Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7303B9A4C3F811EFB485174B762E951A.roa
File: 7303B9A4C3F811EFB485174B762E951A.roa (raw, json)
Hash identifier: 0GkXSIFRBXHR8cdF6O883sZXg4GCAuQllKaF1T+2rs4=
Subject key identifier: 30:FD:FE:27:F4:E6:E2:D0:1C:52:DA:D9:0B:C3:64:CD:51:7B:44:46
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EF86
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7303B9A4C3F811EFB485174B762E951A.roa
Signing time: Fri 27 Dec 2024 02:15:32 +0000
ROA not before: Fri 27 Dec 2024 02:15:28 +0000
ROA not after: Fri 12 Dec 2025 02:15:28 +0000
asID: 984
IP address blocks: 45.194.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61318 (0xef86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 27 02:15:28 2024 GMT
Not After : Dec 12 02:15:28 2025 GMT
Subject: CN=676e0dc4-93ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:f6:80:2c:d6:7b:21:f4:4a:51:71:7e:01:63:
32:c2:03:b1:1d:a4:06:93:0e:e8:05:b1:62:17:88:
58:f8:af:d9:ff:a4:f7:34:4a:8a:2f:a7:c8:8d:15:
1c:54:b6:bd:10:34:78:db:11:02:c1:21:29:ca:03:
99:bc:97:ee:33:87:b4:c2:6c:90:91:18:32:70:bd:
61:74:77:c7:fe:92:83:10:cd:62:90:0d:87:51:cb:
f0:28:da:ec:dc:91:75:02:f2:f9:12:a8:25:ad:44:
01:2c:a2:ff:5b:1e:1e:0b:06:98:32:ff:c3:9a:ee:
63:a8:6d:92:ba:11:3a:30:79:80:bf:fd:2a:48:95:
ab:79:38:94:28:62:04:97:d8:9a:dd:e0:88:c8:89:
ab:27:d6:f4:61:2b:03:81:d7:e2:2c:9d:dc:99:1b:
ba:4d:1e:18:12:e0:b1:a4:52:ef:bd:43:02:b2:e3:
d0:f3:07:ab:e0:30:1d:ca:0e:85:86:a7:85:64:1a:
f8:f0:ad:67:e3:bb:e3:fd:ef:84:a3:66:73:7e:fd:
18:95:7f:6b:95:7c:71:18:ff:3d:9f:89:8d:6c:83:
9f:8e:13:de:14:1d:73:55:f3:34:f9:2c:0c:c7:67:
5a:4c:fb:66:76:39:b3:11:59:76:40:52:b9:23:fb:
3d:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:FD:FE:27:F4:E6:E2:D0:1C:52:DA:D9:0B:C3:64:CD:51:7B:44:46
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7303B9A4C3F811EFB485174B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.83.0/24
Signature Algorithm: sha256WithRSAEncryption
69:9c:86:f4:3c:f4:04:be:67:20:3c:66:8d:c4:19:db:8d:d8:
b4:6c:32:59:75:df:b0:83:b3:80:f5:56:ec:21:3a:33:b6:f5:
41:a3:0e:dc:d9:5e:1a:62:54:30:c5:11:42:ec:1d:81:0b:46:
e0:e6:22:c7:cc:ba:54:e4:1b:e1:1a:14:95:c8:02:89:a4:0a:
28:26:e8:4d:26:b2:26:5a:aa:58:99:d6:80:fb:25:1a:0f:f9:
f0:a7:78:66:0a:35:58:a8:f7:a1:ed:d3:2f:23:d7:44:82:74:
d4:6a:70:40:7f:9f:31:ce:25:6e:33:f0:5d:31:df:7c:19:85:
98:3f:69:6d:1d:35:f7:a9:a0:a1:1d:9a:8d:61:5a:55:df:85:
32:5a:00:9a:f5:ee:d0:8b:b2:2c:65:40:c0:32:37:0f:a7:ee:
59:9d:ee:20:d2:2b:81:5d:14:7c:3f:04:51:e1:76:b2:d7:a7:
4b:b3:16:a4:73:59:78:29:df:e0:79:89:34:1e:11:b9:85:12:
dc:93:82:97:b3:2a:36:dd:6b:8e:19:38:82:05:fd:be:18:b6:
14:3f:59:b8:25:10:c9:21:88:ab:eb:45:64:0c:85:81:68:75:
a2:bc:02:74:c4:a8:be:83:76:a6:b7:c7:f4:7d:fd:08:ea:6d:
8f:2f:fd:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:46:14 2025 by rpki-client