Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5FBA713AC3B211EF95AEDE83762E951A.roa
File: 5FBA713AC3B211EF95AEDE83762E951A.roa (raw, json)
Hash identifier: 7DQWWv7O4PtbXV/ypK2Y0Nhr45Ntqe8fvAOip+poVL8=
Subject key identifier: D8:60:99:C1:05:43:19:8C:C8:C2:5B:19:C0:0B:18:68:03:E5:76:09
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EE4F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5FBA713AC3B211EF95AEDE83762E951A.roa
Signing time: Thu 26 Dec 2024 17:53:55 +0000
ROA not before: Thu 26 Dec 2024 17:53:51 +0000
ROA not after: Sun 12 Dec 2027 17:53:51 +0000
asID: 17561
IP address blocks: 45.204.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61007 (0xee4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 17:53:51 2024 GMT
Not After : Dec 12 17:53:51 2027 GMT
Subject: CN=676d9833-62d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:5a:93:e9:3f:f9:38:5d:fd:b0:67:11:0f:aa:
a5:73:37:c8:13:33:6f:19:ee:9e:66:18:f1:1f:aa:
15:eb:7d:3d:1c:95:36:74:70:bc:15:b0:3e:1f:c4:
f6:1c:4b:57:ae:93:d3:a5:0e:6c:f2:b7:71:65:69:
94:79:b9:cf:a4:ff:22:7d:45:4b:a2:c5:f3:f8:25:
1c:82:e6:6a:c3:d9:ab:eb:66:84:01:9b:95:5a:99:
57:ad:25:04:38:61:ea:c2:fb:2b:41:a2:77:2b:60:
d0:a8:6a:67:67:cc:80:d3:bd:02:66:8a:ef:6f:e0:
03:2b:cd:6f:e2:d7:6c:f1:de:6e:5c:68:af:42:dd:
92:8d:32:82:91:23:46:46:15:36:53:d2:28:e2:df:
94:83:8b:6e:4e:9d:6e:4b:54:e1:35:cc:38:31:5c:
29:59:c9:8b:f1:9e:dd:d5:17:72:b9:02:25:33:44:
9f:d1:58:67:f6:26:dc:35:e6:f1:e8:42:79:cd:a3:
3f:41:4b:95:60:40:90:f6:24:06:11:31:38:98:67:
92:a2:ee:2b:ca:c8:db:59:7b:55:29:33:7e:b1:38:
51:51:eb:df:84:55:5f:50:05:8c:5b:c4:da:56:90:
87:2f:4e:7c:5d:eb:b1:ae:da:d0:d2:ed:a7:25:a6:
72:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:60:99:C1:05:43:19:8C:C8:C2:5B:19:C0:0B:18:68:03:E5:76:09
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5FBA713AC3B211EF95AEDE83762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.1.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:b4:02:85:93:89:e0:af:e2:71:c3:6f:fc:ed:95:75:ea:2d:
18:b7:2b:81:10:db:1c:0a:be:3a:64:b0:f3:66:8b:03:1b:5b:
be:f9:d2:4e:39:d2:7a:c4:f6:90:40:d4:28:1b:5d:6d:4d:73:
f2:29:f4:eb:3f:36:09:4a:e2:ca:cb:90:75:55:58:b6:b5:18:
c5:75:3f:9a:85:95:96:78:05:45:39:da:27:97:a1:45:56:c7:
19:7e:d0:16:7d:08:3c:28:99:95:b4:a6:6e:65:1b:65:02:89:
a2:9e:a9:a8:9c:ac:71:99:d2:af:f0:c5:76:69:09:83:ee:46:
38:6b:a9:e6:e5:7d:39:99:06:97:37:84:e1:c3:41:c2:3f:ec:
49:fa:57:05:aa:03:11:12:0c:8a:76:5e:74:12:b0:cd:4a:a4:
4d:6f:a3:7d:1e:ec:ff:49:15:d2:f0:75:a2:dd:a3:0e:cc:14:
57:d2:73:5b:80:ea:c6:a3:f6:20:9f:51:43:e0:9c:09:e6:63:
be:7c:09:82:ee:02:99:e8:21:e6:0d:9e:d8:b6:fc:87:00:62:
ac:f2:0c:d7:3f:97:61:ed:6d:1f:8f:08:7a:bc:77:63:c9:4d:
48:a6:c5:e6:e4:39:41:79:e9:c2:54:2f:27:86:c1:24:e8:dc:
aa:e9:7b:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:48:37 2025 by rpki-client