Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DB9BE96ED32011EFBB87B898762E951A.roa
File: DB9BE96ED32011EFBB87B898762E951A.roa (raw, json)
Hash identifier: 1ag8hkTfZrZoh/RLxlP3/TSQY6WnAmaaGNdbX18NkHM=
Subject key identifier: F3:3E:87:9E:C6:0C:05:51:4E:CD:87:EB:2C:CB:96:65:F8:E5:BA:76
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01088F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DB9BE96ED32011EFBB87B898762E951A.roa
Signing time: Wed 15 Jan 2025 09:12:35 +0000
ROA not before: Wed 15 Jan 2025 09:12:31 +0000
ROA not after: Mon 03 Jan 2028 09:12:31 +0000
asID: 17561
IP address blocks: 156.254.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67727 (0x1088f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 15 09:12:31 2025 GMT
Not After : Jan 3 09:12:31 2028 GMT
Subject: CN=67877c03-d959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:55:7f:19:d3:8c:d2:e0:ca:93:b9:05:b8:fa:
1c:99:3b:af:fc:d5:fa:50:75:35:2d:dc:23:0c:3f:
a4:3b:22:a3:e3:01:be:bf:65:de:46:22:ec:e9:e9:
31:a2:4e:6b:11:f3:00:fb:14:b7:24:fa:32:24:b0:
38:be:20:05:c7:41:05:af:fe:b3:e5:a6:32:f8:1e:
c3:ea:48:7d:98:e5:cd:dc:be:81:20:5d:c9:cb:08:
3e:d4:95:f8:e9:31:9f:90:38:34:74:15:f2:2d:c4:
04:7b:d9:34:51:dc:ac:66:e7:ef:32:d6:47:45:52:
96:95:99:ef:3f:cb:31:89:67:fa:55:a0:84:33:5e:
4c:58:1c:96:e3:1e:03:c5:97:5e:89:41:f7:17:3e:
39:74:5b:d4:01:f2:7a:81:ce:19:a1:4e:16:e8:01:
f1:ef:48:62:a7:53:3d:a7:a7:e1:5c:44:84:a9:a0:
6e:a8:f7:e3:ce:b0:1f:4d:11:87:6c:58:93:63:b2:
8c:97:00:3a:f5:c2:97:f7:66:e6:c0:f5:2e:6c:9e:
8a:39:a9:df:f3:f8:1e:24:2f:b0:b2:70:90:3e:a3:
10:30:e4:d0:d8:c9:94:6c:ea:ea:46:84:a5:59:08:
13:fb:12:25:5a:f6:a7:24:70:cf:bb:0f:f5:6e:cd:
a2:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:3E:87:9E:C6:0C:05:51:4E:CD:87:EB:2C:CB:96:65:F8:E5:BA:76
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DB9BE96ED32011EFBB87B898762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.254.93.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:5a:98:27:9d:b8:a6:b4:73:e0:79:4c:ca:a8:a8:c0:85:f2:
54:cf:0d:5e:b9:77:84:be:3b:0c:c0:47:34:69:76:80:de:b0:
87:59:32:6e:05:e5:77:2a:c7:0e:2a:29:b1:13:fb:4f:88:b6:
3e:91:59:72:29:60:f4:06:4a:70:b7:fc:3f:35:17:d2:d4:e7:
cd:5f:46:7c:73:89:27:c8:72:ee:f1:d2:d3:93:e6:3f:6b:d5:
a6:c3:39:0e:6d:20:b9:02:c4:8c:be:bc:56:ed:4b:72:75:2e:
8f:2e:9b:55:b3:3e:4e:ed:4a:20:9f:94:46:9b:81:36:41:d3:
f6:cf:be:e9:ed:7c:c3:2d:28:91:2a:8d:38:40:81:4d:f8:35:
a1:4b:2a:93:36:3d:5e:4c:44:88:c0:c2:e7:ba:12:55:d5:c1:
fa:8d:a0:96:a8:c1:e0:14:7a:57:77:54:5d:25:8f:65:4d:a6:
1f:41:51:62:ac:6e:dc:2d:27:22:2b:27:eb:52:53:f3:e0:20:
d0:07:63:05:e8:0d:44:6c:d6:61:5d:e2:bb:8c:85:6d:f5:eb:
38:cf:fc:d6:7b:eb:9c:bd:08:b5:c9:58:0a:ba:16:a1:02:73:
22:34:d8:d6:9d:1f:cb:56:33:99:52:a6:55:4b:de:27:ea:50:
d7:8f:e7:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:52:37 2025 by rpki-client