Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/736C724CC3AC11EFA8CDA85F762E951A.roa
File: 736C724CC3AC11EFA8CDA85F762E951A.roa (raw, json)
Hash identifier: 9qdjZveDgi4tC+rCHPIkFtwEbtt07ApGd+CBofI2/Tc=
Subject key identifier: 77:78:39:55:8C:29:A6:8E:CD:DA:27:4D:96:C4:BD:57:03:10:E2:A0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EE11
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/736C724CC3AC11EFA8CDA85F762E951A.roa
Signing time: Thu 26 Dec 2024 17:11:31 +0000
ROA not before: Thu 26 Dec 2024 17:11:27 +0000
ROA not after: Sun 12 Dec 2027 17:11:27 +0000
asID: 17561
IP address blocks: 45.200.243.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60945 (0xee11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 17:11:27 2024 GMT
Not After : Dec 12 17:11:27 2027 GMT
Subject: CN=676d8e43-a260
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:a6:a5:85:bf:bb:93:78:0a:ec:d9:12:ce:45:
84:46:7d:3d:50:3a:9c:80:bd:d3:2c:26:fc:b5:04:
f8:ed:bc:e9:9f:e3:35:b8:c2:77:d6:7a:29:16:82:
40:85:db:df:d6:81:2d:af:9e:cb:8b:14:11:30:51:
77:2e:d8:80:86:25:74:5f:73:36:0b:fb:f2:9e:85:
0f:81:44:3e:89:a3:36:69:2a:7a:27:2e:a3:a9:1d:
43:8d:cb:83:9e:1b:6f:0a:36:1f:82:4b:05:45:dd:
07:58:d3:bd:18:12:20:02:8a:4c:bc:e6:75:9b:f7:
c3:e0:8d:eb:31:c0:af:f6:07:7e:30:b4:9e:5a:26:
5b:74:6d:b2:b6:e6:51:c5:53:e8:6e:20:99:94:0f:
f4:ba:eb:8c:a9:b3:a3:75:6e:8c:82:2d:26:e8:22:
f0:83:48:0a:36:f0:4d:3a:29:89:5e:23:c5:fa:b2:
1a:7c:48:33:90:b5:fd:ac:01:77:f6:a5:67:5b:96:
ad:82:ec:7e:bb:ba:e6:45:40:9f:da:ba:56:8b:bc:
9a:03:36:d0:11:1f:d7:1c:71:23:91:69:b8:75:c1:
6f:5b:fd:22:2d:e6:3c:76:6c:0e:c3:ef:bc:9d:ac:
de:58:15:29:b9:4e:00:55:1e:6a:0e:fd:85:0a:19:
24:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:78:39:55:8C:29:A6:8E:CD:DA:27:4D:96:C4:BD:57:03:10:E2:A0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/736C724CC3AC11EFA8CDA85F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.243.0/24
Signature Algorithm: sha256WithRSAEncryption
60:78:c9:07:06:5f:9a:73:9a:28:81:36:80:0c:0c:e7:e7:89:
f2:a9:18:65:26:23:e3:b1:c6:80:7e:58:1b:2e:96:3d:79:66:
1b:c0:df:a6:45:da:d9:b5:cd:b6:a3:28:14:fe:64:78:b4:59:
2f:42:62:36:6e:81:72:e9:e1:59:d6:77:48:0e:86:ea:8e:62:
7c:1f:30:11:4c:5b:45:83:3c:23:ed:d9:7f:49:14:7c:8a:7b:
83:c7:18:c2:47:7b:12:30:f2:a4:41:6a:17:e1:d3:a7:ce:67:
3e:7c:ee:15:5d:d2:64:c1:8f:eb:4a:4a:27:f5:04:51:0e:8c:
5d:47:bb:78:ff:42:a6:b5:3e:ca:d6:f3:34:de:ad:85:81:b2:
39:f1:4d:6e:69:ab:9b:25:20:e4:91:1d:52:4e:6b:75:25:49:
56:34:95:1c:25:2e:1d:3e:22:d2:68:96:26:b6:52:27:c3:75:
56:26:88:4b:b8:66:7b:36:27:b1:37:8e:f3:24:a4:a9:14:bd:
6a:8d:b1:0b:65:35:74:9c:d7:1c:65:47:ad:d6:9b:1a:11:5e:
17:3f:2d:e3:19:cc:e6:57:0a:a7:f9:c4:4b:db:42:56:1f:23:
eb:05:f1:51:5c:61:f8:d1:73:96:0f:c0:91:5a:28:eb:7a:8b:
b1:37:e5:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:41:08 2025 by rpki-client