Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5C2AB0ECC3A411EF944B4AAC762E951A.roa
File: 5C2AB0ECC3A411EF944B4AAC762E951A.roa (raw, json)
Hash identifier: tXrOlFLeY3BWCRqWtWf2ija7ur8jcQVYXum2a7IbBlc=
Subject key identifier: 58:A7:89:63:60:B0:36:41:C5:13:1C:42:6A:86:C6:77:0A:B2:01:7A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EDBB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5C2AB0ECC3A411EF944B4AAC762E951A.roa
Signing time: Thu 26 Dec 2024 16:13:36 +0000
ROA not before: Thu 26 Dec 2024 16:13:32 +0000
ROA not after: Sun 12 Dec 2027 16:13:32 +0000
asID: 17561
IP address blocks: 45.200.200.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60859 (0xedbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 16:13:32 2024 GMT
Not After : Dec 12 16:13:32 2027 GMT
Subject: CN=676d80b0-4245
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ae:df:d5:d2:d8:48:41:1f:f3:54:dd:8f:c6:
e2:5e:33:78:07:b4:f6:38:52:a9:38:2d:8c:1f:96:
d6:df:8b:9e:81:9d:e2:1e:2f:9b:58:fc:14:cb:ce:
40:8b:58:32:85:89:17:e9:22:c1:19:fa:35:27:5c:
83:9d:c7:1a:9d:8a:a6:33:ee:ce:0c:77:47:45:66:
20:ec:2f:c8:c5:68:75:58:76:a7:fb:65:50:be:dc:
44:97:27:80:e3:e8:4a:de:5e:17:d4:b5:09:3c:34:
ed:a0:11:95:b7:4a:a3:9f:f2:31:aa:3d:3e:45:29:
3b:07:8b:9e:73:7c:16:a8:fa:86:15:ed:49:2f:7e:
3a:c4:ba:b4:a5:ae:4e:62:8e:db:1b:54:86:e4:db:
de:bc:5a:56:5c:d7:64:68:16:27:e9:22:7f:02:af:
02:ef:2d:3d:92:ed:4f:d7:d7:3b:2f:d1:77:9a:c5:
8d:e3:80:3a:12:45:50:14:aa:fa:7e:34:ff:52:3c:
9e:73:cd:d4:8e:f9:08:a8:f4:cb:a9:de:41:92:1d:
d2:6f:82:e6:bd:1b:a3:f6:0b:39:28:07:77:15:01:
9c:4b:20:d0:30:94:ad:ed:d0:71:9d:91:12:69:67:
e2:2f:7c:7b:d6:2f:02:ba:c0:81:d4:76:90:1a:dd:
de:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:A7:89:63:60:B0:36:41:C5:13:1C:42:6A:86:C6:77:0A:B2:01:7A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5C2AB0ECC3A411EF944B4AAC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.200.0/24
Signature Algorithm: sha256WithRSAEncryption
25:8c:69:26:f5:03:b6:46:7c:36:ab:6a:b3:c7:31:9b:b7:24:
6a:4b:e9:ae:09:21:fa:a6:f5:08:9a:f1:64:48:b8:f6:19:30:
41:34:64:bd:fd:49:d7:8e:32:15:97:10:54:84:d7:ad:a4:24:
f7:22:59:54:2c:c1:17:4c:f4:18:9f:66:ac:a4:e2:6f:4d:e8:
14:48:e3:ef:d4:6b:96:cc:6d:1f:8e:41:01:26:34:31:e1:22:
17:ce:ee:78:43:76:f6:f4:8f:44:1b:a3:fe:4f:ad:53:52:33:
e5:79:e7:be:98:be:cc:55:d5:19:92:bf:b1:8b:05:a2:c8:5e:
2a:74:0d:ed:e7:34:8e:6e:65:fb:86:cd:46:66:c6:33:04:17:
51:00:41:b1:37:2b:8b:09:14:12:e4:c1:12:62:51:e0:e9:d8:
44:b7:b7:ee:69:86:5f:10:ce:9f:53:81:c3:41:fe:e9:8f:51:
a4:4f:84:b8:d9:f3:5b:21:3c:c3:ae:18:43:ea:09:c8:23:9f:
9f:11:99:3b:6f:4b:29:5b:b1:08:80:80:95:68:6f:a0:c2:5f:
62:e9:94:82:b3:c2:30:9d:58:9e:a8:29:46:49:ab:db:80:1b:
15:01:cd:57:08:f1:d6:51:f7:d3:86:22:12:8e:91:51:67:ee:
d6:97:ce:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:52:32 2025 by rpki-client