Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F2B594B2CEF511EF896FC0AC762E951A.roa
File: F2B594B2CEF511EF896FC0AC762E951A.roa (raw, json)
Hash identifier: vIkEsErw55XLtrS+3eBdX9u/oVzsuQf/uh5aUne4sBU=
Subject key identifier: 7D:4F:7D:4D:17:14:67:AC:13:BF:C0:C3:BB:27:A2:E3:2B:39:79:94
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01048F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F2B594B2CEF511EF896FC0AC762E951A.roa
Signing time: Fri 10 Jan 2025 01:55:21 +0000
ROA not before: Fri 10 Jan 2025 01:55:17 +0000
ROA not after: Wed 12 Feb 2025 01:55:17 +0000
asID: 20473
IP address blocks: 156.236.78.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66703 (0x1048f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 10 01:55:17 2025 GMT
Not After : Feb 12 01:55:17 2025 GMT
Subject: CN=67807e08-ae45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2e:d7:58:af:08:d0:3f:46:46:be:9a:18:c2:
b7:50:f9:d8:21:96:1f:8f:30:a9:92:47:03:6d:32:
a0:ed:75:c7:e6:a6:e9:c5:c8:7f:49:25:f3:80:cf:
14:a1:ef:1e:80:d0:7d:0c:21:bd:a2:75:69:49:38:
24:e3:f4:ae:b5:97:03:d6:48:ac:b5:35:b8:46:00:
0c:c7:f9:e8:32:49:05:68:33:e9:5a:83:50:4a:ef:
9f:4c:da:ab:ef:ab:e3:1c:dd:13:93:eb:87:12:e9:
49:d6:0d:65:ab:ac:9a:f5:20:91:76:ea:ff:93:d7:
88:3d:37:2f:fb:c5:c9:57:9b:66:03:3a:c8:81:ba:
06:dd:38:66:12:ed:fa:a8:17:13:21:a7:1a:1e:23:
ab:a3:c3:9b:9d:72:91:44:1a:69:de:82:21:a3:06:
d7:20:6b:4e:60:1f:14:64:f7:e6:f6:d8:06:78:de:
53:b7:63:c4:5c:ae:78:a4:2c:52:d0:dd:9d:13:8b:
55:ff:f3:5f:e0:69:e9:1c:6f:00:fb:cf:46:5c:00:
3e:07:99:e4:b5:b9:da:8c:d2:9d:d4:8a:51:7f:a5:
7d:ad:47:75:f6:04:08:f2:59:93:d3:30:d3:f5:57:
0e:7c:65:4a:e5:ae:8b:6a:2e:bc:73:f2:10:5f:40:
cd:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:4F:7D:4D:17:14:67:AC:13:BF:C0:C3:BB:27:A2:E3:2B:39:79:94
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F2B594B2CEF511EF896FC0AC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.78.0/23
Signature Algorithm: sha256WithRSAEncryption
a7:3b:02:e0:3d:c3:24:b5:53:bc:2a:d4:ce:d8:78:de:74:dd:
73:7b:50:db:d5:99:0b:9f:fc:03:92:c9:49:a0:f4:8b:e0:eb:
d0:d9:40:d0:c5:48:1c:3a:fb:97:88:5b:a1:16:2d:d9:e1:66:
42:c7:4d:9d:28:6e:d8:74:52:de:1b:bd:d2:0b:5f:c8:c4:40:
aa:83:cd:e2:46:df:06:43:95:0e:32:64:e6:4d:5e:86:52:59:
1b:9a:8c:b3:08:42:c1:de:3c:7b:b6:70:1a:0b:66:86:87:67:
da:15:9a:9e:ab:9a:3b:79:1a:9b:3f:5a:20:a3:7b:18:ad:f0:
e8:05:f7:f6:02:94:34:32:05:b2:db:9f:83:19:65:11:0b:15:
6d:76:14:04:0a:a6:48:6f:6c:eb:a5:b4:89:6b:51:34:95:e8:
5d:a1:33:c9:39:43:f5:18:6d:61:1a:22:f5:75:75:b3:b5:a8:
5e:2b:5e:fd:8f:d8:a7:75:d9:30:31:78:ee:4e:76:c9:30:50:
9d:24:39:bf:18:c8:c3:03:0e:5f:6f:7a:9b:b0:d5:9c:1f:7f:
9c:79:9e:fa:d3:f0:28:e1:92:a0:00:91:43:ca:d3:26:22:a9:
c3:fc:3f:b7:ec:12:72:a5:11:e0:2f:ff:0e:8e:b9:6f:6b:ee:
ee:97:f7:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:55:13 2025 by rpki-client