Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7423C550CFFA11EF85848BAC762E951A.roa
File: 7423C550CFFA11EF85848BAC762E951A.roa (raw, json)
Hash identifier: 7fZ4tmRQqWL1CAS/rP0sJvBf/ovvATzDHL5aDUx309o=
Subject key identifier: 47:A4:88:72:F8:E2:05:7C:89:15:D9:CF:DC:7B:8F:B7:96:C3:48:47
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010586
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7423C550CFFA11EF85848BAC762E951A.roa
Signing time: Sat 11 Jan 2025 09:00:07 +0000
ROA not before: Sat 11 Jan 2025 09:00:03 +0000
ROA not after: Fri 14 Feb 2025 09:00:03 +0000
asID: 10103
IP address blocks: 45.196.206.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66950 (0x10586)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 11 09:00:03 2025 GMT
Not After : Feb 14 09:00:03 2025 GMT
Subject: CN=67823317-7b64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:bd:c7:d5:55:f0:88:bb:d4:bc:88:1a:08:8c:
ac:aa:57:06:e7:26:f6:b6:b5:54:61:66:08:65:62:
4b:e3:f4:6c:c6:36:fd:59:ce:3e:9a:ac:e2:3d:32:
85:42:7e:58:7d:4d:ba:9d:33:ce:32:2b:5e:1d:01:
36:91:1b:e0:78:78:79:c8:bc:16:1f:8d:2b:3d:3a:
5b:c4:c4:5e:66:bf:22:ed:f7:eb:6a:7b:42:02:83:
35:c3:f9:64:f2:1c:2d:de:4d:7d:95:ef:e7:7f:bd:
13:f9:43:6b:e6:a8:49:71:41:2f:31:31:ea:a8:f5:
e3:d4:6f:c2:f9:15:af:30:f9:a3:31:8d:ce:a0:7b:
c6:7a:69:4e:5e:a8:a9:52:c8:38:9d:51:85:38:2d:
7b:10:7a:41:53:87:8b:76:cc:dc:e3:8d:98:8a:78:
a9:b5:57:7d:58:7f:1c:fc:b8:37:6a:8d:31:65:5d:
44:55:82:38:5d:d8:db:00:b7:1b:a0:03:e3:e0:ce:
a4:01:2f:5c:04:d0:07:12:1d:89:ee:8e:6d:85:d1:
6c:70:2f:30:e5:e3:28:2f:e7:c6:ad:52:b0:41:7f:
df:22:34:c9:f9:38:98:a0:d7:b7:52:43:7d:37:5e:
57:41:17:b9:77:ed:29:be:a6:1c:ea:67:fc:f4:a0:
fb:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:A4:88:72:F8:E2:05:7C:89:15:D9:CF:DC:7B:8F:B7:96:C3:48:47
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7423C550CFFA11EF85848BAC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.206.0/23
Signature Algorithm: sha256WithRSAEncryption
36:bc:c7:6e:74:ad:2d:0f:44:2c:f9:ed:87:7d:d0:c4:d4:d2:
e8:76:a5:c2:d4:43:27:24:35:89:89:bf:47:8c:4b:1f:56:50:
7b:db:37:49:00:d8:23:5a:95:5f:3b:b0:71:f8:69:fa:a2:69:
ef:92:d6:f7:50:bd:78:80:34:4c:c9:6e:b5:6c:e7:2d:ab:92:
2e:3b:74:80:f0:a3:d5:2f:54:11:c7:51:1f:bd:0c:71:b2:86:
21:1e:11:e0:61:32:e5:d3:0b:d2:42:bd:36:d0:f8:53:ff:97:
38:21:2d:7f:89:05:54:40:3e:bf:cb:df:35:0e:e8:69:94:a3:
99:d7:c9:5f:da:af:f8:50:2a:69:e7:f2:05:9d:4f:47:0b:b8:
d8:53:e8:5b:03:05:70:d6:74:03:21:5c:3f:a6:f2:a2:70:dc:
ae:38:43:43:c1:a1:13:55:2b:3f:26:90:73:21:72:34:b1:81:
73:13:d8:b8:8f:12:7f:33:ff:75:c2:1e:df:e0:e9:b0:07:92:
8a:9f:e7:ff:c9:a6:d2:63:da:eb:4d:40:0e:bc:8d:9b:96:56:
7c:95:9c:c7:a5:53:3f:b5:a8:55:f9:46:4a:dc:70:fa:b4:42:
24:60:ad:19:7c:c3:20:d2:cd:30:10:4c:dc:51:bb:e9:f0:fa:
32:c7:40:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:58:18 2025 by rpki-client