Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E203A36CC98B11EFA025BB46762E951A.roa
File: E203A36CC98B11EFA025BB46762E951A.roa (raw, json)
Hash identifier: h/3derqABse8n28oAPETx7D8ml10QK/iMRJM95U086s=
Subject key identifier: 3B:B8:68:30:35:62:63:2B:09:A6:BA:34:C3:1F:C3:9A:03:51:12:71
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F5B5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E203A36CC98B11EFA025BB46762E951A.roa
Signing time: Fri 03 Jan 2025 04:33:30 +0000
ROA not before: Fri 03 Jan 2025 04:33:26 +0000
ROA not after: Sat 13 Dec 2025 04:33:26 +0000
asID: 984
IP address blocks: 156.233.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62901 (0xf5b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 3 04:33:26 2025 GMT
Not After : Dec 13 04:33:26 2025 GMT
Subject: CN=6777689a-e1cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:54:b0:09:6f:4b:53:7f:ae:e4:1f:bf:b8:ff:
88:22:a8:c3:65:d2:01:e5:a9:60:38:f1:ef:87:57:
9e:c2:65:90:2b:20:93:ae:68:b5:63:24:30:67:c9:
57:e1:db:8a:da:f8:c4:7d:3d:b2:de:0a:29:a7:8d:
ba:ba:a4:e8:f5:0f:ba:59:87:c2:d0:70:5f:3d:85:
69:11:f8:62:4a:9a:1b:4b:0e:5a:45:87:0b:a1:4e:
50:f4:81:4e:9b:29:a7:3d:c6:b7:2b:30:fa:1a:e6:
19:78:57:1e:14:35:f2:05:aa:8c:91:84:7a:6a:38:
a6:d5:2f:ce:c2:91:0c:90:56:0e:bf:28:60:2b:1e:
99:fc:6e:0c:9f:4d:b0:5e:96:e6:bd:97:6e:6f:ff:
27:72:2a:1e:87:d7:65:bc:bf:94:c1:63:56:b5:11:
40:dd:04:91:f6:24:c2:ce:ee:a3:f6:71:40:dc:2e:
ca:a9:d5:ca:c5:6b:e2:5d:d1:e3:e0:4c:22:2c:54:
54:15:79:08:86:1f:3a:50:55:ae:71:67:88:40:a5:
60:a6:d1:60:53:de:e1:a1:bd:9d:16:f8:ba:06:d8:
a5:31:37:bc:fc:69:23:9d:76:06:0e:eb:2b:8c:ca:
6e:81:23:22:0b:77:b9:76:fa:13:2d:50:95:d8:66:
7f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:B8:68:30:35:62:63:2B:09:A6:BA:34:C3:1F:C3:9A:03:51:12:71
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E203A36CC98B11EFA025BB46762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.45.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:30:44:76:57:59:f7:64:82:a7:df:ed:ae:f4:fa:85:d8:ae:
fd:a2:c9:3c:c2:8f:42:8a:77:f5:05:fd:25:28:a1:92:53:81:
db:f1:61:b1:54:00:cf:37:b1:fa:b6:f9:09:fc:84:82:40:8b:
d5:b1:9a:65:6a:5e:fa:97:d3:9a:69:0e:7a:80:a7:d7:3d:af:
18:83:d3:3d:82:f0:4f:a4:98:3d:c4:bf:fe:52:d5:7f:b2:01:
4d:f1:9c:1d:ac:20:3f:ea:32:14:2f:e5:ef:c0:54:b1:a1:b8:
45:26:18:48:ef:67:9a:1b:a8:8f:89:4f:9b:9f:dd:01:4b:b0:
e7:29:9a:5d:2a:68:5a:48:80:5c:99:56:17:57:74:c4:c6:d5:
a9:e6:09:7c:5e:ea:71:73:fe:d4:de:4e:e8:ad:11:27:48:fa:
f2:ab:a2:42:6c:91:20:08:e4:da:c0:3a:d9:40:be:e8:93:a1:
27:3f:12:04:6f:fc:11:cb:35:db:52:c0:a4:80:44:f8:4e:41:
18:db:51:d9:98:f7:e8:7c:03:7e:ee:27:fe:ff:3c:41:f0:f2:
db:fd:63:98:9d:be:55:fd:c4:f0:bc:54:eb:4b:45:44:03:c4:
a9:51:d1:f4:29:4c:53:a2:d8:e9:0e:cd:7e:24:25:86:9a:34:
08:72:07:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:58:47 2025 by rpki-client