Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/84829D78C39711EF8526105C762E951A.roa
File: 84829D78C39711EF8526105C762E951A.roa (raw, json)
Hash identifier: mUheWibxIHumNqWrEmvnLDqXIwazIBtauzQYrvCDIvw=
Subject key identifier: B0:83:15:75:44:DA:38:1B:35:CF:2B:47:DB:5D:E3:35:7F:61:1F:7D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: ED31
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/84829D78C39711EF8526105C762E951A.roa
Signing time: Thu 26 Dec 2024 14:41:40 +0000
ROA not before: Thu 26 Dec 2024 14:41:37 +0000
ROA not after: Fri 12 Dec 2025 14:41:37 +0000
asID: 984
IP address blocks: 45.197.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60721 (0xed31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 14:41:37 2024 GMT
Not After : Dec 12 14:41:37 2025 GMT
Subject: CN=676d6b24-2177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d9:b6:91:09:0b:76:71:6f:44:06:e7:82:00:
ba:f6:40:48:18:26:55:9c:8e:2a:2d:78:b2:f8:20:
59:ca:6b:c5:ed:29:c2:ce:bd:65:0b:9a:b7:43:f1:
67:62:09:67:82:dc:45:89:b9:91:c7:07:53:e3:c3:
e3:0e:8f:31:2f:7f:4b:33:d1:87:89:ef:63:4b:01:
e0:fe:d7:f1:3e:3a:5a:3b:a4:17:1f:dd:89:2d:0c:
08:0f:84:7a:96:57:4c:f9:1d:ac:fb:34:3d:f2:8d:
53:72:09:8d:c0:fa:d3:37:5b:5b:49:9e:a4:d5:22:
b3:b7:1d:ca:64:bd:b7:8a:c6:ad:6d:62:f6:c5:fe:
94:1e:70:2c:df:0c:f9:6e:cf:85:a3:fb:78:2f:f4:
d6:8e:2a:06:65:e8:e0:e1:04:03:31:4c:3f:63:1a:
b0:d0:69:21:89:00:62:5f:85:2d:33:a2:54:12:e3:
42:c4:86:57:6d:00:89:06:57:ec:15:30:ee:57:5e:
54:c3:2c:c3:c9:cf:24:9d:be:b1:09:fe:48:90:01:
92:c7:8b:8b:8e:ba:c7:f4:d3:71:c0:da:56:dd:4c:
57:d3:0b:5e:b6:23:f7:da:2e:dd:a4:30:cf:2d:20:
7f:80:07:f1:5c:a4:ae:93:19:8f:cf:d4:f5:df:bf:
ec:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:83:15:75:44:DA:38:1B:35:CF:2B:47:DB:5D:E3:35:7F:61:1F:7D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/84829D78C39711EF8526105C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.27.0/24
Signature Algorithm: sha256WithRSAEncryption
03:13:6c:db:41:32:76:a3:2f:4e:bd:08:a4:5c:a0:ba:35:91:
b9:1b:08:d9:e5:0d:5c:83:b7:6d:ef:66:a1:97:e6:68:f1:8e:
2f:8e:b9:b8:91:f7:52:1f:ab:16:ee:94:16:84:c0:b9:18:34:
be:01:11:9c:e9:f2:69:a1:84:ca:7a:8a:0f:e4:62:a2:23:b4:
08:70:47:1a:6a:ef:95:16:49:f3:1a:18:66:07:c8:ca:1c:de:
a3:43:f8:91:7f:ad:f4:33:02:f1:34:13:1d:e0:5c:72:9f:2a:
3d:05:af:a0:3f:4c:a1:14:c3:23:c9:54:07:75:e2:a1:6e:11:
19:c4:56:9e:b6:ef:77:9a:04:c5:8b:b5:bf:f1:3d:06:c9:3f:
0e:ca:12:38:5c:2c:d4:43:c7:59:6e:25:41:ff:2e:3a:90:f9:
c8:9c:e4:06:33:d5:97:6e:16:75:b3:d4:84:58:c3:65:c6:04:
a4:a5:c3:93:ca:69:68:4c:63:ae:9a:d5:2c:59:23:7f:0b:68:
28:ca:0c:bb:43:fa:3f:98:90:29:a5:62:c1:b0:f6:e3:e8:ba:
af:3c:08:93:6e:b0:e6:09:48:cd:94:c6:3f:59:84:21:55:5e:
2e:42:64:d8:98:f7:3b:9c:f1:72:6b:b5:b6:e6:c5:e3:60:d1:
a7:32:d2:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:47:35 2025 by rpki-client