Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F850FD36C32811EF96235B93762E951A.roa
File: F850FD36C32811EF96235B93762E951A.roa (raw, json)
Hash identifier: ulOqQFBcQyyUKOFM+9ybXHdcTkqCnGH/JTAB85Jifu4=
Subject key identifier: 41:C4:4D:66:F9:76:3C:1C:39:0A:A3:58:CE:4D:4F:CE:30:69:99:45
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EAAD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F850FD36C32811EF96235B93762E951A.roa
Signing time: Thu 26 Dec 2024 01:30:21 +0000
ROA not before: Thu 26 Dec 2024 01:30:17 +0000
ROA not after: Fri 10 Dec 2027 01:30:17 +0000
asID: 17561
IP address blocks: 156.243.150.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60077 (0xeaad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 01:30:17 2024 GMT
Not After : Dec 10 01:30:17 2027 GMT
Subject: CN=676cb1ac-954c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7c:62:67:bd:00:99:a6:31:e7:4f:e8:5c:63:
3f:a2:da:2d:ff:89:1a:a3:7d:f1:74:35:4e:b9:7a:
b4:15:48:5e:a5:d2:ac:a4:09:48:23:91:73:0c:fd:
b8:9b:0f:24:fe:4e:32:81:a3:78:1d:2e:ee:e1:af:
3c:62:ca:90:d0:01:df:80:34:de:ad:ee:e1:62:17:
52:e2:b1:bb:b5:2a:87:c5:c0:c1:18:62:be:55:a4:
8e:9f:0f:1c:4b:b6:8c:bf:6d:92:b6:07:2b:1a:48:
e2:4a:0f:97:8e:a2:af:95:32:f5:c9:3f:28:04:cf:
3a:17:77:fe:78:42:a3:aa:11:39:4f:c8:a9:a5:a0:
99:b6:0d:38:23:4a:95:a3:06:db:af:01:f1:d4:59:
11:1f:eb:09:5f:2a:03:61:6d:a1:3b:76:af:f8:42:
4d:a1:fe:1b:db:17:b7:84:45:93:15:00:94:c1:a0:
c0:3a:0b:dd:0b:7e:b8:98:3f:22:3c:65:25:25:b9:
4b:5b:2a:89:f6:03:10:90:f8:18:8f:79:8c:33:1e:
cd:73:da:d8:c5:ab:15:cd:e3:2b:5e:25:d3:ad:6c:
64:76:b0:63:91:0c:8e:88:f3:3a:03:d8:29:1b:7d:
a5:cf:1f:12:cf:f1:16:b2:5a:6b:ff:94:3d:4d:ad:
cc:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:C4:4D:66:F9:76:3C:1C:39:0A:A3:58:CE:4D:4F:CE:30:69:99:45
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F850FD36C32811EF96235B93762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.243.150.0/24
Signature Algorithm: sha256WithRSAEncryption
57:d9:6d:53:8c:ed:9d:73:3e:e8:20:c6:a6:37:53:0e:86:15:
d1:dc:a7:80:f5:3b:96:17:05:20:a8:82:8f:6b:89:1c:cc:c8:
05:96:73:71:ae:ea:3e:e6:fe:16:25:34:9e:11:28:d2:b5:28:
54:d4:31:29:ac:56:01:ee:70:e7:a7:14:b6:f0:7b:53:ef:e3:
9f:19:4e:e7:5e:d6:f4:59:33:cf:68:3a:1d:50:3e:9a:c4:40:
a2:e6:e7:da:cc:76:f9:6e:6c:d1:c3:e8:c5:c2:2e:5f:96:54:
e4:db:c0:11:7f:83:32:fb:ca:af:eb:93:a7:46:b1:07:ec:a6:
68:a1:20:03:5b:a5:dd:c6:1c:0d:28:2d:70:04:18:8e:19:3d:
22:89:5b:b3:c4:e1:33:d1:10:ef:cf:ff:be:61:4f:12:16:7b:
1a:fc:eb:8a:35:9c:ef:dc:e5:92:d8:96:41:e4:9e:80:06:c2:
07:45:ae:63:c6:fd:1d:ee:ea:b9:0c:cf:ad:d8:cf:e3:ab:e8:
0e:98:fe:96:3e:c2:44:1e:57:12:d7:70:cf:bb:81:ab:c2:5f:
e7:3a:c7:f9:60:93:86:8b:e6:6e:29:5c:10:a0:c3:3c:93:7e:
16:c9:10:a3:4a:b3:96:94:bf:4f:8a:2d:f8:d9:65:dd:b2:83:
d0:e6:c6:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:57:58 2025 by rpki-client