Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/78A1097CB60911EF851C1D69762E951A.roa
File: 78A1097CB60911EF851C1D69762E951A.roa (raw, json)
Hash identifier: Ay9p+Q17JsJiAmwhsNk9+mMjIaB/o36XfSteAZ/uEcM=
Subject key identifier: EC:76:07:86:50:B5:D0:19:77:64:D8:E0:08:FE:A0:B9:2A:1C:F5:7A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E192
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/78A1097CB60911EF851C1D69762E951A.roa
Signing time: Mon 09 Dec 2024 08:42:07 +0000
ROA not before: Mon 09 Dec 2024 08:42:03 +0000
ROA not after: Thu 06 Feb 2025 08:42:03 +0000
asID: 137443
IP address blocks: 45.192.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Feb 2025 08:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57746 (0xe192)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 9 08:42:03 2024 GMT
Not After : Feb 6 08:42:03 2025 GMT
Subject: CN=6756ad5f-d5cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:99:aa:53:c6:2b:1d:8d:7c:c2:91:c6:30:3f:
d8:c8:11:30:37:94:9f:9f:88:15:88:18:da:3a:f6:
0c:e7:fe:e8:6f:2a:5c:2a:87:60:ae:e4:dd:35:7d:
82:70:4b:8f:83:38:10:8a:31:75:7a:45:bf:02:8e:
6c:42:96:90:16:4c:26:36:e1:42:7b:9e:cd:5d:b5:
a3:ec:5a:d1:66:b8:1b:51:c9:ce:b9:4b:28:62:9e:
04:76:99:82:c9:ff:88:01:ba:f0:6e:50:61:dd:cd:
a5:40:e5:e5:63:78:c5:4c:e2:85:20:11:86:77:46:
e6:18:d5:3b:a1:eb:18:d0:a4:c2:89:06:8a:3e:73:
3d:f1:17:ac:ce:71:ae:f5:9c:d6:40:47:35:bd:90:
f8:f5:90:d1:54:8b:2b:ad:89:2e:ca:80:0d:e9:49:
87:9a:a0:09:47:ce:f0:a2:13:57:80:3a:16:99:16:
e7:4a:68:c8:e2:42:28:47:26:26:e3:81:d7:32:47:
f5:f8:a6:ce:43:fe:14:44:d6:84:0a:57:92:a6:c3:
46:40:08:9e:b2:a3:86:37:de:bd:3e:d6:d9:e7:47:
fd:4d:d9:f3:14:6e:e5:05:65:a2:df:d5:1b:99:60:
53:fc:2d:16:7b:0b:f3:7d:67:d9:bd:e7:36:7c:9e:
bd:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:76:07:86:50:B5:D0:19:77:64:D8:E0:08:FE:A0:B9:2A:1C:F5:7A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/78A1097CB60911EF851C1D69762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.177.0/24
Signature Algorithm: sha256WithRSAEncryption
35:9f:57:e6:a0:4d:30:87:4b:c3:69:ee:d4:f6:60:b5:cc:ec:
96:99:77:d4:76:fa:dc:e9:78:7d:04:75:12:c6:88:c9:d9:7d:
b8:8f:a2:7c:1c:37:7e:8d:9b:88:2c:ad:10:36:98:f5:b4:5e:
87:93:7f:8b:98:f3:77:cf:af:04:3b:d7:ee:9f:42:3d:e3:62:
49:86:6e:39:9a:48:e5:1a:8c:20:3c:36:d0:d9:da:7f:82:9b:
eb:45:49:3b:f6:b9:66:34:83:ef:90:29:07:03:d0:d5:4b:4b:
64:6e:b7:de:39:6d:b4:c0:d4:03:11:63:c5:96:49:16:7f:80:
15:85:5d:fe:78:e0:bd:05:19:45:8f:e2:b7:94:92:4d:c0:7d:
ed:f2:85:06:5a:71:6b:8b:02:d7:06:c0:1e:ff:d4:04:ac:8a:
73:56:71:02:88:5d:33:f4:3d:c3:8a:20:f2:2e:e0:05:f7:77:
8b:8d:47:05:ff:bb:5a:f0:95:ab:f6:dd:0b:b0:af:2d:75:ce:
32:40:1e:5f:2c:5d:84:47:bf:1f:d9:5d:e1:49:c1:d7:16:87:
f6:0e:39:a3:16:d3:39:0b:16:10:ab:84:3a:9d:d7:78:80:7e:
bd:2c:15:07:6c:cd:ed:a9:75:31:ef:ac:88:fa:78:5a:51:b1:
2f:ee:3e:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:39:42 2025 by rpki-client