Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/45DA1C34CF2911EFA9D1AF7C762E951A.roa
File: 45DA1C34CF2911EFA9D1AF7C762E951A.roa (raw, json)
Hash identifier: fvfeYt89q5fZcftvka0k4qP4r+dXtCTgJRqFijv4phw=
Subject key identifier: 11:FB:01:00:D9:00:AF:67:FA:02:B7:A1:17:83:7A:09:21:E3:22:38
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010505
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/45DA1C34CF2911EFA9D1AF7C762E951A.roa
Signing time: Fri 10 Jan 2025 08:02:44 +0000
ROA not before: Fri 10 Jan 2025 08:02:41 +0000
ROA not after: Sun 16 Feb 2025 08:02:41 +0000
asID: 6079
IP address blocks: 45.205.96.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66821 (0x10505)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 10 08:02:41 2025 GMT
Not After : Feb 16 08:02:41 2025 GMT
Subject: CN=6780d424-47bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:59:45:11:d1:07:e2:9e:24:9f:05:a9:8e:6a:
a7:ca:97:19:0a:ee:1b:5c:a7:a4:b5:9a:b8:bb:c3:
4b:d0:9e:8d:b4:e0:97:f7:cd:2e:09:9f:7d:22:53:
da:4d:28:90:6a:a4:91:2c:f7:51:e1:e3:7a:db:72:
65:82:47:62:d0:a0:a9:34:d3:87:c3:f8:22:20:67:
e6:05:60:75:b3:87:bd:2e:9f:0d:c2:26:01:9b:76:
8a:c9:6a:41:e6:7b:aa:bb:95:36:3a:4c:b8:e9:01:
df:37:fd:33:55:38:9e:66:4c:b2:f7:cb:ba:35:5e:
55:46:17:65:66:2f:82:fe:fe:7c:a0:76:94:91:0e:
e6:12:27:6f:d2:83:1a:53:7b:e4:56:e9:c2:66:54:
d4:ac:8b:73:b0:fc:a1:c6:d9:c6:d5:4e:00:16:3a:
a3:13:2d:6a:e0:7c:c5:2e:48:d6:9b:30:ca:c7:e1:
bf:0a:5f:88:41:b1:3f:f5:09:cb:42:2c:15:d2:56:
f9:42:98:04:7c:19:38:89:2a:bf:c7:05:3f:f6:79:
cc:49:44:11:d4:44:2f:26:12:5d:75:02:02:ed:0f:
bc:ad:e5:e8:8d:95:42:1e:ad:ca:94:f1:76:7c:02:
80:42:16:fb:6c:71:12:d2:7e:46:5b:1a:18:bc:c1:
1c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:FB:01:00:D9:00:AF:67:FA:02:B7:A1:17:83:7A:09:21:E3:22:38
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/45DA1C34CF2911EFA9D1AF7C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.96.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:44:b5:74:d1:12:e8:5f:b0:87:fd:5e:bf:88:67:c2:5f:f7:
ea:bd:33:37:95:2c:78:9a:71:33:ab:e2:47:18:53:a2:18:74:
87:20:ca:3e:02:99:83:98:f5:47:78:b5:ce:be:2d:04:9c:5d:
99:9f:43:9a:36:e4:37:5e:cc:43:8b:07:16:fa:89:a1:11:26:
90:e5:98:4b:f2:07:36:12:d0:d7:76:73:aa:99:5e:3f:d9:b4:
11:a0:64:2d:63:d2:91:0e:6a:28:6b:0d:eb:46:31:c3:d1:4b:
c0:e4:80:ec:13:dd:28:51:86:e3:d2:d4:39:a0:bb:19:a0:05:
2d:ba:30:6e:be:29:e9:43:1a:6e:90:31:f7:12:82:6a:f8:d4:
af:3f:bb:2f:c0:63:2a:89:fb:7e:82:7c:68:73:d5:a4:c1:54:
dc:50:2f:b0:4b:c1:53:4e:db:f1:7d:be:74:a3:af:fa:b8:bc:
83:be:c1:81:bb:71:a0:4c:0e:7b:a4:66:20:2b:8f:ca:b6:42:
49:3f:6b:40:f0:a9:f8:ef:c3:78:cf:51:5f:62:55:f2:a7:d4:
4c:85:89:d3:29:9c:44:f3:5d:2d:d8:eb:07:9e:ea:fb:2e:ab:
34:aa:89:e7:4a:08:63:cb:59:29:ab:92:90:e4:71:89:73:28:
95:23:44:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:44:32 2025 by rpki-client