Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E03B672AC99211EFB6F8E171762E951A.roa
File: E03B672AC99211EFB6F8E171762E951A.roa (raw, json)
Hash identifier: DbTY8SOncS+nDL5xxQd+pLE3T2yy2JAxipm+n75ic24=
Subject key identifier: 6D:D9:97:39:E1:AE:12:02:FD:5E:9B:B2:98:BE:0E:4A:56:E0:1D:66
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F5F5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E03B672AC99211EFB6F8E171762E951A.roa
Signing time: Fri 03 Jan 2025 05:23:34 +0000
ROA not before: Fri 03 Jan 2025 05:23:30 +0000
ROA not after: Sat 13 Dec 2025 05:23:30 +0000
asID: 984
IP address blocks: 156.233.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62965 (0xf5f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 3 05:23:30 2025 GMT
Not After : Dec 13 05:23:30 2025 GMT
Subject: CN=67777456-8c14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b7:72:85:86:bf:22:10:60:fd:a0:cd:29:de:
de:27:13:0d:70:71:38:46:f6:8a:de:b1:89:82:2f:
85:22:a2:7b:6b:25:4d:4e:2a:59:2b:d0:62:a2:65:
4f:16:5a:1c:ca:4d:5d:99:b4:8e:a2:83:24:34:7b:
38:ca:f7:2d:ca:12:7b:7e:cf:70:6e:c8:86:3d:52:
97:43:d0:b2:58:9b:c9:77:62:e9:e4:e2:81:29:0d:
66:ec:b6:6c:80:95:2a:38:df:57:22:66:8e:fe:91:
15:b5:b7:64:b8:28:ca:33:42:ef:d7:bb:9a:6a:60:
63:cb:cd:57:ce:15:7d:95:ea:ed:45:93:ab:c2:f0:
5b:9f:2e:e4:80:2a:e5:14:18:0b:35:a9:67:dd:6e:
31:fd:cb:f5:e6:df:9c:5f:03:94:0c:24:20:c5:1c:
a7:66:2a:e9:42:dd:7b:41:71:ba:96:42:06:21:bd:
b2:bc:ed:e3:4d:57:35:17:63:df:90:c0:03:a8:57:
2c:2f:98:af:d8:c6:89:fc:95:9f:c9:f4:75:a4:91:
8d:6c:f4:ba:f1:e4:88:75:d6:ca:19:55:d6:7d:63:
82:ed:44:b5:d6:0c:07:65:c0:11:f9:e2:7c:b1:3b:
00:4a:f8:05:5a:fd:8d:23:7e:6d:72:b3:c5:14:fd:
65:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:D9:97:39:E1:AE:12:02:FD:5E:9B:B2:98:BE:0E:4A:56:E0:1D:66
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E03B672AC99211EFB6F8E171762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.127.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:72:61:6c:59:ff:89:3d:58:3c:3c:ba:9f:10:f7:64:6b:3c:
54:ac:3f:ea:6e:b3:26:4e:cd:7b:c2:6e:c7:f9:58:de:25:cd:
b4:81:95:c2:02:4f:ae:10:09:e5:6b:ff:d3:79:42:39:04:40:
29:8b:09:3a:60:08:65:1f:8f:17:03:90:93:63:79:65:cf:c4:
fc:72:d5:b5:d9:9c:0b:63:14:f0:fb:31:7f:a6:f7:85:56:6f:
e6:1b:d1:16:4a:58:24:a5:1d:b0:d3:77:5e:28:1c:80:c3:89:
8a:be:26:18:3d:31:77:37:98:b9:41:04:f0:9f:b7:c2:9c:7c:
53:ae:65:83:47:8f:65:40:6d:0f:f5:c3:5a:75:d3:99:ec:17:
13:44:cb:97:d1:5b:74:bc:2c:56:12:7a:67:ae:5d:72:12:b5:
87:76:bd:e3:d2:64:fd:f6:be:0e:d5:08:79:39:f3:50:ef:51:
67:d8:f0:85:93:f0:8c:34:07:1a:9a:1b:a9:4b:52:3b:f2:72:
9e:8c:7c:68:ee:7e:2b:62:8f:e4:9f:3d:31:af:39:07:67:31:
8b:fd:76:b2:a8:a1:f1:8d:06:4d:9f:fb:79:83:ee:ad:13:ec:
9f:79:65:49:10:76:5e:91:9b:25:a8:ea:af:7b:fa:28:e5:b8:
99:77:2d:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:47:39 2025 by rpki-client