Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/62A2465EA8BC11EF94570596762E951A.roa
File: 62A2465EA8BC11EF94570596762E951A.roa (raw, json)
Hash identifier: GnbiogBCdws4XSs26pEdEpLyfSVwAalcJNwda58xQgc=
Subject key identifier: 32:87:D1:AB:AD:CE:C5:CB:3C:16:85:6A:A8:AD:9E:98:16:4F:BD:F5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D7B1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/62A2465EA8BC11EF94570596762E951A.roa
Signing time: Fri 22 Nov 2024 10:27:33 +0000
ROA not before: Fri 22 Nov 2024 10:27:29 +0000
ROA not after: Sat 08 Nov 2025 10:27:29 +0000
asID: 133847
IP address blocks: 45.200.90.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55217 (0xd7b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Nov 22 10:27:29 2024 GMT
Not After : Nov 8 10:27:29 2025 GMT
Subject: CN=67405c95-a9ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:09:78:58:fb:ac:40:06:21:65:94:aa:c1:a3:
02:36:a7:03:a4:80:16:bf:58:b5:44:79:d7:5a:0c:
1e:fe:ba:04:e9:31:62:8c:58:94:3e:3b:f9:61:9d:
5b:1f:51:39:6c:fe:94:14:4f:11:b6:61:39:6a:14:
48:22:2e:be:6a:29:83:56:11:04:aa:6c:a4:9a:f4:
0b:8c:b3:61:6e:78:cb:56:ed:05:af:43:d6:9e:7b:
4b:3e:71:6c:d6:81:d5:2a:62:c2:95:e3:8b:cf:8d:
e2:58:f6:6e:f8:5a:d3:68:be:ed:21:5c:cd:57:ea:
63:6d:78:94:f9:5b:a5:c1:9e:55:f8:7f:2f:5d:3c:
ee:e8:06:4c:26:a3:e4:08:52:de:48:23:9e:91:cb:
45:fd:e6:b3:1d:fa:e8:7d:1f:04:f1:10:50:71:69:
52:92:45:d4:e1:3a:61:99:18:63:99:6f:75:1d:dd:
c4:d9:65:3c:1d:56:76:03:3e:fe:cc:c2:62:63:d8:
e3:b2:e9:8f:bd:b9:7e:bb:33:ac:74:6c:e4:35:55:
41:5f:04:fd:db:03:b8:e4:5c:ab:b7:11:5c:2e:11:
ba:17:a5:49:7b:b9:56:86:4c:be:34:b3:2c:a3:f1:
ee:5e:0a:cb:28:ca:0a:23:bb:77:ef:d9:71:ed:24:
c8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:87:D1:AB:AD:CE:C5:CB:3C:16:85:6A:A8:AD:9E:98:16:4F:BD:F5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/62A2465EA8BC11EF94570596762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.90.0/23
Signature Algorithm: sha256WithRSAEncryption
99:89:47:17:10:9e:df:b0:f7:e3:47:0b:68:4d:19:f6:90:81:
c7:b3:83:d9:8c:25:27:6a:fb:2b:cc:58:a9:2d:9a:61:2c:a9:
54:8d:f8:f5:c0:cd:3a:91:7c:6a:7c:97:f7:10:93:be:c2:96:
41:fa:73:7a:34:aa:21:1b:33:a0:1e:94:17:1e:3b:5b:c2:66:
86:ff:f7:86:3b:03:08:d7:0e:02:7b:5a:34:fc:2d:80:e4:9c:
ee:48:0e:27:75:6e:b6:e6:89:13:00:fc:4c:eb:4e:43:82:9b:
2e:2a:40:24:7a:6c:b1:39:97:d7:88:38:65:a9:94:72:2c:8a:
d6:fd:66:8e:9e:81:8e:67:da:73:ae:03:56:17:71:a2:00:72:
dd:cf:15:9c:11:99:9c:1c:c2:c7:50:d3:93:2a:30:bb:a5:64:
33:5d:31:2e:1b:d0:3a:a1:e0:da:20:c8:81:e1:17:8c:f6:a9:
b7:8b:e6:60:87:49:c1:ac:df:cc:1c:cd:db:e6:e9:cb:14:6b:
7d:2c:36:6a:8c:d2:4b:62:fc:6d:51:50:2f:13:c6:39:c1:d6:
d9:6b:a4:34:fe:1e:8e:bf:de:39:97:ed:f3:fc:21:c0:a2:d9:
02:bf:a4:1f:33:bf:51:ce:02:0a:92:0e:9d:62:8b:7a:81:8a:
63:87:7a:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:51:25 2025 by rpki-client