Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7706ACA4D17811EF9047D491762E951A.roa
File: 7706ACA4D17811EF9047D491762E951A.roa (raw, json)
Hash identifier: jxzP/oLkOHFf0M4bdarys+gKZh35nx2jb1E5B87jdO8=
Subject key identifier: 39:79:52:DB:E5:58:6B:5E:7D:96:81:C5:AD:68:95:EE:14:F5:2E:A1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010662
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7706ACA4D17811EF9047D491762E951A.roa
Signing time: Mon 13 Jan 2025 06:34:40 +0000
ROA not before: Mon 13 Jan 2025 06:34:35 +0000
ROA not after: Sat 15 Feb 2025 06:34:35 +0000
asID: 273222
IP address blocks: 45.194.8.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67170 (0x10662)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 13 06:34:35 2025 GMT
Not After : Feb 15 06:34:35 2025 GMT
Subject: CN=6784b400-0002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:20:34:f9:b7:7a:cf:d8:d7:14:b5:d8:f4:50:
40:9e:37:9a:35:d2:d1:00:b7:81:d2:42:4f:ed:9e:
0b:75:35:74:3a:f8:89:36:33:82:3c:79:03:fd:6d:
2a:a3:2e:ee:75:e1:eb:6d:74:28:42:59:08:d9:87:
cb:3c:61:2e:32:bb:7b:49:5c:2b:b9:2a:79:ac:90:
84:31:71:91:fa:af:d9:f9:c2:f3:2c:51:40:64:86:
bb:66:48:69:a3:fe:fa:80:47:12:ff:e1:10:3d:5a:
0d:4f:36:a7:65:ff:9a:50:2f:e3:a3:9b:4b:fa:71:
03:ff:ee:62:5d:29:6f:0d:7e:66:17:46:b0:d9:28:
f1:86:b9:58:7b:fe:c9:c0:5a:34:87:cc:54:24:da:
1e:1a:c8:09:b5:fc:e8:21:d7:a6:71:e1:22:e4:8f:
27:0b:33:37:29:2e:01:7c:60:98:bd:69:f3:db:eb:
11:1e:b4:ce:c7:5c:70:33:2d:a9:53:33:c3:38:04:
ee:83:88:ba:fc:e8:f7:93:03:ca:97:fb:4f:52:9f:
d7:42:e1:8c:94:13:2c:41:e6:0f:9d:80:a0:bb:8c:
64:71:14:de:71:79:60:94:f2:57:5d:24:c0:b7:9a:
24:d5:5b:39:78:81:77:68:5d:70:38:2b:b4:a3:56:
0d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:79:52:DB:E5:58:6B:5E:7D:96:81:C5:AD:68:95:EE:14:F5:2E:A1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7706ACA4D17811EF9047D491762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.8.0/23
Signature Algorithm: sha256WithRSAEncryption
59:a9:83:7c:2a:d6:cf:03:62:82:d8:ff:17:c5:3e:65:81:14:
71:87:14:ee:48:48:82:30:c2:9b:e6:9e:b2:81:03:e6:d0:d1:
11:0a:1a:12:31:2a:a9:7e:ed:ab:a4:96:fa:f7:45:31:42:ef:
f4:82:e2:ba:26:e1:60:45:28:24:3a:64:8d:86:2a:d1:cb:bd:
90:47:eb:c5:6b:0e:8d:09:6e:8f:f5:5f:e2:0e:4c:5e:49:4d:
3f:e9:92:1c:00:40:63:31:ed:e0:c6:2f:31:9b:de:be:cb:40:
1f:88:02:29:52:b4:c1:15:4b:42:08:d5:4d:91:7c:c0:c8:a3:
b3:6b:4f:4e:f6:d7:ce:74:10:b8:ee:6c:0a:03:7c:c7:86:3f:
4b:cc:95:44:f2:9d:69:4d:1a:58:7e:d7:17:ea:4e:23:b4:02:
f1:a0:f4:ab:08:0f:e6:0d:6c:81:d7:95:ed:48:03:2e:f8:2c:
0f:90:0d:9b:65:7f:65:45:85:ea:94:75:7c:ab:1f:07:70:ed:
50:05:6f:fa:8a:58:47:15:00:db:0c:cc:2e:31:9a:b8:bd:9e:
3f:3e:80:74:50:de:01:f3:0c:d1:11:6e:1b:78:f8:71:40:73:
b8:90:54:f7:ea:63:ab:70:93:20:2e:21:a8:af:ab:b8:66:0a:
a9:96:72:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:51:46 2025 by rpki-client