Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1F232B3CCEEB11EFA9C1F35F762E951A.roa
File: 1F232B3CCEEB11EFA9C1F35F762E951A.roa (raw, json)
Hash identifier: KUJuEgYtYrWksfueMKHrERiYOdb8fBjaogdLkNyQw5U=
Subject key identifier: 1F:1D:5E:BA:42:A2:2C:73:53:82:5C:C7:1F:97:C1:81:81:61:1A:BD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01045E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1F232B3CCEEB11EFA9C1F35F762E951A.roa
Signing time: Fri 10 Jan 2025 00:37:51 +0000
ROA not before: Fri 10 Jan 2025 00:00:47 +0000
ROA not after: Thu 13 Feb 2025 00:00:47 +0000
asID: 395793
IP address blocks: 45.195.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66654 (0x1045e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 10 00:00:47 2025 GMT
Not After : Feb 13 00:00:47 2025 GMT
Subject: CN=67806bdf-9caf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:28:fb:cd:0e:da:69:20:80:e5:01:61:b0:20:
3d:1a:e5:07:91:a0:a1:cf:74:5d:3f:ef:7c:be:66:
ad:d6:19:8c:e9:09:e1:42:bf:4b:d2:3f:c5:0d:52:
d4:b4:21:48:fe:6d:10:cb:75:db:f9:3e:e8:00:8e:
74:d7:d8:f0:09:ae:48:cf:f7:be:08:2a:12:bb:0f:
d2:34:a1:ef:86:09:7e:e9:9d:9a:81:be:11:d2:8f:
48:a4:fe:a2:ae:29:69:52:9e:1c:37:75:da:1a:c6:
81:ad:f8:ae:e9:43:20:b1:7f:ae:e6:6d:42:c6:75:
3a:9a:99:d2:4b:87:09:d2:d0:8f:8e:e4:a7:04:91:
ac:4a:5e:86:d3:da:a6:35:b6:87:a3:06:c4:65:a4:
87:75:44:57:de:f5:22:8b:47:6d:ba:ee:af:47:60:
1b:06:06:02:9d:6d:b7:40:c8:88:3c:ef:f6:77:60:
2c:38:a1:b8:72:c7:30:60:e0:5a:97:82:d8:94:f3:
64:d9:ab:e9:85:24:99:90:4a:75:15:70:80:93:38:
fe:70:64:8b:5a:dd:f6:c0:73:51:15:c6:82:5e:89:
da:7c:be:93:a6:e2:d8:46:40:28:3d:02:b0:16:5e:
ed:7a:2b:ed:0f:b3:18:cc:ad:3c:76:cf:6a:d5:46:
cc:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:1D:5E:BA:42:A2:2C:73:53:82:5C:C7:1F:97:C1:81:81:61:1A:BD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1F232B3CCEEB11EFA9C1F35F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.63.0/24
Signature Algorithm: sha256WithRSAEncryption
41:60:ab:c8:86:bb:29:9a:b3:30:9a:98:a3:77:5b:fd:37:f2:
5f:8b:c0:97:72:80:96:d1:a8:17:5f:96:75:27:d3:87:71:fc:
94:56:ea:d6:bd:13:0a:85:59:10:62:8e:30:1e:46:8f:25:f7:
39:ed:9a:31:ff:69:6f:a4:59:57:25:8e:fa:20:99:33:6e:be:
2f:00:9e:b0:4d:9b:49:79:f4:18:14:a8:e7:36:b3:d1:0d:ab:
7d:f3:e0:cd:72:a4:80:4f:63:05:49:08:48:ab:fd:d9:ba:d2:
47:69:96:12:d2:4f:8a:15:e4:ed:38:f7:aa:e9:e9:a4:bf:06:
20:36:d1:c1:8f:a2:69:88:0f:a6:c8:f7:e3:72:8a:6e:2a:26:
89:12:fb:55:f5:37:78:74:25:66:89:ed:1b:e1:00:42:f3:37:
f2:4a:92:a1:ea:1b:7a:f2:8e:90:1e:06:51:5d:d5:07:c6:dc:
56:5b:b3:25:9d:58:b8:ed:11:d9:3b:be:d2:ae:c0:1e:fb:62:
5d:8b:2b:e1:06:d6:61:ac:fd:3a:13:0f:51:51:3e:0f:f3:bd:
25:83:58:c1:50:82:37:bd:cb:ec:77:91:96:a1:cd:c0:0d:1d:
56:77:65:86:fb:8f:5c:40:11:bd:22:11:c6:e8:0b:25:08:a7:
3b:5b:4e:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:57:02 2025 by rpki-client