Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1D23A166C38A11EF87DD7487762E951A.roa
File: 1D23A166C38A11EF87DD7487762E951A.roa (raw, json)
Hash identifier: c4BptuoTvTYLWxu0yGx7hxF46g9UYIuSTPqecegp7bE=
Subject key identifier: 81:2A:1E:BD:A5:C6:C0:B1:26:1B:18:8E:40:FC:14:79:84:A9:3F:1D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EC9F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1D23A166C38A11EF87DD7487762E951A.roa
Signing time: Thu 26 Dec 2024 13:05:43 +0000
ROA not before: Thu 26 Dec 2024 13:05:40 +0000
ROA not after: Sun 12 Dec 2027 13:05:40 +0000
asID: 17561
IP address blocks: 45.196.193.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60575 (0xec9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 13:05:40 2024 GMT
Not After : Dec 12 13:05:40 2027 GMT
Subject: CN=676d54a7-d1d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:0f:93:d0:df:c1:ab:0b:fe:d6:4f:be:71:d5:
31:c5:87:0e:c9:d4:b4:e6:e3:9b:6b:4c:a4:d3:7e:
cc:93:17:4e:34:19:d5:32:d9:2e:89:56:ea:50:4e:
9a:42:58:d8:e4:33:12:0e:96:f4:ca:02:9e:4e:09:
97:f3:f3:84:0e:23:62:fb:f0:e7:34:a9:c5:2d:af:
c5:84:29:2a:89:fd:e8:1e:4b:97:ee:db:2f:cd:3f:
7d:8f:de:dd:a0:b2:ea:78:86:e2:e3:c6:aa:dd:f5:
03:79:7a:48:26:08:05:df:fb:2c:f2:83:98:9a:a1:
a2:46:14:8e:af:de:4e:0c:37:48:42:cf:c5:29:b7:
6d:72:60:95:fb:ef:b1:ee:f7:6a:1f:f4:47:e5:ce:
dc:b0:18:7a:e1:11:61:11:09:17:ab:d1:90:30:40:
29:a7:07:2f:c1:ef:4b:1c:f4:a4:0d:c3:3e:8c:80:
02:99:41:04:b1:9e:09:7e:e3:9b:44:7b:ef:84:1f:
41:78:f5:8f:92:bd:18:06:e0:aa:77:ef:f8:90:aa:
0a:17:59:d6:88:e4:72:b7:2e:09:f8:45:a6:28:c3:
8a:82:5d:6b:66:de:e6:9c:7a:a7:58:92:bf:a0:6d:
3e:90:b3:c0:2a:f3:60:35:6e:13:1c:f7:85:46:f7:
e3:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:2A:1E:BD:A5:C6:C0:B1:26:1B:18:8E:40:FC:14:79:84:A9:3F:1D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1D23A166C38A11EF87DD7487762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.193.0/24
Signature Algorithm: sha256WithRSAEncryption
27:52:2b:01:ee:1f:46:1b:96:22:02:53:3c:09:fe:5c:6d:85:
7a:8d:33:f8:e5:e2:dd:63:8f:03:9c:91:eb:e1:95:fd:84:51:
c3:f7:66:99:e9:66:21:13:66:a1:6d:8a:5a:f9:85:c7:91:cc:
b1:c7:37:d9:0f:f5:3a:1e:8f:41:a4:89:82:62:f5:cf:15:44:
78:c1:1c:94:42:34:08:93:23:18:e1:5a:69:74:ba:f6:1b:b6:
5d:82:59:4f:04:0e:b6:da:ab:d3:a6:92:8b:95:48:8b:16:58:
72:0e:7c:eb:69:ec:59:52:4d:33:7a:1c:29:92:21:17:ef:83:
aa:ce:c1:cb:d3:6b:f0:c8:b0:f4:93:8a:c7:37:2d:65:7c:21:
b4:a7:67:0f:ac:a5:f4:a3:c1:89:a0:ce:36:0e:f7:a6:ea:b8:
66:ce:9c:6c:1e:e1:cc:a5:21:22:72:9e:e3:36:e3:a4:e2:4d:
5f:9f:67:0a:c5:c5:a3:52:ee:57:8b:dd:39:85:71:c5:7d:d8:
dd:39:ac:e6:8d:1e:05:20:3a:74:77:97:e2:73:87:d9:7f:be:
18:fe:c1:ad:d6:07:2d:bb:b6:ef:51:63:9b:cb:82:14:fe:f8:
8e:e7:72:7d:d6:95:dc:74:6d:1f:95:79:e6:c0:80:07:9d:60:
08:b8:e7:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:45:55 2025 by rpki-client