Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0B8EDBECC3B111EF8F775E7B762E951A.roa
File: 0B8EDBECC3B111EF8F775E7B762E951A.roa (raw, json)
Hash identifier: g+DAe2qyPOL8ywsDYVWKU5OXdWCvTn4KJvl1SOBZEYI=
Subject key identifier: 04:8E:AB:04:86:E4:C8:37:4B:50:04:8A:D5:A2:E8:7C:D6:47:52:B4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EE41
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0B8EDBECC3B111EF8F775E7B762E951A.roa
Signing time: Thu 26 Dec 2024 17:44:24 +0000
ROA not before: Thu 26 Dec 2024 17:44:21 +0000
ROA not after: Sun 12 Dec 2027 17:44:21 +0000
asID: 17561
IP address blocks: 45.203.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60993 (0xee41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 17:44:21 2024 GMT
Not After : Dec 12 17:44:21 2027 GMT
Subject: CN=676d95f8-e90d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ef:03:18:cd:ab:64:23:52:0b:8c:3b:b1:b2:
53:ad:73:f5:48:fe:4b:7e:29:0f:3f:7c:d7:ea:b8:
2a:ea:33:7d:8a:49:19:4f:c8:aa:61:7f:55:33:31:
75:73:ab:2d:47:17:3b:6b:39:7a:28:88:a1:76:24:
62:70:61:52:d8:b7:3d:24:8f:35:2f:2d:03:2b:c7:
82:0c:f8:ed:e3:2f:9d:0c:44:4f:d9:82:10:77:2c:
ee:55:83:ad:38:b7:65:2a:85:82:27:f3:55:ce:4b:
ed:23:12:48:5c:30:f4:4a:a3:8e:a8:f6:61:cd:e4:
d5:c7:c2:d4:3a:d5:bb:8b:03:ce:01:8f:b5:e0:ea:
f6:a9:ea:58:59:54:be:d3:35:4a:f3:01:c3:d2:22:
2a:ef:46:20:f3:30:2e:4a:28:9c:c1:1f:14:4a:cd:
2d:a5:85:86:7e:dd:73:39:f9:ae:a8:c7:71:3f:37:
b8:b0:44:91:54:25:20:fa:f9:35:83:31:99:47:5f:
de:22:ee:08:34:9e:c8:6d:38:9d:63:ae:08:2a:d0:
0e:14:4a:cb:cb:8c:03:8a:33:9a:72:74:48:e1:9c:
f3:59:a3:c9:82:f1:c0:51:87:3d:bb:b1:0b:5c:28:
85:a0:a4:c5:35:7b:c5:31:a5:e4:41:a4:28:1b:0d:
ce:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:8E:AB:04:86:E4:C8:37:4B:50:04:8A:D5:A2:E8:7C:D6:47:52:B4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0B8EDBECC3B111EF8F775E7B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.203.34.0/24
Signature Algorithm: sha256WithRSAEncryption
06:d1:2b:a7:fb:cf:c3:39:62:ac:04:ad:3b:3e:11:f4:13:0a:
8f:4e:63:dd:50:34:3d:37:ce:61:21:24:3c:aa:6f:d1:89:9e:
f3:2f:8c:e5:fb:29:e1:39:c3:52:7f:82:44:fc:09:af:b2:2d:
a9:7a:b3:41:1a:21:78:4d:a2:4a:b9:88:73:cd:7d:3a:5a:2d:
5f:78:98:6b:ac:8d:13:17:c5:c5:2f:48:e8:7a:a4:9d:0f:a3:
16:38:6b:96:9c:71:1b:e1:a1:f0:7d:ad:2e:49:36:f7:5f:2e:
c4:e6:fe:bd:ee:21:c7:d6:14:b4:84:96:67:b6:aa:78:c5:f1:
7c:45:10:08:55:83:d2:2b:7d:8c:c6:f7:04:ae:f2:cf:ed:ea:
54:1c:14:05:dc:3f:12:95:6d:ac:46:2e:cc:94:7a:e5:93:58:
9e:da:94:9d:fb:ca:b0:e3:00:bb:bb:09:cd:5c:86:44:9b:3d:
6b:9b:22:b9:4e:ca:cb:61:68:d0:91:39:b7:e8:71:38:77:72:
db:86:94:11:be:19:e3:90:f2:3d:e2:a7:fe:e1:7e:1e:9f:3d:
cd:d4:8e:b3:89:a8:68:2b:41:2f:1b:65:15:96:ce:92:bf:1a:
51:b6:05:90:00:87:32:ef:1e:e3:75:67:23:eb:dd:08:2d:a8:
6e:42:57:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:55:17 2025 by rpki-client