Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/314B9930C39B11EF82364372762E951A.roa
File: 314B9930C39B11EF82364372762E951A.roa (raw, json)
Hash identifier: KNNUyamW24lqCeXojfO8EFyAphl/9881/DfLhozpCss=
Subject key identifier: 4A:21:CB:0B:61:F7:45:2B:1B:1E:D3:F3:B8:C5:89:54:7B:82:DD:34
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: ED59
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/314B9930C39B11EF82364372762E951A.roa
Signing time: Thu 26 Dec 2024 15:07:59 +0000
ROA not before: Thu 26 Dec 2024 15:07:55 +0000
ROA not after: Sun 12 Dec 2027 15:07:55 +0000
asID: 17561
IP address blocks: 45.197.157.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60761 (0xed59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 15:07:55 2024 GMT
Not After : Dec 12 15:07:55 2027 GMT
Subject: CN=676d714e-0379
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:34:86:5d:0f:38:fc:aa:b2:85:81:92:3a:22:
1e:97:a5:e1:e7:bb:4d:1e:ae:5e:cf:a4:b5:ae:96:
1f:12:82:cd:1a:14:46:c4:de:fa:53:5c:ef:b6:a4:
16:4f:94:eb:88:23:5d:49:0d:0e:ba:2b:7f:85:4c:
cc:7d:c5:f7:e2:5a:a0:92:25:cb:6b:7f:72:73:ff:
ea:ee:35:74:5d:a0:5a:87:de:14:af:9c:27:69:be:
c6:f1:dc:77:3c:bc:7f:ab:fa:14:07:71:73:d6:41:
4c:ac:37:3c:21:96:d1:5c:ae:8e:d2:f6:b4:d0:6f:
ca:7f:0b:d3:96:04:c2:ca:08:77:55:ea:bb:3b:19:
7c:e5:28:a6:d4:39:b3:ab:9c:55:15:52:79:d0:28:
93:b8:70:38:8c:b1:4b:08:80:75:de:99:c0:27:46:
ab:8e:53:4b:00:0b:6b:b6:eb:28:7e:1a:af:ef:b0:
df:77:2e:5d:cc:ea:8f:26:8e:3e:4c:0b:da:cb:57:
99:86:63:74:1a:11:0a:4c:83:34:33:99:07:7b:cb:
63:85:6a:91:3f:27:93:08:d8:81:67:2d:09:52:32:
f2:fa:f6:c4:72:94:83:8e:24:40:85:df:32:93:47:
29:2b:64:58:8e:2e:65:bb:03:e5:77:6f:da:34:7b:
49:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:21:CB:0B:61:F7:45:2B:1B:1E:D3:F3:B8:C5:89:54:7B:82:DD:34
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/314B9930C39B11EF82364372762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.157.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:ce:89:ab:82:24:59:ef:db:b8:2e:7a:f9:b7:5d:50:3a:be:
b1:c0:4a:b9:7f:a2:76:c3:7d:88:85:c0:9e:0a:00:21:60:e2:
99:d1:93:3d:e7:7b:2c:d9:bd:5d:ea:ce:97:47:e4:da:38:83:
28:10:91:15:bd:13:71:ff:c4:f9:e4:cf:af:a2:8c:f1:6a:88:
77:e1:d6:5e:09:4f:c8:7c:f2:13:d8:c9:34:92:e0:73:8b:7f:
5b:0a:1d:fc:60:4b:66:7e:c8:ac:5c:3c:2f:7d:ff:1f:52:03:
98:b1:55:ae:79:8d:eb:c8:31:26:fa:ac:af:e5:a4:1e:06:d8:
ed:e5:7c:7f:45:73:ad:5e:78:4b:1a:67:fc:00:65:c3:84:32:
c3:8c:33:e2:90:a1:5c:30:15:b7:32:03:b4:26:81:f9:c2:d9:
e3:1e:37:1d:c5:44:ba:e3:03:f6:d0:6d:d7:af:f3:cd:f5:1a:
b2:59:ba:fd:ec:83:83:ee:a2:df:61:b8:c0:19:96:27:66:c2:
59:37:05:87:80:1c:d3:b1:89:8a:e4:a9:0a:42:97:94:16:f5:
94:39:ed:1c:f8:a0:3f:d3:50:3d:19:b7:9b:ad:fa:66:20:6c:
54:58:c3:7d:b3:00:62:d6:05:9b:26:af:88:17:82:c8:61:05:
a6:c4:78:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:00:17 2025 by rpki-client