Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CF047320C98311EFB5787C92762E951A.roa
File: CF047320C98311EFB5787C92762E951A.roa (raw, json)
Hash identifier: Up85vPV1Z0Lsis4s7UDh/fz8yKJZ6IdMOAHlEs3gYyE=
Subject key identifier: 0F:0E:F2:FD:08:F9:F4:D0:61:DB:CE:9A:7F:64:8E:53:12:81:1B:61
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F569
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CF047320C98311EFB5787C92762E951A.roa
Signing time: Fri 03 Jan 2025 03:35:42 +0000
ROA not before: Fri 03 Jan 2025 03:35:38 +0000
ROA not after: Sat 13 Dec 2025 03:35:38 +0000
asID: 984
IP address blocks: 156.232.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62825 (0xf569)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 3 03:35:38 2025 GMT
Not After : Dec 13 03:35:38 2025 GMT
Subject: CN=67775b0e-658e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:95:22:dc:9b:ac:7a:f6:f4:e5:b6:98:18:9c:
60:4c:a6:98:4e:7d:6d:05:1b:5a:f9:cd:31:50:3a:
3a:23:c5:5f:a9:31:10:4c:fd:92:ef:3e:4e:29:73:
66:fa:f7:d9:2c:32:14:ea:5f:02:8d:e6:44:9b:d0:
75:50:68:c2:8f:7a:66:d0:41:4e:4a:78:5f:0a:3a:
53:6d:00:3c:a5:42:d1:6e:62:d9:c9:7e:17:a9:4a:
61:87:69:c2:d6:94:c2:18:02:f3:3b:f9:1b:0a:73:
5b:6d:d6:7e:7c:f3:49:79:18:95:5d:f6:98:31:e9:
03:0a:eb:a1:2c:b1:fe:bb:61:f7:05:72:40:45:d2:
ce:98:fe:fc:d6:5d:ff:03:d0:1c:b9:94:b0:10:f3:
96:9a:fb:fd:47:f9:ab:d5:aa:87:ff:b6:b2:19:cc:
5d:fc:91:99:34:32:a2:9c:90:91:ca:fb:94:be:b0:
3d:33:46:08:64:7d:60:41:82:ce:13:37:b6:21:d0:
62:09:71:79:38:3a:4c:95:0f:68:1c:70:a4:30:04:
52:43:19:48:a9:de:fb:24:c9:20:1d:73:f0:55:4f:
86:02:bf:c1:fc:9e:6d:9d:7d:97:2d:97:8d:25:77:
a6:bb:6d:be:c1:c0:4b:09:0f:35:1e:4d:8e:a6:b1:
ce:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:0E:F2:FD:08:F9:F4:D0:61:DB:CE:9A:7F:64:8E:53:12:81:1B:61
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CF047320C98311EFB5787C92762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.8.0/24
Signature Algorithm: sha256WithRSAEncryption
55:ea:7b:a1:ca:6f:9d:ed:fd:1e:5c:c1:e2:cc:99:9f:1a:b4:
73:fe:cf:ad:38:75:62:bb:28:f0:64:ab:91:3a:59:8c:ec:10:
7d:02:82:9b:94:7d:c1:6e:ad:94:31:54:6e:5e:fa:c4:3f:53:
49:fa:12:aa:bd:4c:5a:28:ea:b3:f4:2f:8a:6d:00:c5:9e:07:
6e:a7:13:38:bc:ef:39:32:f5:0a:ac:8c:b0:7f:c5:9b:ab:d9:
2b:07:9e:1e:56:06:93:01:b8:c3:22:93:d4:b0:47:9e:89:c5:
47:6a:2a:03:39:9e:4a:4d:6c:e1:1c:05:4f:08:21:4d:f9:5d:
51:58:c6:2b:a3:8b:f7:c1:8a:c8:23:ca:95:75:08:e0:07:4f:
06:e5:ab:04:29:26:05:c5:10:23:65:f0:bc:85:9a:dd:39:ba:
2b:ee:9b:a0:b9:44:10:39:46:ad:b5:9f:b3:35:32:0e:63:a3:
54:7e:a7:ff:e8:af:c5:1c:23:9e:03:f7:f3:a1:62:5d:ae:73:
b6:75:45:91:03:26:83:ab:34:df:1f:a0:9a:4d:2f:8f:e8:13:
21:0d:a4:c2:95:22:46:f2:b6:0f:17:81:13:21:4f:1b:48:86:
0b:be:a9:83:ea:a5:ca:de:27:81:84:81:76:53:ac:87:3e:07:
24:2e:5b:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:46:18 2025 by rpki-client