Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/11B0339ECFFB11EF907D96B0762E951A.roa
File: 11B0339ECFFB11EF907D96B0762E951A.roa (raw, json)
Hash identifier: vzaly6S6LpC09I3LopRm0AlJ4Dm0iflDrnaNJqiQbWw=
Subject key identifier: AF:16:DA:74:42:79:D6:13:E6:AD:A9:17:3A:BA:59:66:CD:FD:76:8C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010588
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/11B0339ECFFB11EF907D96B0762E951A.roa
Signing time: Sat 11 Jan 2025 09:04:31 +0000
ROA not before: Sat 11 Jan 2025 09:04:27 +0000
ROA not after: Sat 15 Feb 2025 09:04:27 +0000
asID: 397423
IP address blocks: 45.194.28.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66952 (0x10588)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 11 09:04:27 2025 GMT
Not After : Feb 15 09:04:27 2025 GMT
Subject: CN=6782341f-7d7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:82:f6:71:aa:ea:98:aa:72:fa:0d:11:38:71:
16:a1:d0:3a:6e:26:e9:de:ac:58:c7:aa:5f:67:7e:
ef:cc:13:8f:8b:ce:39:47:5c:0e:56:28:9d:e9:57:
df:b2:01:be:6b:03:a9:78:41:8e:78:ce:73:2a:4d:
14:36:ce:7b:80:3e:75:80:04:16:4f:07:79:1c:ba:
49:76:ab:80:e7:bd:6e:de:af:69:d5:a4:25:7f:77:
ba:17:68:bf:37:74:f3:e3:39:bb:86:f0:40:3b:20:
2d:b9:de:c5:35:71:1f:dd:80:17:b6:58:66:b7:19:
f2:10:08:27:72:7e:13:8e:38:d7:63:cb:aa:f2:51:
55:09:bc:9c:23:0a:72:a0:79:a6:a7:2a:55:4d:e4:
42:e2:10:22:cd:5c:7d:8b:d5:4a:d6:6b:09:21:c8:
25:3a:02:d5:8a:66:d2:ee:91:b3:33:38:a7:20:b6:
17:c0:44:99:f7:9c:aa:1c:b5:a5:4e:18:af:f1:80:
39:31:c9:44:62:b9:b0:7f:d3:9f:00:bb:8c:d5:fe:
ef:28:2c:bf:37:c8:18:80:6f:9b:47:ed:8f:56:18:
18:07:0a:b8:f6:8e:27:20:24:1d:85:3a:0c:f5:3b:
a7:15:31:32:ab:00:0d:ff:49:3a:e6:12:9f:18:fe:
0a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:16:DA:74:42:79:D6:13:E6:AD:A9:17:3A:BA:59:66:CD:FD:76:8C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/11B0339ECFFB11EF907D96B0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.28.0/24
Signature Algorithm: sha256WithRSAEncryption
53:d6:4d:a0:b7:00:2b:31:49:51:6e:e3:51:18:2a:11:f8:7e:
d9:fb:84:a4:70:53:e7:24:76:e6:43:32:34:5c:4f:01:e3:82:
ce:88:a6:a7:ee:88:d5:ac:29:b2:15:1b:7b:0b:b0:b7:e5:00:
a9:bc:20:59:af:54:93:18:90:20:f0:bd:4e:da:b3:51:4d:56:
c8:c8:db:79:b4:c8:0e:7b:a6:7a:d7:42:0b:c4:ca:ea:29:1c:
cb:13:5f:d2:97:f8:b9:c7:dc:20:35:13:e8:98:37:b3:e1:a1:
0c:bd:d7:63:4d:ad:b3:7f:4d:cc:07:e2:83:bf:56:95:60:12:
de:3b:ef:46:ad:fc:ff:b8:e2:a0:27:b7:3d:d9:57:9c:1f:74:
c5:14:4c:17:22:65:0e:a4:99:a7:90:59:80:de:59:8e:cf:1b:
cf:e7:87:c8:d3:90:84:20:10:15:a5:29:17:3a:0f:5c:62:e7:
70:ab:3b:e9:c6:af:3b:05:1f:7d:5c:de:4f:b7:10:95:10:99:
5c:bd:39:dd:f8:31:21:ae:b6:c9:4c:3d:32:1b:cb:18:20:2d:
ec:8a:ad:3b:1c:47:77:1d:20:b2:17:1b:49:5b:c6:75:39:74:
a0:0d:44:46:4c:a3:30:ec:47:b6:4b:a5:1c:f4:79:13:e3:62:
cf:e9:f0:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:39:17 2025 by rpki-client