Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E28E63F2C33811EF9FB2B185762E951A.roa
File: E28E63F2C33811EF9FB2B185762E951A.roa (raw, json)
Hash identifier: 1YyD5srZXg8Fe262R9oWH5f9lLMhSBlGgsKnsyCS3vM=
Subject key identifier: C5:A3:E4:F7:FF:41:E3:CE:5B:A5:9C:25:65:35:A1:D9:92:D9:6F:71
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EB6B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E28E63F2C33811EF9FB2B185762E951A.roa
Signing time: Thu 26 Dec 2024 03:24:16 +0000
ROA not before: Thu 26 Dec 2024 03:24:12 +0000
ROA not after: Fri 10 Dec 2027 03:24:12 +0000
asID: 17561
IP address blocks: 156.244.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60267 (0xeb6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 03:24:12 2024 GMT
Not After : Dec 10 03:24:12 2027 GMT
Subject: CN=676ccc60-3f5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:0e:04:bf:1f:68:df:18:a6:2a:18:82:06:6a:
a6:c2:5f:cc:3a:f9:39:85:c0:42:0e:a9:2c:3e:00:
46:eb:41:c1:6b:81:f2:60:e0:1e:72:a1:bf:2b:90:
99:fb:7b:9a:bc:e9:81:ff:51:dc:f4:4a:2f:aa:3f:
3f:df:4f:8d:50:26:20:8c:ef:5b:6e:c3:ef:65:38:
e2:f3:bc:7d:32:cf:fb:54:f0:f0:98:6d:11:11:a2:
d4:ed:12:9c:68:8d:d5:c7:e6:aa:08:7f:77:ed:e5:
d8:30:d1:57:e6:b7:9b:55:0c:44:75:92:c3:d9:7c:
fc:7a:93:46:b2:d7:e6:be:66:df:b0:55:cd:85:d5:
a1:a9:59:c7:5b:03:fb:cc:6b:74:af:1d:a7:f5:b8:
fb:9d:02:2d:00:6c:8c:ab:c4:39:42:5f:2c:07:26:
d1:1d:7f:65:3b:9c:12:60:a1:27:ec:db:c4:9f:e5:
52:c0:26:f5:60:c6:d8:dd:d0:a4:90:ef:34:ff:08:
17:34:c6:ee:7b:01:da:e6:a2:66:66:69:d3:94:e3:
e1:8f:e2:15:fc:65:33:d3:b1:20:3a:5c:f9:3d:3e:
a0:cb:a5:7d:e6:6a:fb:55:35:86:25:00:95:81:31:
f2:2a:61:fa:34:d5:c7:21:90:11:99:ec:98:d1:e0:
16:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:A3:E4:F7:FF:41:E3:CE:5B:A5:9C:25:65:35:A1:D9:92:D9:6F:71
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E28E63F2C33811EF9FB2B185762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.177.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:31:3d:d4:bc:ed:e5:53:b5:d0:0e:73:ff:e4:fa:c9:59:52:
ef:28:11:a9:fb:09:33:0e:c0:e0:8b:e0:bb:8d:1a:48:37:1e:
b9:f2:ca:49:20:3a:89:85:c4:a6:be:66:4a:52:09:e2:0a:7c:
91:68:93:0f:a6:34:4d:c6:3e:5f:1e:51:3c:29:b1:7d:45:17:
e9:b7:c8:4f:21:f3:5f:78:00:15:ff:f1:b5:63:74:f0:9d:76:
29:c2:aa:e2:87:ab:61:dc:dd:84:16:ad:39:a6:ee:41:cc:33:
86:9a:b6:30:ca:20:91:c5:d1:f0:1d:35:80:6c:3e:bf:53:be:
75:65:81:f7:b7:03:84:76:60:1f:49:3e:b5:fc:6d:30:8d:f4:
55:9b:73:35:af:73:18:8d:ff:c7:05:c8:6c:18:12:fc:19:5a:
6d:e4:07:e9:f7:da:36:60:0e:b5:e8:68:37:ee:b8:3a:ad:cf:
b7:1d:05:21:c8:2d:8c:cd:a8:55:81:c7:8c:2a:76:0c:12:98:
b6:2a:9a:d9:33:9a:77:80:8d:7b:22:65:92:e2:4f:45:84:47:
d4:d6:48:fd:f0:73:d1:61:0c:8b:fd:69:d4:9e:91:d5:fb:8e:
4f:9c:c1:b5:17:88:1f:2d:67:12:18:87:75:5d:15:97:b5:91:
e3:b8:4c:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:00:29 2025 by rpki-client