70:38:73:35:de:07:32:6a:40:ce:0e:63:69:c7:b2:6f:47:
3d:ee:05:a5:19:e9:57:2d:29:0c:f7:70:7d:91:bf:ee:60:11:
96:8b:40:18:e9:47:b6:6a:fc:3b:b6:fd:c6:55:ce:84:90:d3:
7a:86:23:4b:8b:56:c6:15:6f:ef:e3:0d:fa:ec:e6:0c:8d:e3:
12:49:4a:f4:9d:c1:fc:e7:0b:e0:b2:78:4a:7f:db:01:cd:86:
be:8f:d4:72:14:f2:5e:77:78:c2:8b:3f:2c:51:3e:f7:b2:35:
17:1d:3e:25:96:f7:c2:a6:85:3f:93:c6:7d:09:8d:3c:45:14:
5a:36:08:dd:79:52:95:16:b3:c6:66:3f:4f:17:57:e1:34:15:
d4:c0:e3:db:c5:d1:b8:7c:d7:62:ac:c2:35:52:12:4e:2b:91:
3d:5b:9f:1d:c4:79:bc:ea:c2:73:61:13:b8:9a:0e:04:f5:06:
20:c2:66:0d:7c:62:32:c6:ed:11:4b:69:cd:a2:1b:c7:89:cd:
de:c8:67:89
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAOCFMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMjA2MTQ1OTU1WhcNMjYxMDIwMTQ1OTU1WjAYMRYw
FAYDVQQDEw02NzUzMTE2ZS1iNzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyfxlRFhSLxgG7SdL8rRLz//+oMwCPF0u/vlReyRBkPl7dywFsPSde4Jy
Bee9cdpdwasfeYY5QflTbjUFRDtN5GfF4LQFTbdt+dgovuVt2420rixkWH1hrwxT
RRgh6pOTiwfDFGG3J7bJ/2uUO6WZM4MEfDWv9qaIA6wua6jwU4p+jXS57kJ7hlHG
ZmSjWKS+Ca6yY7Hqs8jgv91V/oaWjByN+ipvuoabBdBs46lbG08kC8VHGcWL1tPn
cdU4ebzX/mzqgikdfPx85/yQQ2C5vD3B5N+DzKnqcGru+GqWvqAa8TO7PRB0H0kc
FMsUCevzN24nO42UZAcrF3AgBJ9VPQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFOcm
ZzoeATOT34o2VtJKl3Qgx9ByMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9DMkVGRUI2NkIzRTIxMUVGQjVCMEZFNUE3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOBRMA0GCSqGSIb3DQEBCwUA
A4IBAQC32nL5HFEqZhFt1yt5YauJjg8LYeGvcmMkaz5GgIlhxS3+BhBrVpVJTnUt
+Mi5rKVz+OG4vueIcDhzNd4HMmpAzg5jaceyb0c97gWlGelXLSkM93B9kb/uYBGW
i0AY6Ue2avw7tv3GVc6EkNN6hiNLi1bGFW/v4w367OYMjeMSSUr0ncH85wvgsnhK
f9sBzYa+j9RyFPJed3jCiz8sUT73sjUXHT4llvfCpoU/k8Z9CY08RRRaNgjdeVKV
FrPGZj9PF1fhNBXUwOPbxdG4fNdirMI1UhJOK5E9W58dxHm86sJzYRO4mg4E9QYg
wmYNfGIyxu0RS2nNohvHic3eyGeJ
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:51:45 2025 by rpki-client