Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D1BF6E18C33D11EFAAD427A6762E951A.roa
File: D1BF6E18C33D11EFAAD427A6762E951A.roa (raw, json)
Hash identifier: 50EUdz/ZnGg+khDc/r/hRh2cHgJ6s+bzNgkaDnBbTio=
Subject key identifier: EF:75:16:50:DC:41:F3:29:59:77:15:3F:CF:BD:D2:C7:B4:35:A8:99
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EBA5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D1BF6E18C33D11EFAAD427A6762E951A.roa
Signing time: Thu 26 Dec 2024 03:59:35 +0000
ROA not before: Thu 26 Dec 2024 03:59:31 +0000
ROA not after: Fri 10 Dec 2027 03:59:31 +0000
asID: 17561
IP address blocks: 156.244.206.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60325 (0xeba5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 03:59:31 2024 GMT
Not After : Dec 10 03:59:31 2027 GMT
Subject: CN=676cd4a7-5260
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f1:a9:e1:38:e0:01:46:9c:66:de:89:62:99:
59:ed:50:67:33:bd:83:aa:60:7a:b8:94:4c:01:39:
2a:46:9b:47:46:bc:f9:c6:a4:59:7d:be:9c:fc:17:
42:f3:ee:62:19:e7:20:5d:fe:99:ee:ec:82:d1:c0:
ed:fb:f4:bc:0b:89:9c:30:9f:45:09:7a:f7:c7:b6:
08:25:93:88:86:0b:fc:1b:6a:05:b6:7d:ea:f9:6d:
bb:76:8c:4a:de:ec:6f:f5:2b:b0:94:70:fe:2e:45:
d5:b1:40:0a:88:fb:85:ab:f0:dd:4a:2d:f2:e5:7d:
f2:30:56:69:7d:ae:04:ad:e7:3c:07:cb:6b:b2:89:
4d:f8:9c:c9:ab:2d:5b:3d:67:b5:8c:e0:72:b5:8e:
63:e7:12:64:08:a9:02:b4:b2:a0:f2:01:9b:70:8a:
99:da:17:1a:56:0b:ce:af:9b:76:1c:c3:89:55:c5:
1e:4d:25:4d:81:6e:bb:08:06:42:86:d0:f5:e6:b9:
47:99:8b:72:bd:02:c4:56:b8:08:ba:52:70:5f:ba:
6d:69:a3:3b:71:78:79:5a:d7:fb:68:7d:13:b0:72:
05:8a:b6:87:fb:06:9e:89:44:4c:a0:10:b9:da:08:
26:dd:3f:03:cf:41:35:5a:15:d5:ea:e6:8c:d9:ce:
1f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:75:16:50:DC:41:F3:29:59:77:15:3F:CF:BD:D2:C7:B4:35:A8:99
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D1BF6E18C33D11EFAAD427A6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.206.0/24
Signature Algorithm: sha256WithRSAEncryption
66:c3:11:07:45:8f:40:0d:43:d6:f4:dc:5f:c7:59:fb:e1:2b:
13:98:ad:48:44:05:39:bd:65:2a:56:82:ae:5f:df:f0:4a:12:
10:84:40:75:70:fc:9b:6d:d9:f3:38:21:6c:53:b9:48:86:e5:
74:4b:a7:d2:ab:27:d2:71:3b:b9:f0:2c:aa:d8:3f:72:33:33:
b9:11:88:f5:4c:59:d6:cb:83:3f:f4:89:c7:94:70:77:1d:01:
b4:f0:bf:cd:c3:41:c9:01:8b:d3:be:e9:02:9a:af:4b:9f:00:
f1:e6:7a:c2:c2:59:91:68:32:0e:4f:22:78:d6:88:01:fe:57:
06:f1:5e:b4:b8:10:01:25:7d:2b:b0:60:90:90:c9:3e:e3:b5:
bf:c9:a1:f6:84:44:b7:c7:c1:07:e3:d0:a0:64:12:9f:26:ce:
f7:88:e0:a2:e8:04:39:95:36:97:c1:a4:cc:cf:27:f0:db:7e:
f8:82:fd:83:67:7f:eb:da:e1:f4:ca:26:80:b7:d7:18:af:8b:
99:59:5a:45:de:b2:eb:64:5c:93:65:42:31:9c:05:d0:f1:cc:
6c:d5:60:8c:36:ab:80:ee:3f:b1:c4:cf:fb:d5:32:ab:18:67:
89:78:aa:36:fd:fa:ef:38:7d:bd:9a:67:a7:93:b6:13:e7:4e:
40:3f:9b:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:45:45 2025 by rpki-client