Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E1E48358CD3F11EF865D8EB9762E951A.roa
File: E1E48358CD3F11EF865D8EB9762E951A.roa (raw, json)
Hash identifier: ZXSY5/+K7P7hrq2dSxnf1NX++KexzLYrkUXmXrRWru0=
Subject key identifier: 66:2A:46:B5:01:99:AE:61:43:9B:B7:11:65:69:EE:BF:67:90:2B:D1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FE67
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E1E48358CD3F11EF865D8EB9762E951A.roa
Signing time: Tue 07 Jan 2025 21:39:33 +0000
ROA not before: Tue 07 Jan 2025 21:39:29 +0000
ROA not after: Sat 13 Dec 2025 21:39:29 +0000
asID: 984
IP address blocks: 156.243.92.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65127 (0xfe67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 21:39:29 2025 GMT
Not After : Dec 13 21:39:29 2025 GMT
Subject: CN=677d9f15-3858
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:74:1f:91:86:21:a8:7f:8c:7a:aa:51:66:fc:
02:ed:a7:6a:40:77:70:a8:65:d0:29:2a:b9:90:e6:
2d:08:6b:9f:d6:1d:22:3b:8e:10:66:b7:84:1a:c8:
a5:ee:68:cc:c5:fc:3d:d7:02:ee:35:22:85:16:e9:
90:f9:a0:ad:cb:cf:76:95:3f:f7:7d:f3:7f:5d:26:
b8:bb:f1:ca:72:d9:69:37:04:36:a6:cd:ca:36:2d:
52:e1:25:52:80:b5:a8:01:d8:2c:6d:ae:6b:f7:3b:
26:ac:d6:8a:ad:71:08:f8:a0:cd:47:74:eb:d2:66:
7c:9c:87:fa:30:06:22:36:a2:65:98:5b:5d:03:95:
b7:f5:e5:02:04:8d:64:f1:39:30:1d:1c:1a:e2:52:
6a:f4:f2:b0:6a:36:f4:82:09:ba:17:f6:11:18:f9:
b7:d6:18:19:8b:f1:57:3a:34:6f:5a:3e:fd:84:ed:
b9:14:0b:e3:93:83:81:d4:dc:99:ac:55:ce:53:60:
fe:ad:6a:f2:c5:7b:ec:fc:ef:6b:ba:3f:48:f0:30:
8c:4b:d1:95:09:71:5c:5e:5a:7b:74:d9:3f:a6:53:
da:e4:33:6a:a4:c1:3b:8c:a5:8d:b8:14:e1:69:83:
fd:0a:61:ad:01:dd:1b:89:1e:f8:40:61:7d:2e:b0:
be:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:2A:46:B5:01:99:AE:61:43:9B:B7:11:65:69:EE:BF:67:90:2B:D1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E1E48358CD3F11EF865D8EB9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.243.92.0/24
Signature Algorithm: sha256WithRSAEncryption
35:73:da:f3:62:d7:5d:a7:4f:ae:f1:bf:4b:ea:04:cf:27:80:
27:8b:ae:e8:c1:25:04:72:6e:67:00:68:bd:73:45:bc:46:80:
73:65:f0:98:29:ef:fa:78:be:66:73:fc:52:66:fa:d4:a2:3e:
55:ff:db:0e:20:a7:ac:ec:09:7d:10:74:b5:ea:ee:1e:9b:98:
66:e5:78:94:28:c4:15:d5:bf:01:2e:74:ff:d2:e3:da:19:2d:
d6:1a:c4:ce:ad:85:25:67:49:47:37:d0:54:fe:93:51:ac:93:
96:02:14:e1:a1:3d:31:74:10:38:cf:1e:72:65:15:1e:de:c7:
3e:02:cc:f4:8d:3a:29:0f:b9:98:67:9d:fb:52:28:3b:86:1c:
74:91:30:53:d8:f0:4d:1b:ef:0e:f1:a9:0f:3b:7b:26:eb:60:
3f:b5:1a:b1:b4:7d:a0:f7:3d:d5:6d:54:16:70:45:b9:51:b3:
3e:f3:e4:4a:cc:43:7f:2f:df:7a:a0:64:fd:14:e8:4c:d2:61:
d1:5f:6e:87:ea:73:cb:29:5a:7b:e6:b2:af:e3:29:b5:28:86:
06:ac:bf:4e:62:86:07:9a:18:5c:4c:8a:46:ae:63:69:08:4c:
4f:85:0a:03:61:ea:f0:f7:40:48:95:07:bc:29:06:d3:9e:19:
88:c6:f8:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:56:18 2025 by rpki-client