Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/428FBB44C40011EFABD92C82762E951A.roa
File: 428FBB44C40011EFABD92C82762E951A.roa (raw, json)
Hash identifier: CIvkXj+fFocLxJMR1zE1j2gR8agkd6hmkKDYCCo9WQU=
Subject key identifier: EA:2A:0D:DA:E7:54:FE:1E:15:DD:DE:FB:1C:45:DC:12:C0:38:2F:CD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EFCE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/428FBB44C40011EFABD92C82762E951A.roa
Signing time: Fri 27 Dec 2024 03:11:27 +0000
ROA not before: Fri 27 Dec 2024 03:11:23 +0000
ROA not after: Sun 12 Dec 2027 03:11:23 +0000
asID: 17561
IP address blocks: 45.195.92.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61390 (0xefce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 27 03:11:23 2024 GMT
Not After : Dec 12 03:11:23 2027 GMT
Subject: CN=676e1adf-71ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:88:6a:80:b0:aa:80:33:c2:3c:71:cf:2a:05:
1d:7b:1d:8c:7b:28:55:bd:95:46:8e:ae:23:d9:16:
26:b8:14:df:99:f3:ba:bf:56:08:3b:7d:f8:01:a9:
27:5e:ac:32:98:ee:ea:5c:48:d3:1c:f3:15:e5:a0:
2b:d5:37:fc:d3:1f:79:5d:17:bb:d3:00:ec:98:47:
bb:6b:b2:1d:b3:0e:6d:06:9b:e1:22:43:00:34:d9:
08:68:16:32:62:71:de:e6:92:01:f3:92:54:60:1a:
a2:c6:bd:f7:cb:4f:97:2a:48:1b:01:99:0a:33:3f:
80:8b:b2:7b:f3:bb:44:2f:8d:c5:9a:1d:ba:ed:29:
0b:1b:06:ae:07:d5:2f:3e:80:a0:82:db:88:3b:a0:
42:a3:60:92:2a:8b:15:23:a8:26:cf:80:46:1a:c0:
69:f5:24:80:55:ae:35:62:55:6f:1a:d3:70:c3:70:
d3:7e:9e:bc:6d:15:30:01:ad:13:41:62:a3:a2:c8:
ca:e1:2c:94:b4:e9:d5:5f:34:ee:b9:f1:dc:ed:96:
77:e4:fb:f0:46:1f:f9:19:a1:a7:c3:43:cf:e6:51:
e6:e4:3f:fe:7c:c2:71:bd:54:3f:fc:a1:bd:6c:38:
f6:1b:5a:a7:42:65:ba:b0:aa:b2:58:a8:28:01:51:
f8:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:2A:0D:DA:E7:54:FE:1E:15:DD:DE:FB:1C:45:DC:12:C0:38:2F:CD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/428FBB44C40011EFABD92C82762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.92.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:b5:23:77:f9:aa:d9:1a:95:4a:cd:f5:45:84:a0:6c:e8:29:
b9:dc:f1:5e:42:e8:a9:d1:07:a7:a7:09:1c:2b:6d:e0:68:dc:
cf:0e:e1:92:51:38:4f:5e:13:7f:bc:e0:dd:a3:8f:6d:ed:1e:
b0:3a:73:72:e2:44:96:22:a5:30:04:b7:9f:a9:2d:a1:31:ff:
8d:bd:1f:52:a4:f9:e0:01:b7:e6:ad:cc:a3:16:d0:3c:39:02:
b3:c2:95:75:05:19:bf:9e:c6:07:6a:a6:92:28:92:5d:0a:6e:
1c:f5:fc:6d:4a:3a:cf:f6:6e:7e:e3:d3:69:cc:6d:ab:3c:1d:
02:98:8f:1d:90:3f:3a:3b:68:48:12:c7:6d:c7:96:94:b3:30:
60:cf:84:93:31:08:38:75:61:c3:79:8e:4d:85:a8:36:29:9f:
47:c9:28:c9:8a:2c:9a:c1:55:9c:ad:5b:4f:4d:11:eb:85:04:
65:9a:aa:b1:96:45:43:b3:f7:2b:87:52:3e:f8:ce:f3:ff:c4:
64:fb:56:01:28:f7:52:95:c7:e9:51:54:52:ad:a6:25:f9:cc:
22:8a:ff:99:c9:27:9a:da:06:65:15:ec:46:d5:07:82:13:6a:
78:7b:1b:46:d5:8d:64:3f:d4:30:89:a4:71:d9:53:76:a9:07:
ca:00:a5:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:54:25 2025 by rpki-client