Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/80195A10C39C11EF83183E7A762E951A.roa
File: 80195A10C39C11EF83183E7A762E951A.roa (raw, json)
Hash identifier: vKHy1JQEVh48FF+x0g6RnDlVRfmcABtoc5ICpUtPexc=
Subject key identifier: A9:F6:2E:67:FE:AD:52:95:5F:E8:94:76:B8:7E:2A:3C:23:EC:54:78
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: ED67
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/80195A10C39C11EF83183E7A762E951A.roa
Signing time: Thu 26 Dec 2024 15:17:20 +0000
ROA not before: Thu 26 Dec 2024 15:17:17 +0000
ROA not after: Fri 12 Dec 2025 15:17:17 +0000
asID: 984
IP address blocks: 45.199.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60775 (0xed67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 15:17:17 2024 GMT
Not After : Dec 12 15:17:17 2025 GMT
Subject: CN=676d7380-afd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ff:d7:d9:dd:81:66:17:30:d6:cf:07:09:2a:
02:1d:1a:60:97:d1:fa:5f:65:34:36:b5:e1:86:35:
b9:be:49:69:12:f5:af:95:62:1d:72:b5:aa:0c:ac:
c1:7e:81:12:c8:9d:6e:90:fc:cf:64:bd:7e:1b:2f:
57:98:09:7f:f5:eb:0b:59:cc:af:07:bc:e1:b2:55:
f4:b3:96:55:a9:49:7e:b0:8d:de:df:69:18:c4:72:
a9:75:61:95:36:57:8d:82:3a:68:a3:54:1a:6d:3a:
d8:e6:03:02:02:d8:4b:8a:bd:c7:af:08:88:df:c2:
ea:52:c1:1d:69:dd:af:e2:09:84:9a:2b:db:71:ea:
cc:14:2c:c0:82:a6:83:3e:7a:33:f0:9f:9c:82:aa:
10:dc:6a:cc:b9:f1:35:7e:15:10:ff:d4:d8:c6:7c:
4c:0d:38:c7:8b:bb:23:99:43:c1:50:ca:96:11:7c:
45:d4:fc:6f:ef:49:a0:56:51:d9:55:ae:b2:e7:7f:
03:29:bd:2c:cb:10:30:72:ef:57:70:f4:3b:c6:53:
9b:d8:15:0c:ca:ad:0d:7b:cf:cb:d3:92:35:ea:e4:
17:c7:ec:6e:a9:6c:8a:39:55:db:f8:c8:c0:e7:46:
8e:58:85:ae:e5:7b:d8:1d:bf:fc:a6:5f:39:19:8d:
6c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:F6:2E:67:FE:AD:52:95:5F:E8:94:76:B8:7E:2A:3C:23:EC:54:78
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/80195A10C39C11EF83183E7A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.132.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:dd:89:d9:7d:45:63:ce:a4:f0:18:d8:5a:b5:cb:77:d8:16:
f3:6c:4d:67:5e:b2:85:ef:fd:ff:63:d2:25:df:71:c1:e0:7c:
51:26:5d:2a:0c:ff:48:68:45:89:6c:35:de:60:7b:76:98:8c:
8a:ab:63:f0:2a:ac:e2:31:33:aa:ac:e9:22:6e:54:f2:fd:81:
ae:3b:9e:96:60:91:e2:79:3d:d9:95:87:6c:b8:0d:fd:78:a2:
70:c7:54:be:0b:61:7d:24:29:33:16:7b:2c:8b:86:21:04:98:
4f:37:2a:ea:e6:e0:3c:46:c1:3a:5f:6b:3b:60:e4:e4:a2:03:
bd:3c:b5:d6:73:88:69:2d:fb:d5:41:9a:5f:8d:81:36:bb:f1:
31:eb:e9:f9:d5:b5:f1:fe:d1:76:56:5e:9d:74:f7:7e:55:e0:
10:c5:35:58:fd:7f:a8:1b:cc:3a:d1:15:10:b8:57:45:90:47:
13:e2:71:1d:a8:b3:78:25:67:e6:b5:6d:9f:ff:ba:62:1e:11:
59:c1:d1:07:cc:58:d0:c2:6c:4a:bd:68:4e:6a:f6:f5:5a:6c:
2a:d8:60:c1:2e:4c:63:9d:f4:c0:99:2d:a7:30:93:cc:74:28:
04:fb:56:51:e9:33:72:e2:59:81:89:0a:18:ae:65:7b:82:0d:
28:cc:e8:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:52:37 2025 by rpki-client