Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E274E0ECC98411EFB91AF498762E951A.roa
File: E274E0ECC98411EFB91AF498762E951A.roa (raw, json)
Hash identifier: iVsNfEuD6dLWsXq/EIqZfNksb9wjI5hGVAmn0xzoKBE=
Subject key identifier: C7:2E:88:E6:26:15:30:FD:D3:2F:2E:49:A2:F6:FB:B7:81:DC:CA:C5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F573
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E274E0ECC98411EFB91AF498762E951A.roa
Signing time: Fri 03 Jan 2025 03:43:24 +0000
ROA not before: Fri 03 Jan 2025 03:43:21 +0000
ROA not after: Sat 13 Dec 2025 03:43:21 +0000
asID: 984
IP address blocks: 156.232.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62835 (0xf573)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 3 03:43:21 2025 GMT
Not After : Dec 13 03:43:21 2025 GMT
Subject: CN=67775cdc-a408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:2b:cc:42:dd:69:97:bc:25:21:78:4a:03:70:
4a:90:97:70:d6:88:97:20:30:39:5b:7c:80:17:b6:
c5:50:0d:e6:fb:44:23:37:ae:39:8b:3a:4d:f6:8b:
05:2d:88:3e:39:a3:19:30:d0:dd:6e:9c:b9:72:77:
b5:d5:8d:32:a8:bb:ff:ec:a6:c0:f8:af:f6:36:39:
38:5f:f5:74:a4:34:57:78:27:0e:a0:10:16:7a:c9:
3b:e6:56:0a:1c:25:c5:e9:ab:f6:35:77:42:3b:d8:
15:9c:18:0f:06:01:8a:59:76:36:98:6a:b5:d1:aa:
b9:f7:56:73:8c:71:9b:6f:e1:d8:df:5e:dd:27:ed:
ef:76:08:75:06:bc:f3:c7:0c:fe:03:e6:16:81:53:
70:e9:aa:80:d7:c6:f9:95:75:28:91:c7:35:b8:45:
60:ae:fd:84:27:78:4a:e0:d6:c9:39:d9:30:9c:4e:
c2:a2:22:82:c6:c6:0d:c8:6f:32:dd:8c:df:fe:d2:
65:de:ec:02:2c:fb:76:4f:a6:91:17:11:2b:b8:48:
3e:cb:ad:a1:75:db:89:3f:44:83:db:70:69:d5:24:
8f:f3:e4:9b:db:0b:04:a5:0f:5f:3d:f9:77:94:4e:
1d:2a:da:7c:bf:ac:be:7b:f7:94:5a:6c:e8:a7:35:
53:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:2E:88:E6:26:15:30:FD:D3:2F:2E:49:A2:F6:FB:B7:81:DC:CA:C5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E274E0ECC98411EFB91AF498762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.69.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:e2:e2:8a:21:0e:7d:64:c1:11:7e:f3:6d:ac:99:49:59:59:
e8:7d:b3:77:07:4c:97:9e:f4:4d:a0:b3:66:94:2c:59:42:68:
b4:52:1a:93:35:a8:50:64:20:ae:30:dd:b0:c8:00:c3:a1:ea:
29:58:31:bb:51:6d:a1:c6:16:14:1d:2a:0b:33:ab:4c:ca:0a:
36:9c:9b:22:c9:80:37:ff:a9:5e:5f:b3:da:78:63:d5:21:e8:
9c:3c:0b:cb:43:7b:b2:53:ee:91:a2:3f:bd:24:fd:b1:b6:85:
9b:2b:cb:68:aa:80:e1:c4:a2:57:07:78:e7:dc:f4:39:21:2d:
86:d6:d6:19:8d:f3:ba:43:e4:16:76:22:99:38:24:4f:c4:18:
57:b5:55:6c:5f:88:48:f9:4e:9a:ac:55:cf:36:94:3a:67:a7:
8a:d9:be:d3:14:17:2a:44:55:1c:13:b0:0c:4f:65:42:53:00:
df:55:7f:59:66:ea:53:b2:aa:27:24:4f:40:02:24:cb:2e:c4:
7f:28:5b:1e:d6:a3:b0:c6:85:07:e0:a4:c6:77:28:ba:a6:d7:
53:5d:9d:65:97:ed:bf:3d:62:28:8e:93:a4:35:59:ba:c9:aa:
f0:42:22:ba:9a:3e:05:2e:a8:6c:e4:f0:43:32:5f:6e:5e:ab:
f9:4b:2d:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:37:25 2025 by rpki-client