Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7D6432ECB5F811EF9FC4E380762E951A.roa
File: 7D6432ECB5F811EF9FC4E380762E951A.roa (raw, json)
Hash identifier: hLNUd0pUYakOgBsGhQ/mAi9LHvE8V2t3GJpxFA+TNSE=
Subject key identifier: 2E:35:DF:9C:C3:32:E6:F8:62:06:7A:02:3C:A5:2D:D6:39:0B:92:70
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E136
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7D6432ECB5F811EF9FC4E380762E951A.roa
Signing time: Mon 09 Dec 2024 06:40:33 +0000
ROA not before: Mon 09 Dec 2024 06:40:30 +0000
ROA not after: Mon 19 Oct 2026 06:40:30 +0000
asID: 149014
IP address blocks: 45.195.56.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57654 (0xe136)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 9 06:40:30 2024 GMT
Not After : Oct 19 06:40:30 2026 GMT
Subject: CN=675690e1-e163
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:93:ad:e7:29:42:a9:39:78:c3:cd:85:38:5a:
cd:09:f9:83:48:0b:68:19:31:8b:c9:b4:1d:c3:44:
b7:03:ad:28:07:1f:33:d8:62:df:62:f9:3a:ee:d8:
2a:f5:22:63:b8:aa:59:7b:5e:1d:ab:9b:75:90:a2:
a1:88:a5:1f:43:bc:e2:dd:b1:b5:02:3c:00:b8:4d:
9f:99:2a:2b:27:b2:ad:70:ac:74:7f:26:aa:4b:1c:
56:02:73:37:9a:ac:1a:46:37:fc:70:f3:c2:46:0e:
e7:16:15:d2:64:7c:87:4d:a0:08:1f:8f:70:b4:33:
d4:4f:c8:02:02:ac:a2:93:7a:4a:ac:b1:c3:49:82:
41:10:d1:d8:03:51:73:74:0f:fe:41:9a:1d:48:31:
28:f9:63:39:be:0b:8e:e8:5e:f9:4c:3f:73:ff:96:
2a:31:0e:3f:f1:97:7c:d7:f4:f9:fb:88:5e:49:a0:
bc:d0:84:a9:ff:cc:24:d9:4e:c1:64:a8:ea:68:11:
d5:78:f5:b1:21:a0:64:c0:2e:4d:ff:1e:35:25:de:
88:ef:08:e4:61:3a:00:d7:22:b8:74:c4:bf:e5:90:
76:91:06:f1:0f:a8:e1:fb:09:45:fd:77:22:bc:31:
c9:53:d7:ce:c3:e2:4c:77:53:b0:c3:0c:1c:c9:44:
2c:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:35:DF:9C:C3:32:E6:F8:62:06:7A:02:3C:A5:2D:D6:39:0B:92:70
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7D6432ECB5F811EF9FC4E380762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.56.0/23
Signature Algorithm: sha256WithRSAEncryption
83:7d:ba:ea:b0:43:5f:2a:0e:74:09:e4:87:53:88:0f:f6:f0:
2c:fb:2c:8c:52:be:4a:3c:60:68:e6:d7:0b:aa:ef:b1:cb:f6:
7c:22:e9:d3:01:76:c4:81:72:a3:93:83:3e:14:ae:46:82:98:
08:7c:d2:75:1e:ac:a4:78:1f:2a:61:25:09:95:e4:ce:11:56:
b8:10:a4:aa:c8:f7:07:30:9c:97:89:de:00:f3:32:f9:36:38:
90:d4:3b:a3:fc:c9:5c:9c:69:93:bc:cd:03:3f:ec:ce:b3:c9:
99:c4:91:1b:dc:8d:9e:8f:4f:e4:e4:e4:8a:2f:b2:a6:e6:b6:
e1:28:de:7f:81:52:f0:89:5f:a1:ea:0c:9b:c3:67:1a:ee:d0:
5c:9f:68:5b:7a:d5:12:25:6f:68:42:e0:01:5a:2c:24:99:ad:
b9:e8:fc:ce:03:77:eb:20:6f:5e:57:59:5d:ae:32:7c:8c:34:
d6:3f:cc:19:8b:7c:30:29:a8:aa:6b:0c:33:50:90:1b:13:8f:
04:49:01:d8:8e:5b:86:1b:ee:09:03:58:01:b3:34:23:90:2a:
07:cc:63:e4:ef:74:81:46:37:44:c4:8c:9e:65:f8:eb:c8:5a:
68:9e:b9:8c:43:16:62:1f:c4:8f:22:ab:aa:d0:e3:25:58:be:
c9:3f:8d:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:49:12 2025 by rpki-client