Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DFFAAB32D24211EF97594D94762E951A.roa
File: DFFAAB32D24211EF97594D94762E951A.roa (raw, json)
Hash identifier: tS909ZlxH7mxRxSWEdpDmqYI8UtRtgHqV0s0cML5QtA=
Subject key identifier: F8:97:62:68:A4:1A:45:50:74:09:36:87:4F:5B:84:CC:E0:C9:F1:25
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0106BA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DFFAAB32D24211EF97594D94762E951A.roa
Signing time: Tue 14 Jan 2025 06:43:34 +0000
ROA not before: Tue 14 Jan 2025 06:43:30 +0000
ROA not after: Thu 15 May 2025 06:43:30 +0000
asID: 55020
IP address blocks: 156.224.20.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67258 (0x106ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 14 06:43:30 2025 GMT
Not After : May 15 06:43:30 2025 GMT
Subject: CN=67860796-e944
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:62:70:31:dd:94:a6:49:8d:07:aa:61:99:19:
d6:46:75:47:dd:f1:d7:1e:14:21:ab:3e:1c:6a:d4:
f4:a8:d0:af:aa:14:14:3b:43:96:b9:f3:86:1c:2b:
52:59:d4:80:1d:c6:be:ef:40:2b:b9:c7:c9:13:ab:
36:3c:62:66:12:79:34:08:db:7b:5f:db:2b:b7:8c:
4b:fb:11:a8:26:f7:fd:1d:9b:ed:47:7d:89:16:5f:
c6:43:06:0c:1e:74:dc:ea:33:85:d3:b7:17:f8:e6:
bd:b3:24:0b:18:29:4b:24:ff:f0:0e:5c:0b:62:d6:
1b:2e:06:82:5f:8c:55:d9:12:13:91:28:3b:11:90:
61:60:40:49:f7:79:80:a0:3b:63:a4:c0:80:d6:23:
a0:c4:7b:27:66:7c:5a:a6:e3:b0:bb:42:3d:6c:0e:
f1:a5:4b:3b:00:3a:7b:33:8b:d2:8b:63:dd:ef:b2:
79:ab:e9:8a:c8:39:f7:45:ea:5f:28:bf:5d:8c:d4:
2a:73:61:ba:b6:f8:a0:f0:54:60:cb:d2:bb:f5:f7:
b9:8b:48:26:2a:b7:5d:8a:a4:61:bf:be:b0:6a:c8:
27:6a:99:01:1e:5b:14:28:30:06:2e:c5:d4:bf:12:
3d:ab:ca:1c:1d:62:b6:30:a4:de:7e:1c:75:01:8f:
e6:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:97:62:68:A4:1A:45:50:74:09:36:87:4F:5B:84:CC:E0:C9:F1:25
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DFFAAB32D24211EF97594D94762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.224.20.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:53:82:aa:d2:6f:f5:4b:7f:b3:9b:b3:48:c3:25:0b:0a:e4:
cc:1f:b5:d4:65:9d:fe:54:c8:1a:f7:6f:40:37:c1:28:03:7c:
bb:4d:e0:66:bb:38:51:26:5d:e1:68:dc:33:dd:10:88:48:ce:
d6:3a:0a:71:79:06:ad:bb:fc:73:70:a1:b2:56:b3:93:b3:e6:
59:89:20:06:d3:eb:44:84:bc:24:5f:a4:ec:60:cb:9c:71:d1:
38:99:51:88:df:6e:aa:77:ef:1f:2c:d9:7e:66:be:92:02:95:
23:8b:bf:50:78:47:65:3b:2d:45:df:e9:f7:da:2e:fb:a7:df:
91:9a:dc:f3:ca:c8:bb:93:cc:9c:4c:86:93:95:9c:d2:52:7b:
59:b0:79:b0:56:7d:28:09:34:5f:ab:4e:54:ec:4a:13:ae:4f:
6e:bd:cf:04:c4:02:51:a2:ba:e5:bf:5c:ce:1c:3b:db:82:f1:
d9:c7:64:f7:42:81:ae:e4:b9:c6:ef:75:fa:86:62:d6:95:e4:
73:3f:1b:34:54:18:71:d8:0d:b5:cf:7a:bd:af:1d:80:b3:df:
34:7f:6a:da:13:3f:0f:01:7c:59:13:78:1e:fd:f4:96:32:12:
f7:04:5b:c7:28:4a:61:83:ab:23:a0:5f:0b:ca:9d:38:cb:03:
48:b0:74:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:35:50 2025 by rpki-client