Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3A362912CF2511EF99B9E462762E951A.roa
File: 3A362912CF2511EF99B9E462762E951A.roa (raw, json)
Hash identifier: T2WMCfA1Xri6JZKx/1BFvztp9lqLBE2Z0RywrYRRRnM=
Subject key identifier: BD:5A:5F:E4:BF:73:DB:53:BA:1F:CF:38:1F:48:3A:6E:DF:F9:56:F7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0104F7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3A362912CF2511EF99B9E462762E951A.roa
Signing time: Fri 10 Jan 2025 07:33:47 +0000
ROA not before: Fri 10 Jan 2025 07:33:44 +0000
ROA not after: Fri 14 Feb 2025 07:33:44 +0000
asID: 54600
IP address blocks: 45.205.192.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66807 (0x104f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 10 07:33:44 2025 GMT
Not After : Feb 14 07:33:44 2025 GMT
Subject: CN=6780cd5b-68c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:33:49:06:e6:1b:b7:12:3d:36:85:0b:f0:40:
b9:21:13:27:7a:54:db:e1:d9:b9:5a:8f:f9:ce:bb:
f2:63:bc:38:25:1c:2d:aa:8b:c5:09:a0:86:c4:76:
49:13:52:38:a5:90:9e:f4:32:77:5a:ed:f3:32:aa:
91:0d:e3:3a:a0:06:0d:e3:26:cf:b5:7b:93:47:85:
16:65:7e:6e:15:35:4d:00:89:e1:f1:85:55:4c:bd:
2f:ca:7e:16:d7:29:81:ce:1a:f8:a8:54:55:6a:a5:
99:09:f7:3a:f5:b1:e9:75:f9:9a:f4:5d:51:2d:dd:
1c:53:57:0b:df:10:b1:72:e8:0e:d2:e6:f9:5c:2f:
40:9b:52:c8:d8:26:37:8f:e2:c6:97:ae:23:a6:0d:
6b:9d:3a:ef:f7:c9:cf:22:19:3f:86:d2:b3:ca:c3:
c2:3d:14:75:5b:ee:fd:38:31:4c:de:f1:bf:87:f7:
9c:b8:c7:45:9d:37:40:53:46:d7:03:ae:f2:d9:c7:
28:64:88:e7:70:1f:64:97:09:05:3f:39:ea:a8:13:
7b:d7:f4:6c:73:c9:8d:0a:a9:63:c1:e9:e5:93:d4:
a6:fe:d2:00:f1:80:2d:e0:56:30:f0:af:00:b3:c8:
ea:70:04:8e:82:63:cd:ec:e6:e8:92:50:47:81:c0:
63:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:5A:5F:E4:BF:73:DB:53:BA:1F:CF:38:1F:48:3A:6E:DF:F9:56:F7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3A362912CF2511EF99B9E462762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.192.0/19
Signature Algorithm: sha256WithRSAEncryption
3d:7d:5a:d3:e2:56:38:57:86:62:ae:45:33:9a:cd:a3:37:37:
8b:47:1f:d6:f2:f7:b8:5a:19:5f:f7:45:b7:11:74:b4:be:91:
99:19:02:dd:bb:75:eb:ec:e1:70:78:5a:25:6b:9b:da:4a:91:
ea:88:48:61:03:ec:3f:16:a0:c5:98:4e:18:cd:d5:7b:8c:50:
98:74:ae:01:46:33:3e:c4:82:fc:e0:ff:24:e4:ef:11:bd:de:
91:49:7c:57:c1:b9:9e:ae:c0:13:64:76:b5:f8:99:87:2a:9c:
e4:87:98:f2:21:a1:03:e9:e8:e9:5c:e0:a3:0e:18:79:ef:a7:
b6:eb:5b:8b:a1:6a:ba:e5:af:ef:6b:5f:08:9d:3a:68:8d:51:
29:ed:90:27:1c:be:ce:8a:b2:2b:e8:38:bf:27:c7:36:1a:08:
56:87:cf:13:f2:b7:c0:09:97:06:db:f7:8c:32:5c:87:fa:47:
9e:bf:dd:80:d4:de:7b:97:b6:1e:f2:d9:7c:64:fd:43:9a:98:
68:0f:88:9b:c1:36:cd:07:cf:f3:d3:f5:b4:19:42:ba:39:ea:
e0:32:95:66:c6:a9:76:88:dc:be:a1:e1:ff:dc:04:07:f9:d0:
ce:f6:cf:cf:38:32:c4:61:77:60:15:2e:9a:43:ce:4c:e7:0f:
eb:9a:64:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:57:38 2025 by rpki-client