Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C62D10F4CC1211EFB1D7D744762E951A.roa
File: C62D10F4CC1211EFB1D7D744762E951A.roa (raw, json)
Hash identifier: V9oJhWF2yE5qqYoq7ZB115sat5nzS7xZzHDM6y3dM4s=
Subject key identifier: 20:94:0E:B0:65:63:98:02:0C:78:DD:64:3C:F0:27:45:96:67:48:A8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F873
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C62D10F4CC1211EFB1D7D744762E951A.roa
Signing time: Mon 06 Jan 2025 09:44:08 +0000
ROA not before: Mon 06 Jan 2025 09:44:04 +0000
ROA not after: Thu 06 Feb 2025 09:44:04 +0000
asID: 200373
IP address blocks: 156.228.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Feb 2025 09:44:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63603 (0xf873)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 6 09:44:04 2025 GMT
Not After : Feb 6 09:44:04 2025 GMT
Subject: CN=677ba5e8-b1a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:27:67:e4:86:6f:3f:09:24:60:80:dd:c5:52:
84:38:4c:f5:c4:0d:8f:54:8a:6b:4d:dd:fc:89:33:
57:1c:7e:bb:26:a3:02:36:02:34:86:03:c7:1a:b1:
a6:7f:c9:29:2d:16:2a:12:b4:ed:a4:bc:4a:e5:ca:
1e:f6:c9:f7:f7:66:5b:95:da:0e:8c:f8:db:d7:3e:
f2:d2:c3:db:bd:4c:78:f8:4b:b9:ad:da:6f:75:3a:
b9:d8:10:5b:c9:af:80:a8:6e:f9:8d:9b:70:33:b4:
0f:d7:50:03:ad:4a:0c:4a:8d:7f:ac:55:c4:48:a3:
a4:a0:4f:77:2b:53:35:ae:5b:e6:9a:8d:11:86:c5:
44:11:b1:87:47:5c:cf:bb:a8:42:ad:ff:c6:57:1b:
98:a9:5e:ef:b4:a6:c1:6f:d2:f5:2f:1f:50:cb:4d:
93:0d:ed:e6:5a:95:3a:13:9b:c0:73:32:85:88:ef:
3e:38:38:a4:09:15:03:7d:fe:ff:9a:62:e6:48:91:
1b:62:d5:7e:3a:e4:36:17:c2:ec:2f:7e:66:36:b1:
ac:b7:65:7a:61:dd:80:2b:a7:e6:9a:ae:f5:d4:4a:
3f:eb:c7:06:b2:0e:41:e6:c6:bd:96:c8:ab:b5:fa:
98:d5:98:cd:1f:3c:44:40:9a:92:37:cc:94:da:48:
29:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:94:0E:B0:65:63:98:02:0C:78:DD:64:3C:F0:27:45:96:67:48:A8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C62D10F4CC1211EFB1D7D744762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.189.0/24
Signature Algorithm: sha256WithRSAEncryption
82:36:76:7e:d2:80:f1:6d:d3:98:ab:ad:f8:5b:cf:a9:9b:6b:
61:3f:69:43:b4:7a:7d:8d:7b:95:88:ec:0e:d5:4c:50:8e:c4:
22:76:50:52:7d:1e:97:d0:a6:f0:76:8a:5f:90:38:df:82:90:
54:c8:09:fd:19:09:db:e0:b9:03:f1:42:86:d6:74:6e:38:fc:
05:03:33:dc:a8:41:b4:c2:87:ce:b0:ec:4f:e2:59:aa:2b:2c:
bf:ae:4f:76:85:1a:cb:01:99:0e:83:7b:6f:8a:c4:d9:5e:06:
97:7b:10:bd:58:ef:9f:de:11:39:e0:b4:9a:02:33:43:12:26:
5a:c7:e8:13:98:92:0b:22:5b:94:cb:8f:6c:48:44:b7:b1:1c:
3e:6f:90:a4:bf:6a:78:ae:37:af:48:94:19:e6:2f:ba:3e:b4:
27:44:df:c7:af:24:fc:68:33:17:36:95:e2:a0:06:c4:6c:4b:
40:a6:be:2b:13:c9:a0:d0:d6:a5:2d:b1:88:99:d4:11:6b:c2:
64:00:b4:07:32:30:1a:f3:6a:56:d0:0a:65:48:f4:e8:ef:73:
ee:9d:5a:c4:09:26:55:93:01:49:94:d7:97:02:77:44:e3:e9:
07:6c:65:1f:22:23:82:71:1e:db:f9:70:0c:5a:4c:26:ba:51:
6d:35:42:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:58:25 2025 by rpki-client