Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E1844308D30711EF928F3C7C762E951A.roa
File: E1844308D30711EF928F3C7C762E951A.roa (raw, json)
Hash identifier: Su4eXCRxsdcD14f5hgbiuZaEUDAUynOv6FxmAICh52s=
Subject key identifier: 25:BB:DA:83:FC:97:FC:12:E7:BC:2A:3E:CA:1C:5B:84:9D:B7:D2:1B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01081B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E1844308D30711EF928F3C7C762E951A.roa
Signing time: Wed 15 Jan 2025 06:13:47 +0000
ROA not before: Wed 15 Jan 2025 06:13:44 +0000
ROA not after: Mon 03 Jan 2028 06:13:44 +0000
asID: 17561
IP address blocks: 156.254.56.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67611 (0x1081b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 15 06:13:44 2025 GMT
Not After : Jan 3 06:13:44 2028 GMT
Subject: CN=6787521b-9fb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9b:c0:da:8e:fa:d2:83:85:82:ef:e2:ae:14:
ad:f5:de:b7:bb:fd:21:d4:ab:03:f9:95:5c:fb:d5:
ac:20:11:e9:85:86:a8:f8:5a:f1:95:42:da:fa:12:
56:3a:ee:22:ae:5c:33:4c:85:d4:3d:72:47:42:84:
63:42:8d:2a:3c:3c:8e:d8:75:f8:69:a4:20:97:40:
9d:72:3e:64:9b:72:12:6c:c6:83:c1:af:89:a8:02:
d8:ca:ce:3a:a3:e7:f8:95:2c:3a:a8:e1:7d:6c:f6:
fa:3f:ff:cb:de:89:56:68:1e:57:24:7d:02:a9:e1:
51:ef:17:07:f6:b0:65:35:0e:78:7a:99:78:6b:fd:
04:3d:37:bb:69:c3:1d:94:a9:e9:48:40:f5:e0:bf:
4b:ad:b3:91:21:8f:32:65:b5:11:c9:45:2b:a6:2f:
65:8b:fd:24:eb:41:2c:61:b0:02:48:ee:0a:fb:80:
72:91:7f:77:31:27:1a:c0:8d:ab:0b:ff:4b:80:19:
09:3e:bf:69:05:56:44:c0:92:4a:ac:d8:76:da:c0:
ea:79:d1:97:e0:6d:ce:73:5a:be:ee:7b:d9:d1:e1:
89:1c:0a:30:51:70:9e:13:6b:13:f6:7c:52:75:e6:
b6:44:01:35:a3:ac:83:53:93:0c:0e:78:ee:4a:0a:
83:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:BB:DA:83:FC:97:FC:12:E7:BC:2A:3E:CA:1C:5B:84:9D:B7:D2:1B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E1844308D30711EF928F3C7C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.254.56.0/24
Signature Algorithm: sha256WithRSAEncryption
18:79:ec:56:f5:1f:44:b1:0e:c1:73:19:63:a3:88:29:aa:54:
14:3c:b0:03:fa:e6:11:ce:94:47:c2:08:a7:7b:fd:f8:89:d4:
67:c5:03:15:7a:37:29:c2:b5:5a:eb:fb:96:5e:76:32:03:0d:
41:15:1a:6f:67:a8:97:7c:bb:28:46:5f:e0:14:69:be:ff:76:
56:92:47:92:65:fc:9d:75:15:40:81:a5:6d:b2:b8:c9:2c:2b:
3d:42:36:f4:da:5b:b4:af:07:84:1b:87:11:72:52:25:ea:2e:
41:5d:a5:db:2b:ce:8a:ce:36:02:55:c4:31:14:5a:ee:49:19:
3d:d4:8b:d8:db:f0:55:bc:5b:db:ef:5f:b9:01:de:08:fe:95:
d8:2a:b7:e0:a3:ed:b9:0b:8d:e6:9d:65:7d:74:38:30:28:36:
36:05:e2:7b:40:92:80:79:59:cf:65:54:e5:50:01:e2:55:2f:
fe:7c:92:70:de:e4:fa:9d:79:92:c9:1d:e9:88:c7:a3:d5:2a:
b2:5d:47:15:65:d7:98:ed:be:7b:2c:9c:e8:52:e9:24:f5:40:
ce:cb:17:69:b7:96:d8:c6:af:a7:d4:7a:d2:5d:e7:a1:13:b6:
56:25:02:5d:4c:53:9c:5b:68:c3:b7:94:0b:44:8b:1a:a8:d4:
f0:40:42:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:49:00 2025 by rpki-client