Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/39325A50C3AD11EFBD601664762E951A.roa
File: 39325A50C3AD11EFBD601664762E951A.roa (raw, json)
Hash identifier: +rCWOwTNS54JFkR2vGX+oH4LxHg/ZF1ZjrB6CUfeANc=
Subject key identifier: 7E:54:87:5B:4B:0E:96:30:C1:6C:73:4C:41:1B:BC:3E:40:EC:CE:17
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EE19
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/39325A50C3AD11EFBD601664762E951A.roa
Signing time: Thu 26 Dec 2024 17:17:03 +0000
ROA not before: Thu 26 Dec 2024 17:16:59 +0000
ROA not after: Sun 12 Dec 2027 17:16:59 +0000
asID: 17561
IP address blocks: 45.200.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60953 (0xee19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 17:16:59 2024 GMT
Not After : Dec 12 17:16:59 2027 GMT
Subject: CN=676d8f8f-03f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c8:b6:6c:0e:ec:ad:52:d6:d3:a5:f9:3b:07:
f9:b2:f8:56:9c:d1:9a:e1:1b:5e:c0:6b:08:98:8f:
29:02:42:35:2c:69:92:b0:66:c9:8c:f9:7c:b1:3f:
17:64:de:65:39:51:45:c9:73:77:25:b6:27:ae:86:
63:57:81:1e:c1:3c:d6:77:1a:39:91:36:46:4a:18:
b6:ae:05:cf:98:da:c0:92:df:e6:37:e0:aa:aa:8a:
6e:2e:d8:48:b0:97:62:8b:00:c0:1f:d7:06:26:38:
41:5f:2b:65:0e:4e:48:37:f3:f8:b9:d4:e0:37:fc:
4c:ed:27:51:29:1f:86:9d:17:4e:41:6a:da:c7:d2:
91:33:b7:19:0f:4b:e7:90:76:7e:b1:1e:94:2b:11:
09:d5:2d:1a:97:36:d6:ba:48:30:1b:d4:01:c1:70:
26:b7:e1:f9:d5:75:7c:33:1b:f2:20:51:b2:5f:a5:
82:7a:99:ad:ab:4d:d4:59:2e:2c:61:08:91:43:ad:
ba:ff:d6:7e:53:08:ea:ed:56:50:8a:b4:06:60:c4:
9c:83:29:38:34:16:10:0f:cb:2f:2f:59:fd:c1:8f:
3b:df:e3:7e:0f:3b:c6:71:59:4a:ea:ea:c9:09:98:
b1:e7:a0:10:48:f2:b2:bc:be:23:b1:f7:78:b6:88:
ca:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:54:87:5B:4B:0E:96:30:C1:6C:73:4C:41:1B:BC:3E:40:EC:CE:17
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/39325A50C3AD11EFBD601664762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.247.0/24
Signature Algorithm: sha256WithRSAEncryption
90:b1:9d:a2:a3:7b:4e:03:ed:3c:a7:7d:98:0f:8e:12:a1:12:
02:d9:29:00:94:bf:36:d7:0e:5d:ff:31:ea:15:84:18:75:11:
13:01:ec:3b:16:05:e4:98:ad:8c:53:61:08:58:b7:38:51:1a:
63:b4:05:11:bb:a2:18:03:dc:3e:e2:38:d3:54:bd:68:8b:e9:
a0:ac:95:8e:10:0f:dc:37:db:67:b9:75:1f:e8:e9:79:53:14:
9b:9f:6f:61:8e:a4:00:7c:af:6d:80:1d:4f:66:64:b7:91:d3:
2a:ea:13:b1:98:ac:05:35:ce:9f:02:91:d9:d9:12:7d:f9:f9:
9f:d9:93:cf:3b:8d:10:ca:40:f4:d4:65:00:3e:7a:08:a6:21:
3d:e3:e8:47:58:4d:0e:5f:f6:93:d3:ee:0b:18:a0:c5:32:e9:
72:f1:f9:a5:4d:5b:7c:4f:40:c9:76:e9:af:21:a4:d6:9e:31:
63:78:fe:fd:3f:77:b7:ac:38:0c:6a:93:99:4e:9e:c7:3f:75:
a9:db:3f:ee:21:9b:7c:19:ef:29:3c:97:09:d9:85:8c:aa:a6:
80:b0:5e:b4:ea:82:7e:d1:a1:34:ec:86:ec:df:3a:ec:3b:a7:
9a:ff:1a:9f:e0:7d:03:e6:f9:5a:7d:08:6b:75:fc:68:29:8c:
5b:4b:99:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:43:04 2025 by rpki-client