Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/45DE4202C3B011EFA517FD76762E951A.roa
File: 45DE4202C3B011EFA517FD76762E951A.roa (raw, json)
Hash identifier: X2U2cEeoVV8h93Sj0rWGZd9wMw/toqvnBr9Ne76Cj5E=
Subject key identifier: 84:6E:E1:5A:DB:0A:D6:44:F9:42:EB:82:50:85:78:D6:1C:37:AE:3C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EE39
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/45DE4202C3B011EFA517FD76762E951A.roa
Signing time: Thu 26 Dec 2024 17:38:53 +0000
ROA not before: Thu 26 Dec 2024 17:38:49 +0000
ROA not after: Fri 12 Dec 2025 17:38:49 +0000
asID: 984
IP address blocks: 45.202.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60985 (0xee39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 17:38:49 2024 GMT
Not After : Dec 12 17:38:49 2025 GMT
Subject: CN=676d94ac-7975
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:5b:e7:b2:c8:3f:d8:02:42:d4:5f:3a:12:2e:
12:7c:93:46:04:cb:0d:5e:35:8c:ff:63:a2:b8:ca:
f3:a4:80:c6:98:b3:8a:3a:ef:01:6e:f9:db:2c:59:
ce:2c:a1:7f:c4:7f:59:62:52:6a:c1:b8:be:bd:d6:
b0:61:fd:e7:2c:2b:f2:16:4a:dd:94:82:23:12:b3:
f6:5b:2e:78:5b:ab:3f:a0:f3:27:71:45:31:54:e8:
43:ea:ac:f8:0e:4f:77:11:d8:46:f2:17:3c:32:b7:
5f:38:e1:e5:8d:7a:68:48:f2:0a:8c:4f:cb:47:79:
30:f7:2c:76:d7:f5:b3:97:63:08:6e:3d:19:d6:b8:
7a:9d:af:2c:a1:63:16:68:94:af:d4:b8:97:dc:08:
3c:06:22:7d:17:b3:65:54:fe:54:62:66:3d:61:0f:
a6:b0:2e:86:2b:15:5c:9b:ea:38:a1:ed:0e:33:28:
d0:dd:d8:b2:12:4e:63:03:06:63:8b:b4:0d:08:a3:
f9:5c:91:86:de:9c:f8:4b:ee:51:5b:40:49:81:7e:
1b:0e:44:a8:8b:4e:a4:25:75:b7:d4:54:30:4e:82:
f4:c3:2a:df:3d:4c:35:b8:93:66:f9:3e:1c:1a:56:
82:17:96:fa:96:82:c9:02:a0:d2:6d:1f:ad:85:7d:
6c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:6E:E1:5A:DB:0A:D6:44:F9:42:EB:82:50:85:78:D6:1C:37:AE:3C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/45DE4202C3B011EFA517FD76762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.15.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:bf:66:1d:0a:db:bb:ca:8f:2e:59:12:7a:5d:f2:a1:f7:62:
30:a1:7d:b7:9c:a3:6e:9f:6c:ce:24:ea:dd:67:e2:ac:71:a8:
62:da:8c:e2:f2:d6:fc:2f:78:57:48:bf:8a:17:78:e7:05:f0:
7b:2c:c9:61:2a:db:54:0b:9c:4c:e3:14:ed:fa:75:5c:a6:17:
75:9f:f1:b7:53:c3:9a:3a:1e:74:2e:7b:65:ef:d1:8b:88:d5:
ad:71:ab:08:0d:51:1e:98:ab:68:ce:31:cc:9e:30:2b:a4:d6:
51:fa:e3:a4:ac:eb:a9:bb:b8:8f:73:2f:4a:c2:d0:46:46:c1:
20:f5:0a:e2:4e:79:01:0a:94:29:21:bb:54:28:c4:76:80:4e:
9f:f3:3d:ba:d9:77:78:36:74:95:a9:f3:61:e7:12:af:d9:28:
95:d2:93:68:fb:db:c5:8b:c6:47:52:15:48:bb:b9:57:e0:8c:
6c:7d:8d:27:df:38:6e:af:3f:b7:3a:47:80:ba:c7:5d:5f:dd:
ce:a8:83:4f:08:83:b1:7c:f3:60:3b:9e:2a:92:c0:53:4c:48:
0d:50:4d:95:a7:bf:7c:cd:94:36:45:a1:b4:9c:36:28:e0:a5:
46:b5:ee:37:75:50:e1:54:04:c1:21:56:4b:b9:27:67:f9:70:
3f:4d:c3:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:45:59 2025 by rpki-client