Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E15151AECBCE11EF9BE5638A762E951A.roa
File: E15151AECBCE11EF9BE5638A762E951A.roa (raw, json)
Hash identifier: K+dq4GVE9M3LgOgtP7wAtrxIilcPtlpKh4+ht3Er/Wc=
Subject key identifier: 28:FF:40:E2:03:59:EF:43:0F:A5:D2:C2:82:F8:12:A5:B7:5C:D9:C1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F7BC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E15151AECBCE11EF9BE5638A762E951A.roa
Signing time: Mon 06 Jan 2025 01:38:08 +0000
ROA not before: Mon 06 Jan 2025 01:38:04 +0000
ROA not after: Thu 06 Feb 2025 01:38:04 +0000
asID: 213993
IP address blocks: 156.229.252.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Feb 2025 01:38:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63420 (0xf7bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 6 01:38:04 2025 GMT
Not After : Feb 6 01:38:04 2025 GMT
Subject: CN=677b33ff-7e3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:06:d0:1f:0c:6f:30:25:b7:90:3a:be:ed:77:
c5:b5:02:9c:81:cd:72:90:69:f4:ca:7b:6b:40:c1:
d5:53:98:c0:6d:53:dc:6f:e0:8e:da:15:15:07:35:
0e:04:73:50:ce:70:f9:82:18:40:cd:d2:0b:34:f7:
9a:62:7a:59:ef:91:70:fb:a0:4f:89:6f:51:57:cb:
ca:58:56:a3:df:2b:1e:39:bf:54:c9:57:e3:04:d1:
53:a5:37:27:10:f4:da:66:40:76:bd:18:5a:8b:e3:
27:b8:cc:2f:b9:01:dd:08:40:4d:d7:57:7c:9c:c7:
1d:6b:10:ed:16:f9:32:c4:02:af:07:3e:60:87:3d:
0a:bb:eb:a1:50:70:a2:ce:3a:dd:cc:2f:43:9d:61:
90:60:67:00:c7:15:37:8a:cf:85:40:b3:5c:63:7c:
e0:c3:52:7b:67:75:69:f6:a8:a7:24:80:c3:35:7d:
30:1b:6f:63:a6:9c:07:95:9d:37:ce:78:79:44:35:
11:ce:4f:75:52:3c:c7:50:90:f4:cc:9b:22:8f:52:
7c:a0:d2:f6:4a:e5:d9:57:55:22:61:47:c8:ee:6d:
13:5a:d6:88:0e:e6:5d:22:d6:17:c8:e4:8e:22:58:
9a:17:1a:94:fa:ca:43:82:2d:ae:8b:76:e6:3d:92:
01:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:FF:40:E2:03:59:EF:43:0F:A5:D2:C2:82:F8:12:A5:B7:5C:D9:C1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E15151AECBCE11EF9BE5638A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.252.0/24
Signature Algorithm: sha256WithRSAEncryption
72:bf:56:79:5a:49:1b:28:25:18:88:96:02:8c:b5:67:7b:af:
15:b7:26:6b:65:20:cb:e4:99:bb:e0:ce:69:35:e7:64:8f:12:
fe:e5:ab:b7:69:50:0f:fc:56:13:6b:a4:cf:aa:ae:e5:6c:77:
90:e5:6d:38:0e:a6:03:86:52:a1:68:67:90:df:60:a5:26:f7:
fb:13:b0:3d:7c:47:a5:fc:c4:74:47:5f:7f:eb:05:04:23:fd:
0f:cd:20:62:a6:45:bc:9e:b0:4d:e6:73:45:3a:8c:5d:61:72:
af:c6:a9:d7:68:3a:27:7e:96:53:09:0c:17:ba:03:ce:4f:25:
14:24:1a:9b:57:f9:0b:5f:45:8d:56:83:8d:80:ea:10:69:20:
cf:ad:9f:d2:43:b1:d0:ce:a5:f1:34:cb:b3:fa:80:77:f7:7d:
e7:78:3a:31:a8:88:47:2a:1c:01:93:e1:f2:35:f7:1a:87:87:
5f:37:9f:ad:26:0c:85:08:f1:c4:3f:e1:b0:74:2e:ba:19:b4:
37:8e:4a:29:4e:1e:78:89:ae:89:3b:2b:c3:4d:64:1d:f1:6c:
8f:cb:cc:ff:29:19:8c:c4:60:6d:96:63:b8:6e:df:10:4e:f7:
c1:45:f9:23:2c:e0:f1:e4:d5:43:7e:1a:94:dc:c4:bd:37:e7:
3e:97:6d:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:54:49 2025 by rpki-client