Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0C707840C33911EF9D91B387762E951A.roa
File: 0C707840C33911EF9D91B387762E951A.roa (raw, json)
Hash identifier: jUZY5xdvllWh2s1diZgSPVR0gd9i1/oTWgEhbZt9r4U=
Subject key identifier: 8A:F7:21:36:AD:FB:9B:BA:F7:7B:92:F1:7C:06:0D:96:1C:D4:12:78
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EB6D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0C707840C33911EF9D91B387762E951A.roa
Signing time: Thu 26 Dec 2024 03:25:26 +0000
ROA not before: Thu 26 Dec 2024 03:25:23 +0000
ROA not after: Fri 10 Dec 2027 03:25:23 +0000
asID: 17561
IP address blocks: 156.244.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 30 Apr 2025 00:26:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60269 (0xeb6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Dec 26 03:25:23 2024 GMT
Not After : Dec 10 03:25:23 2027 GMT
Subject: CN=676ccca6-f1be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:cc:59:82:60:97:43:9d:b3:a7:74:8a:24:0d:
46:8f:99:f1:e3:91:21:e2:77:24:e5:54:5e:c1:64:
15:4e:79:c3:56:02:e2:1e:65:f4:81:54:a7:2e:a7:
a3:ca:b7:26:1c:14:20:1c:da:8c:01:30:ca:97:4b:
d3:3d:3c:f7:52:12:2a:fe:67:39:fa:8f:87:05:c7:
96:93:c9:cf:4b:f5:0e:05:dd:d0:10:db:50:33:43:
21:87:cb:fb:30:87:49:7b:a6:c5:36:73:87:0f:86:
9f:f9:7e:b6:43:7e:eb:e7:37:b0:bb:82:4a:60:4e:
b7:72:62:25:3a:7b:aa:c3:41:c5:f0:8a:c7:0a:4a:
26:c1:86:d3:c1:06:8b:1b:62:a5:4d:ab:9a:da:b3:
d1:53:9e:24:f8:0d:b2:06:1e:d6:38:9f:37:33:1c:
df:0c:3b:e5:6c:f8:01:89:4e:6c:1b:c7:8f:46:90:
6a:12:78:03:d8:f4:aa:8c:39:32:c5:dd:b9:d1:4a:
34:cb:6a:5c:32:c1:71:a7:0b:6a:a0:cc:bc:51:03:
a0:f9:1c:c7:e2:f7:16:fc:f6:bc:73:8f:02:30:37:
eb:ea:85:47:95:8d:31:61:a1:97:0f:19:c7:c0:06:
99:d8:ab:c7:8a:e4:88:fa:42:d3:b2:e0:f2:24:99:
18:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:F7:21:36:AD:FB:9B:BA:F7:7B:92:F1:7C:06:0D:96:1C:D4:12:78
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0C707840C33911EF9D91B387762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.178.0/24
Signature Algorithm: sha256WithRSAEncryption
86:fa:c7:6d:1f:ce:ce:ac:92:bb:0f:f6:2b:72:50:5b:53:b7:
ad:27:b9:4a:0f:29:71:4e:f8:1b:79:e9:7d:21:b0:2e:9f:15:
db:eb:bd:0e:42:94:e2:14:38:3c:7f:db:23:b0:b0:9a:58:a0:
93:87:e8:bb:a3:9a:96:35:33:f2:11:5f:1e:50:8d:f9:50:25:
73:ca:87:d2:ec:d2:28:60:ad:96:f7:05:c2:f1:25:1e:7e:46:
c0:64:06:bc:c6:e7:64:6b:33:e4:9d:b7:5f:8f:3f:1c:d5:cc:
84:6c:8f:c0:5f:33:b6:c1:16:8f:3c:05:30:76:0c:97:14:89:
7c:59:d4:ea:44:ea:5d:f8:e8:84:56:30:53:d4:a1:fa:06:d2:
1a:66:7d:f8:63:c8:ee:92:a6:7a:50:26:a6:8a:f1:e2:56:c5:
0e:fc:d0:f9:12:0f:21:ef:52:a2:94:93:fd:a9:6d:f5:0a:79:
f5:3a:d2:b6:d0:db:67:4c:a5:13:5c:3d:ea:71:10:a8:7f:5f:
42:40:13:f2:91:c3:10:ae:1e:7d:20:dc:cf:f5:08:c3:fe:54:
5c:cc:74:12:95:4f:18:59:68:ef:ee:e9:6d:28:6b:0d:60:ae:
45:10:2d:ae:92:89:39:89:f0:4b:4e:19:e1:23:a6:1e:e8:f9:
f7:28:a0:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:58:33 2025 by rpki-client on console.sobornost.net