Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/04E660C4B60711EFB3C12F5A762E951A.roa
File: 04E660C4B60711EFB3C12F5A762E951A.roa (raw, json)
Hash identifier: 7dDJ4B2fFiREyCIfmXFCfOZoAynWMmAthuWtp5zQOMQ=
Subject key identifier: 8A:A8:5C:94:58:6A:9E:9A:90:0D:A8:24:C4:EA:47:EE:A0:98:1D:10
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E18C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/04E660C4B60711EFB3C12F5A762E951A.roa
Signing time: Mon 09 Dec 2024 08:24:34 +0000
ROA not before: Mon 09 Dec 2024 08:24:21 +0000
ROA not after: Thu 06 Feb 2025 08:24:21 +0000
asID: 150706
IP address blocks: 45.192.180.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Feb 2025 08:24:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57740 (0xe18c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 9 08:24:21 2024 GMT
Not After : Feb 6 08:24:21 2025 GMT
Subject: CN=6756a942-01e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9e:d2:e5:75:88:a5:19:ae:c8:c0:7e:b2:a4:
c8:f7:b7:aa:18:b2:01:e1:90:d8:8c:4a:62:fa:fc:
e5:46:ff:6f:11:ad:a9:4c:0d:b5:a1:02:39:b0:6e:
96:e3:7d:6b:4a:1d:ce:53:4b:59:52:8e:5b:a1:0f:
4c:fe:f7:7d:91:cf:a9:7c:4d:fa:d9:a8:ad:12:1a:
82:88:73:45:b4:ad:f5:6b:8a:8e:80:60:16:be:8c:
04:97:68:a6:cf:a3:b7:b3:74:64:69:9c:c8:32:4e:
26:51:a0:3d:b7:bf:fd:59:ac:d2:c1:fd:a5:c4:71:
f7:80:69:49:12:68:6c:6a:62:32:80:30:67:0e:a5:
aa:d7:6a:68:b5:2c:d7:5a:db:cc:50:e2:41:8f:74:
19:74:b8:b6:13:6a:80:11:37:a1:15:f1:7a:b4:26:
2e:28:3e:2d:82:e4:fc:88:3f:d3:92:96:8d:98:63:
5a:5f:ef:3a:64:fc:5d:61:f8:a1:12:e0:50:00:70:
04:d9:63:7c:48:3c:28:93:7c:ef:80:af:8a:ba:f8:
72:50:ec:7f:7a:3a:cb:4d:b6:cf:76:7e:df:96:28:
0d:c0:33:0b:cf:4e:44:c0:16:b0:c0:98:4d:12:59:
8a:10:d5:64:bd:f2:66:0e:1c:6d:e0:1e:3e:1c:a2:
54:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:A8:5C:94:58:6A:9E:9A:90:0D:A8:24:C4:EA:47:EE:A0:98:1D:10
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/04E660C4B60711EFB3C12F5A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.180.0/22
Signature Algorithm: sha256WithRSAEncryption
82:3f:0c:1f:49:13:7b:f5:d9:fa:7b:98:3f:92:bd:a1:29:b6:
38:88:75:db:1d:60:7e:07:36:07:78:d0:f9:7d:ba:35:32:b1:
d9:93:66:55:6b:29:a1:db:8f:48:19:24:59:f4:b2:93:80:f8:
45:62:51:80:b4:75:31:88:ab:38:56:55:0c:25:9a:8a:a3:bc:
23:16:66:04:7f:b6:ea:bc:16:7b:d7:df:1d:e2:d4:c4:fb:a2:
07:c9:97:47:31:d3:49:52:23:dd:2a:f8:34:4a:13:3f:4d:96:
d6:2a:94:5b:c7:55:ec:8e:e4:b9:f6:64:6d:ce:29:85:55:e8:
d7:99:69:1e:72:36:47:66:73:0a:58:ef:e1:b9:90:87:ad:5c:
ed:5d:9f:ce:08:ba:85:96:e8:68:3b:05:02:d0:9d:a7:ec:60:
c3:a8:a5:98:45:c7:21:8c:b0:4f:40:bb:df:47:8f:c6:4f:d7:
5b:a1:45:da:24:51:36:4c:71:15:6c:32:67:3d:e4:0a:1f:20:
ed:17:3a:4a:7e:0e:f8:d2:db:05:36:b1:9b:46:a4:f5:1b:1a:
4d:c8:81:96:69:f4:88:91:34:68:58:08:fb:52:84:de:83:fe:
8e:1e:50:d6:50:e4:9b:27:b8:32:b2:3a:21:2e:42:dc:20:f4:
18:4a:9c:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:58:59 2025 by rpki-client