Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5ABDE72AACA111EF9FA28CA2762E951A.roa
File: 5ABDE72AACA111EF9FA28CA2762E951A.roa (raw, json)
Hash identifier: KJN1SMt011ZgnHRXXGa9/RUDW7NqpyqH4/aU1cfpSDc=
Subject key identifier: 0D:60:82:DC:F0:A4:7B:63:52:39:54:A8:2E:41:89:3C:FE:69:45:39
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: DBD6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5ABDE72AACA111EF9FA28CA2762E951A.roa
Signing time: Wed 27 Nov 2024 09:24:08 +0000
ROA not before: Wed 27 Nov 2024 09:24:05 +0000
ROA not after: Tue 11 Feb 2025 09:24:05 +0000
asID: 7029
IP address blocks: 45.196.40.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56278 (0xdbd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Nov 27 09:24:05 2024 GMT
Not After : Feb 11 09:24:05 2025 GMT
Subject: CN=6746e538-aef0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:4d:b9:20:d0:0e:85:40:c7:ab:b2:f2:8f:94:
c7:94:9a:a5:19:3b:b3:77:87:55:c7:a5:7a:8b:65:
bc:3c:0c:61:bb:e4:05:0c:06:5a:af:07:4e:02:aa:
99:a0:9c:81:ad:5f:0d:41:32:bf:40:58:04:b2:78:
a0:79:15:4b:ff:c6:70:60:b9:04:1b:d9:76:4e:eb:
bb:ce:a5:93:fb:cb:66:f8:b3:52:3a:a6:11:9a:4a:
ba:7c:fb:30:5b:03:ed:75:26:27:bd:7d:4b:ef:2c:
c9:00:30:11:48:3f:a1:be:0b:91:a9:80:86:2f:1d:
48:dc:ce:27:7b:eb:fb:59:59:7e:e1:61:73:b1:4e:
d3:bb:35:42:55:99:6b:cf:e7:11:02:0d:26:8b:46:
63:de:7c:4a:3c:35:7c:45:55:76:90:d2:98:e4:b7:
c9:07:71:43:e5:e8:70:3d:82:82:35:fb:cf:9a:d3:
7b:44:89:18:63:2e:67:84:1e:ef:6d:b6:5a:5a:f7:
c0:49:75:a3:1e:37:1b:d7:55:f6:e0:1b:d8:80:ee:
aa:7e:e0:73:8b:1f:2a:6a:d9:ea:09:b6:7c:90:cb:
38:77:fe:14:ae:4d:7d:bf:b8:f6:be:3e:e2:6c:6f:
c0:e4:2b:47:83:1c:98:1f:de:57:c8:14:fe:48:6e:
cd:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:60:82:DC:F0:A4:7B:63:52:39:54:A8:2E:41:89:3C:FE:69:45:39
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5ABDE72AACA111EF9FA28CA2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.40.0/22
Signature Algorithm: sha256WithRSAEncryption
08:43:0e:fc:a8:2b:ac:9f:dc:d8:16:93:97:3d:44:71:58:23:
b5:b6:1a:ff:29:e2:b2:4a:4b:f0:6b:cf:8e:02:76:98:36:69:
f7:7a:c5:71:0e:ee:d0:03:f7:e5:0e:63:54:75:02:fa:e4:40:
3a:3c:2c:4a:0d:79:59:ed:7a:14:2a:4d:f7:81:c3:4b:68:da:
97:75:11:a0:5a:b0:90:44:6b:08:90:bb:33:33:89:21:e2:86:
65:08:3f:fd:ea:e3:3e:e6:01:45:c2:5e:6f:96:c0:ee:25:5b:
6d:08:d2:a3:55:67:93:31:17:fb:7b:74:6c:42:81:a3:fa:65:
5f:85:71:a7:d1:4c:8b:52:9d:70:86:0d:d0:04:a1:63:c7:b8:
91:da:a9:20:c1:7f:0d:1a:4e:14:02:a6:ca:2f:59:91:72:4d:
50:88:9a:be:3c:a2:50:66:c3:31:89:22:fe:4d:dc:bd:ee:ff:
86:c9:9c:7b:a2:b3:05:35:3d:72:cb:17:e6:8d:81:07:4b:82:
ae:2b:49:d8:66:9d:28:9c:7d:de:26:16:ea:7f:01:6b:53:85:
77:5f:d6:ab:7b:29:01:b6:a2:91:56:fc:69:5b:64:b1:c2:95:
cc:08:fc:ea:64:37:7c:0b:93:9e:ce:b2:1c:ad:90:29:da:77:
cb:e0:81:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:50:51 2025 by rpki-client