Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/873DA31CC39911EF8621D368762E951A.roa
File: 873DA31CC39911EF8621D368762E951A.roa (raw, json)
Hash identifier: 8RkY/Fau3s6cHe6A+j2ePzBdOHiLxAjF8+eNHs6eZlY=
Subject key identifier: A9:B1:73:D5:CC:5B:7D:7A:3C:39:D1:B4:70:83:EA:17:37:22:1B:17
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: ED47
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/873DA31CC39911EF8621D368762E951A.roa
Signing time: Thu 26 Dec 2024 14:56:04 +0000
ROA not before: Thu 26 Dec 2024 14:56:00 +0000
ROA not after: Sun 12 Dec 2027 14:56:00 +0000
asID: 17561
IP address blocks: 45.197.139.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60743 (0xed47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 14:56:00 2024 GMT
Not After : Dec 12 14:56:00 2027 GMT
Subject: CN=676d6e84-8369
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4b:33:cd:c8:a4:fb:7d:74:62:a0:c3:bc:e1:
ad:61:35:f5:74:37:c7:af:38:80:00:b8:34:a6:c8:
f0:d4:76:cd:eb:8c:13:8a:a9:db:fd:e9:b3:69:c4:
1c:c1:7d:5e:3d:87:8b:a5:90:92:48:91:51:92:f7:
d3:9f:ef:91:71:be:87:9f:f9:a8:e0:60:03:9b:61:
f2:93:9f:cd:3b:20:b2:30:60:3c:81:d0:ad:69:0c:
c1:72:3b:41:98:91:4f:ab:33:07:fc:6b:3f:9e:d2:
d1:88:5b:23:b7:bf:f5:a3:a1:b4:ad:60:36:2c:5e:
1d:b4:25:cd:38:d9:d5:ea:a9:25:5b:b2:eb:21:20:
6a:c2:42:c7:03:f9:d2:e4:64:1c:5c:85:75:81:1c:
32:71:13:5e:23:cf:dd:52:36:4e:9b:67:8b:e2:c5:
a2:a9:f6:3f:11:0b:80:df:f0:14:da:a0:f5:13:f8:
dd:1a:ab:63:4d:a7:75:e8:58:ad:cb:b9:f6:cd:98:
1a:a2:0c:00:ce:1a:5c:25:de:85:88:78:4f:60:ee:
63:e3:ff:17:92:31:56:81:37:81:21:48:c1:cd:b1:
db:6c:8d:49:db:8d:5e:2a:59:40:c4:6d:eb:5d:9f:
ee:5d:93:b5:a6:45:95:f2:76:e8:b2:ad:ff:52:00:
bd:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:B1:73:D5:CC:5B:7D:7A:3C:39:D1:B4:70:83:EA:17:37:22:1B:17
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/873DA31CC39911EF8621D368762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.139.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:b1:b2:77:13:ef:06:28:e5:a0:3b:97:70:f2:e5:c9:65:d3:
f7:3e:b5:09:4e:ce:6c:fb:01:c9:70:b9:9a:35:6d:8a:86:a0:
4e:1c:ed:31:f4:5c:9f:55:09:cc:24:10:41:f8:f1:42:91:85:
b1:f2:94:bf:42:90:02:a6:4f:38:2c:73:fd:fe:b1:fb:ec:de:
36:0e:76:e7:cc:d4:fd:f7:da:ac:53:24:9e:ee:79:5d:a1:db:
01:36:22:f1:b6:25:19:65:d0:b6:6a:88:76:87:63:a9:7c:8e:
21:8d:16:68:4d:33:19:9e:52:03:64:05:c1:33:d0:d8:f4:96:
26:6b:54:0a:fc:45:3a:95:37:28:13:af:e4:e6:72:10:df:fa:
e1:44:b0:9f:b4:4c:00:93:5e:8f:40:aa:29:11:70:45:8b:ee:
b9:42:0d:23:29:5b:21:df:f4:bc:9a:14:28:5f:89:21:b0:e5:
80:f2:62:e2:f3:28:7d:19:8f:81:7c:77:90:b7:66:0d:89:01:
58:1c:3e:f5:ba:fd:2e:7b:44:cf:c7:70:03:5b:92:7a:b1:73:
58:f9:78:5e:8a:31:ad:5e:1c:3d:18:3f:fa:aa:85:c4:91:40:
82:60:3c:4e:69:63:21:5d:94:46:09:e9:21:02:a7:80:ca:03:
e1:e8:ec:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:41:47 2025 by rpki-client