Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5390F5D0C40411EFAE6D189E762E951A.roa
File: 5390F5D0C40411EFAE6D189E762E951A.roa (raw, json)
Hash identifier: irFYbbIRK7MyzEfTVGBtZDh6vVK132y5NX5Dw30O6HA=
Subject key identifier: E1:A0:57:AB:AD:CA:62:65:91:9C:54:D1:EB:42:85:62:30:94:80:86
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EFF8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5390F5D0C40411EFAE6D189E762E951A.roa
Signing time: Fri 27 Dec 2024 03:40:33 +0000
ROA not before: Fri 27 Dec 2024 03:40:30 +0000
ROA not after: Fri 12 Dec 2025 03:40:30 +0000
asID: 984
IP address blocks: 45.195.231.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61432 (0xeff8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 27 03:40:30 2024 GMT
Not After : Dec 12 03:40:30 2025 GMT
Subject: CN=676e21b1-7ac8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7d:6b:5b:cb:bf:79:72:13:48:ac:2b:f3:6e:
a8:92:21:62:2d:43:85:4e:e6:77:e7:41:7b:47:f2:
4c:04:f8:9c:f8:a2:cc:33:4f:52:d2:bf:b1:b9:44:
d5:43:d4:3e:d6:df:4b:55:ef:8a:b0:ed:51:27:22:
ee:d7:cb:d0:c1:93:7c:f3:03:64:64:d8:2f:c3:20:
de:f1:73:0b:b6:f4:c8:d0:fe:16:16:51:d2:fb:10:
b5:db:11:dd:d4:7c:7f:35:24:8d:ab:ce:71:e0:ad:
d5:2d:f5:58:4f:65:da:f3:31:c8:e9:fd:59:c9:67:
8c:b6:6f:e8:c6:bc:b0:97:70:40:ca:30:6f:44:7d:
52:ae:3c:2a:eb:bd:40:8f:05:8d:8e:5d:db:7e:fd:
7e:81:da:55:a9:6d:e4:f1:b8:c5:45:91:e0:26:69:
23:15:bb:3c:45:9f:4d:36:27:3b:d2:07:99:56:ed:
61:e0:bb:b3:e3:98:96:ed:1f:04:fa:db:2e:98:66:
72:19:fa:e9:a5:c9:2f:36:2e:bb:50:d6:fc:a1:01:
48:f1:40:dc:fe:3f:71:62:2b:1a:69:f5:a5:09:3c:
59:68:a6:7d:96:d5:cb:02:91:c6:09:0d:d6:a8:85:
1e:48:90:9e:3f:e1:41:3e:8d:89:3b:2d:72:b5:a6:
29:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:A0:57:AB:AD:CA:62:65:91:9C:54:D1:EB:42:85:62:30:94:80:86
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5390F5D0C40411EFAE6D189E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.231.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:af:dd:11:ff:a6:b9:31:9a:ba:a4:c8:f0:dd:9e:15:09:3d:
e8:5c:c7:7b:de:83:50:be:83:9c:fb:f3:8d:77:fd:30:d2:ab:
dd:15:1a:8c:78:1f:7a:eb:a5:90:cf:25:65:51:e9:b6:4a:9f:
b8:70:9f:01:2e:e5:d0:5b:fc:f5:90:56:5c:fa:35:26:e2:20:
e9:0a:5f:e3:a3:ff:3e:29:a5:c8:88:34:2d:b5:0a:45:ca:d3:
67:78:b2:d4:8e:9e:41:0e:c4:d5:a2:9b:40:bb:5f:0a:70:66:
09:d6:11:db:84:e2:09:58:e3:9e:e5:c9:9b:e8:7d:82:45:e6:
30:88:74:c7:ee:3c:ce:c6:59:8d:05:73:b0:a6:f5:e4:04:e4:
b0:36:cf:df:de:61:9b:52:09:a6:be:53:17:c6:70:c7:92:76:
a0:32:cd:65:ac:ec:bf:1c:66:2d:e8:96:72:0b:31:2a:7d:6e:
8c:c0:66:29:ac:2e:a2:c2:e5:d2:62:52:10:09:42:84:f0:62:
be:ba:33:89:40:42:ff:48:d4:bf:5d:60:0e:c7:cb:71:4f:98:
11:a6:54:a4:8a:e5:88:5a:cc:7a:99:64:d3:3f:23:6c:d6:3e:
c1:c1:c8:d1:bc:b5:b3:7a:4d:45:aa:f3:73:99:12:9d:d9:71:
71:55:9e:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:54:28 2025 by rpki-client