Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EEAE5656C97811EFB2CA4444762E951A.roa
File: EEAE5656C97811EFB2CA4444762E951A.roa (raw, json)
Hash identifier: quvF0d8bhRtTVylHzwf5TQN9syOx3ul4Ij+y3BZsJCM=
Subject key identifier: 5A:5D:75:BA:79:46:02:D5:8A:7F:67:68:63:58:89:4A:D8:B8:16:3E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F501
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EEAE5656C97811EFB2CA4444762E951A.roa
Signing time: Fri 03 Jan 2025 02:17:51 +0000
ROA not before: Fri 03 Jan 2025 02:17:47 +0000
ROA not after: Mon 13 Dec 2027 02:17:47 +0000
asID: 17561
IP address blocks: 156.227.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62721 (0xf501)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 3 02:17:47 2025 GMT
Not After : Dec 13 02:17:47 2027 GMT
Subject: CN=677748cf-95ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7d:2e:45:b3:c6:c7:66:b4:e0:ff:58:c7:b4:
da:38:6a:ef:d1:41:d7:b9:16:4f:2c:ec:67:75:36:
a3:5f:ef:a6:f1:61:73:85:d1:7e:9f:21:b6:42:f4:
64:e2:ff:6f:0a:0e:0f:42:42:74:5b:15:cc:8d:3f:
37:63:49:bc:ea:8a:70:75:8f:42:cc:fc:a2:c0:d1:
46:a4:54:d8:b1:cb:d5:09:a1:2a:e1:32:4b:9f:06:
d6:a7:50:ce:1e:3f:0a:4e:4f:4a:09:99:3b:74:8f:
5b:44:ae:b5:68:df:a6:2f:ed:27:9f:b0:83:f2:e3:
40:23:f1:cd:1e:c1:ee:d4:44:3b:2b:f2:6e:64:d5:
c8:43:25:bd:3b:9b:e4:f4:ee:51:fa:7b:95:70:aa:
81:86:c1:8d:c7:8b:a8:3d:d0:dc:1c:96:de:dd:19:
d9:5f:15:43:4f:43:d0:5e:5f:8c:8e:47:08:87:ad:
cd:6a:59:10:c2:e0:c1:6f:de:3e:f5:55:2f:08:ef:
23:c3:5e:6c:1e:4c:c5:35:0c:16:87:65:7c:44:56:
47:1a:9a:7c:34:28:6a:de:a3:a1:3e:df:ab:4a:9d:
11:cc:9e:4d:46:c7:3d:d8:b6:c9:0c:e1:cb:69:a2:
f0:96:f7:fe:15:04:ee:ab:bd:04:50:35:1c:76:c9:
6a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:5D:75:BA:79:46:02:D5:8A:7F:67:68:63:58:89:4A:D8:B8:16:3E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EEAE5656C97811EFB2CA4444762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.114.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:ba:b9:3e:ff:5d:dc:66:41:f6:44:00:af:40:ba:eb:0d:2d:
25:c3:6b:c8:80:48:6f:d0:cc:9e:fa:a9:4b:4e:58:a2:93:b1:
4e:90:4d:e6:73:ed:41:be:71:19:9e:fd:c1:f0:c5:88:2f:1b:
27:07:d6:68:da:95:8c:94:36:5a:7f:1e:3e:a6:22:6f:6f:51:
28:4e:09:1e:85:a9:f3:91:f8:5d:75:8d:21:b5:23:64:4e:bc:
ed:77:f9:39:ac:fa:fc:75:30:fd:c3:99:27:2a:3a:bd:2d:62:
b8:1d:6e:73:68:5f:9e:9d:3a:65:07:54:c6:7a:a4:9c:6c:1b:
63:a1:d2:e9:99:30:f1:4a:69:d0:c1:3e:1a:99:f2:06:f8:95:
15:43:4b:dd:ee:59:9b:3c:c6:2b:c6:5d:70:05:54:93:2b:56:
38:34:83:73:ee:ab:61:46:5f:52:4b:ef:d2:07:8e:59:2a:5f:
c8:93:d8:fc:3f:17:f7:24:e0:9f:86:f7:32:eb:ca:fb:54:0c:
e5:95:01:91:8d:47:be:61:87:08:f7:c9:66:cb:17:aa:a5:6d:
d0:28:1e:69:01:39:0b:97:d6:ae:07:48:4c:c5:e1:f6:08:de:
4e:cf:b0:88:49:94:ad:5c:8a:13:ed:f1:94:93:1f:7c:85:db:
3c:d4:78:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:47:18 2025 by rpki-client