Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F5A0416ACBD311EFAF57D4AE762E951A.roa
File: F5A0416ACBD311EFAF57D4AE762E951A.roa (raw, json)
Hash identifier: c5iUaZ52IHHiLsA8Q812daxKzXDNvg09vF4buR6NgJg=
Subject key identifier: 2D:97:E5:BF:9B:93:D5:85:89:07:FB:26:AE:F0:89:6C:0B:DE:91:3A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F7CE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F5A0416ACBD311EFAF57D4AE762E951A.roa
Signing time: Mon 06 Jan 2025 02:14:29 +0000
ROA not before: Mon 06 Jan 2025 02:14:25 +0000
ROA not after: Sun 09 Feb 2025 02:14:25 +0000
asID: 203020
IP address blocks: 156.237.70.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63438 (0xf7ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 6 02:14:25 2025 GMT
Not After : Feb 9 02:14:25 2025 GMT
Subject: CN=677b3c85-3de1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:13:92:9c:b0:be:26:9c:97:d8:97:96:48:81:
70:49:10:b2:75:c0:30:59:a3:3f:9b:86:43:c8:33:
bd:56:22:ae:62:69:a6:fe:b2:33:c0:49:d5:20:60:
e4:a8:c3:f2:7a:49:cd:70:d1:d8:1d:7c:b4:26:23:
44:69:ae:58:bf:a5:67:4b:5c:df:6d:2a:0a:cc:7d:
9e:96:08:68:c8:b3:f6:7c:6a:1b:47:57:18:e8:aa:
82:23:e4:2c:6c:14:8e:c8:7b:6a:8d:53:ab:aa:5e:
64:3f:ca:34:42:c5:24:ee:16:53:9f:d6:7d:df:0b:
fa:b8:87:0f:2b:01:9c:67:07:f1:ea:8d:95:d6:76:
31:03:43:94:dc:38:aa:3c:a9:8d:5a:0a:dc:2c:c5:
d4:8c:a0:2d:ff:32:de:d0:49:aa:34:3c:87:26:d5:
3b:2c:6f:7b:a4:d7:2b:fa:92:24:a0:ec:ba:62:9d:
61:c4:ee:ac:80:34:57:24:89:ba:5b:6d:ed:2f:76:
38:02:5d:2f:f0:f4:c0:e4:13:0a:6c:6d:f1:dc:94:
13:bf:5b:8e:d8:6d:6a:e9:d1:53:56:a6:64:09:2d:
73:fd:8c:b1:28:2d:f2:5f:be:45:63:c4:8f:cf:6c:
7e:95:c4:9c:8d:07:75:d6:2e:ba:fe:3d:a1:f9:2b:
5f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:97:E5:BF:9B:93:D5:85:89:07:FB:26:AE:F0:89:6C:0B:DE:91:3A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F5A0416ACBD311EFAF57D4AE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.237.70.0/23
Signature Algorithm: sha256WithRSAEncryption
52:61:6d:b1:f6:3e:84:b9:a3:3d:1f:ba:b9:b7:c0:3b:e8:5a:
bd:b8:bb:ce:9c:26:9b:a6:25:fe:5b:ec:50:0b:56:66:ec:2e:
11:67:df:af:39:b5:a1:6c:e8:6c:e4:b9:aa:a0:d6:67:d8:2a:
c0:2c:d0:dc:a7:b0:be:4a:bc:ad:7b:6f:63:ee:38:90:2c:70:
f7:00:45:f7:56:d5:5d:32:4c:f9:8a:f8:08:88:7a:15:a5:fd:
4f:10:60:34:d8:44:ce:10:4d:82:25:de:d1:78:1f:51:30:d2:
bc:f4:1f:61:7c:1d:8d:5c:1a:e6:4d:8b:74:4a:9d:3d:0f:29:
79:53:09:00:f6:0b:7d:88:7d:b2:8f:50:99:6d:61:19:54:88:
79:8d:81:02:80:02:f4:2e:5b:2d:38:b7:3f:c5:98:fb:74:34:
96:d2:d6:81:30:c3:2e:db:eb:32:79:9e:0b:e7:6c:5e:22:f3:
b5:24:5c:a5:b4:86:f0:e9:c5:6d:25:24:df:b2:66:f4:7b:7d:
f1:ba:a4:f9:30:94:37:f3:a0:d4:11:98:40:26:9e:60:b2:4d:
6e:ba:fd:4d:29:f2:e5:1e:33:96:c9:98:c2:15:19:8b:ed:e2:
67:04:31:30:3e:59:60:7c:50:b4:88:0e:54:8f:6f:d0:43:43:
bf:e8:42:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:39:24 2025 by rpki-client