Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/30EDC466C3ED11EF97F47677762E951A.roa
File: 30EDC466C3ED11EF97F47677762E951A.roa (raw, json)
Hash identifier: O6iYqrlJb4jBsljIwmT7X6ySUCtQ8mVboAOa2A9gQYg=
Subject key identifier: B5:FD:51:A7:0F:0B:F3:54:1A:79:1F:41:4F:60:2C:47:5F:BF:03:74
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EF28
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/30EDC466C3ED11EF97F47677762E951A.roa
Signing time: Fri 27 Dec 2024 00:54:57 +0000
ROA not before: Fri 27 Dec 2024 00:00:53 +0000
ROA not after: Sun 12 Dec 2027 00:00:53 +0000
asID: 17561
IP address blocks: 45.192.227.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61224 (0xef28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 27 00:00:53 2024 GMT
Not After : Dec 12 00:00:53 2027 GMT
Subject: CN=676dfae1-f09b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e3:1d:85:68:eb:2f:06:1b:7d:d4:ea:2d:9c:
7e:fc:29:6c:61:84:06:4e:30:01:7d:3d:1e:63:46:
1c:0c:bc:72:26:ef:f9:9a:34:8d:d6:83:84:e9:53:
32:c1:a4:5a:c9:1a:ca:40:4d:48:08:c4:d9:c3:c3:
7e:fb:c1:fd:18:9e:7c:43:24:5f:eb:01:71:41:00:
6e:1e:6d:0d:23:f0:4c:b6:82:cb:37:e2:fa:91:a6:
1a:60:02:02:4a:e9:24:3a:8c:63:d8:91:76:2d:6d:
18:49:65:65:05:46:b4:0f:9e:d0:c8:18:2d:66:3a:
bf:63:21:2b:b5:b6:69:81:6f:f4:ea:5c:ed:04:cc:
77:30:4f:be:1f:b4:f2:e0:02:92:e1:47:62:f1:dc:
5c:23:b9:75:4e:f0:9e:4c:a4:b2:7a:dc:98:25:0d:
c4:97:08:26:b6:79:de:7f:f1:a8:26:1d:48:c2:a3:
78:cb:67:7c:d4:04:95:a9:bd:42:b8:04:4f:60:6a:
6d:f2:7d:5d:a0:50:fc:b2:d5:e8:8e:11:14:6a:0e:
88:c9:3b:a4:37:30:d0:e0:3d:e7:0f:66:42:60:e6:
f1:67:df:fa:db:9e:00:e4:a5:2e:5d:37:c4:70:f2:
7b:50:d4:30:4c:5c:55:78:44:4a:97:a3:15:d4:8f:
30:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:FD:51:A7:0F:0B:F3:54:1A:79:1F:41:4F:60:2C:47:5F:BF:03:74
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/30EDC466C3ED11EF97F47677762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.227.0/24
Signature Algorithm: sha256WithRSAEncryption
86:a3:87:e5:84:1b:7d:1c:09:12:49:63:17:5d:47:07:83:ce:
73:8b:75:b0:e9:49:96:35:83:fc:73:35:a5:44:e5:73:8a:37:
67:76:d8:6e:41:16:da:d9:f7:23:93:3f:32:5b:9b:44:f5:f8:
30:07:fb:30:46:9f:30:a5:8b:27:d7:c3:06:aa:44:ad:a7:ad:
ae:fd:65:cd:1a:be:fb:4c:0d:a7:88:c0:cd:f2:37:6a:b4:38:
56:9d:27:3e:44:29:21:d3:40:78:73:a4:d2:a7:e7:9a:fb:fc:
18:d6:c9:68:a8:aa:15:8d:8a:3b:d3:67:48:bb:ab:ad:5d:da:
6e:ae:ff:e6:39:6f:90:4f:f4:02:a3:15:40:40:64:4c:dd:24:
7d:57:4f:b1:c2:ad:46:de:49:45:02:28:ac:36:7a:2b:05:94:
ab:42:a4:2d:53:3a:90:58:00:cf:b2:16:51:0f:fa:00:d8:3e:
46:c3:d8:de:52:b6:c5:4b:6c:50:5e:d4:6d:59:e7:4c:e3:94:
8c:5a:de:fa:48:85:e7:f5:81:5f:64:de:a6:29:1b:03:5b:62:
93:ca:c4:ba:dc:0a:c6:19:55:ad:f6:da:d8:dd:68:99:71:cf:
61:06:e3:2a:59:9f:b2:ea:6c:89:d9:a1:34:ee:35:78:cf:6f:
ea:93:6f:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:58:33 2025 by rpki-client