Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/448308D0C3B411EF85F3F28E762E951A.roa
File: 448308D0C3B411EF85F3F28E762E951A.roa (raw, json)
Hash identifier: ozD7w8NY1++7fZbKphI15jFDcYOR6MG5JSQBHPHYLvM=
Subject key identifier: 63:F0:0F:68:7F:9C:14:C4:63:33:98:D3:47:ED:BF:12:A8:11:4B:BA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EE63
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/448308D0C3B411EF85F3F28E762E951A.roa
Signing time: Thu 26 Dec 2024 18:07:28 +0000
ROA not before: Thu 26 Dec 2024 18:07:25 +0000
ROA not after: Fri 12 Dec 2025 18:07:25 +0000
asID: 984
IP address blocks: 45.205.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61027 (0xee63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 18:07:25 2024 GMT
Not After : Dec 12 18:07:25 2025 GMT
Subject: CN=676d9b60-7e09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d8:e2:78:7c:a5:1b:49:47:43:f0:3f:69:e7:
2a:cf:f0:7c:fc:37:89:3f:f6:34:f8:c3:80:c7:9c:
a8:31:3b:4a:76:aa:9d:92:49:85:65:9a:b0:7d:e9:
c4:a7:bc:fa:4e:de:25:fd:7a:4a:c0:bb:14:5a:bc:
df:bb:bc:98:51:78:9b:a9:e7:82:52:d1:65:2d:63:
1c:11:d0:12:8f:44:ec:98:62:e9:f7:00:41:ec:8d:
8b:c2:c4:cf:4e:6f:20:a4:b9:37:62:80:24:fa:ad:
e1:8a:94:8a:e6:4d:dd:d7:55:6d:b1:ab:92:18:ed:
fd:f5:e7:0e:27:06:c6:71:14:71:ea:9d:94:35:c3:
64:e7:8e:8d:83:76:78:f7:59:09:62:59:64:0c:1e:
dd:85:fe:22:d1:bc:ea:20:45:6a:f6:ef:47:60:51:
bb:de:18:f9:a6:15:e8:5d:8f:f3:1f:ec:32:ca:dc:
8d:dc:06:24:9e:95:c1:a6:f2:a3:5c:f2:b9:ca:2c:
e4:b6:e9:3e:9d:f0:45:6d:2d:44:7d:66:1a:ec:56:
49:19:51:d2:fb:df:2c:a3:9d:6e:68:44:05:b2:45:
d2:36:2c:ec:11:25:1c:77:54:f1:2e:79:84:cc:ae:
b2:01:34:0d:73:8f:85:70:77:18:96:37:36:fe:98:
dd:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:F0:0F:68:7F:9C:14:C4:63:33:98:D3:47:ED:BF:12:A8:11:4B:BA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/448308D0C3B411EF85F3F28E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.1.0/24
Signature Algorithm: sha256WithRSAEncryption
19:6e:19:c2:2d:e2:e0:2e:8c:d9:b1:8c:03:fa:82:9b:a5:68:
10:b7:54:33:2a:7a:c2:20:6f:a7:00:45:b7:84:47:9b:ce:e7:
5d:f3:bd:b8:1e:cb:b5:99:5b:a1:ec:1b:71:82:25:30:c4:23:
38:b9:0b:22:f8:b1:0f:4a:ff:51:76:53:3d:07:f3:08:15:71:
9a:3a:57:5b:08:6c:11:c0:a3:4e:c7:36:6c:82:0b:4c:e6:47:
98:47:bd:ba:b6:f9:a7:d7:0e:f5:d7:f9:18:d9:db:0e:2e:a9:
2e:7f:33:b5:83:8f:01:80:c3:2f:29:ac:3a:cc:e9:3c:3a:a7:
51:f3:d3:ab:0c:b3:49:f5:e2:f6:62:9d:74:9e:9e:1e:cd:2b:
b3:4d:3e:e3:83:ec:c6:0f:b4:30:c5:f2:78:84:5b:35:b9:17:
76:08:e5:4b:9b:f6:9a:37:a5:df:15:21:4e:3b:a8:67:cc:44:
1d:be:68:71:d1:d8:92:d7:b2:69:5e:1c:dc:c6:54:d3:9e:24:
f1:91:b3:87:bb:c1:7a:cc:b7:4a:8a:9f:fb:5c:99:39:79:2a:
1f:88:6f:a1:4b:42:8d:ba:d5:c8:1b:b7:21:4f:24:fe:fc:df:
ea:75:9c:14:88:d6:60:f0:27:35:70:5c:c8:52:96:99:5c:ba:
88:35:e8:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:44:42 2025 by rpki-client