Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/88273B98C40311EF85D58699762E951A.roa
File: 88273B98C40311EF85D58699762E951A.roa (raw, json)
Hash identifier: qGTH7W9MfIQoWNguCQeDfusr3TRuSOHxaOEcc9aUkHE=
Subject key identifier: 49:20:BA:08:33:3A:DC:5F:47:6C:1E:B9:D3:54:A1:11:3B:89:6C:86
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EFF0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/88273B98C40311EF85D58699762E951A.roa
Signing time: Fri 27 Dec 2024 03:34:52 +0000
ROA not before: Fri 27 Dec 2024 03:34:48 +0000
ROA not after: Sun 12 Dec 2027 03:34:48 +0000
asID: 17561
IP address blocks: 45.195.211.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61424 (0xeff0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 27 03:34:48 2024 GMT
Not After : Dec 12 03:34:48 2027 GMT
Subject: CN=676e205c-6f9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b9:4c:81:7e:8f:72:05:3a:ae:57:a8:99:c9:
dc:df:25:b7:15:2b:5a:4e:1a:9a:d1:a2:1d:ce:a5:
98:ab:be:ab:04:c3:f9:31:41:ab:ae:68:99:e1:6c:
d5:dd:3e:c7:8c:5f:ee:b7:30:48:6a:bf:52:da:8b:
99:d4:d3:34:d9:05:03:5b:7f:51:07:07:54:41:5d:
da:f5:cd:39:5c:8b:cd:ad:d7:68:2f:1b:3b:89:6d:
11:4c:f4:f9:9a:76:41:c8:50:d1:d0:1c:19:71:46:
c2:b2:27:ed:1c:80:e2:94:ab:76:45:4a:cf:c1:a1:
61:26:be:1c:15:ee:84:91:97:53:dc:3a:cc:d3:d1:
1b:e2:8b:83:82:73:f5:5c:52:86:a1:5f:04:16:79:
2e:00:25:42:63:2b:ea:4b:06:4b:17:5e:42:ba:dc:
5d:19:77:1e:73:e4:86:f1:cf:c5:4b:8f:e5:d7:7d:
21:a8:6b:c5:1a:f4:8d:98:5f:25:c4:61:61:af:3b:
71:50:78:56:eb:34:bb:f7:f8:c8:a9:25:25:12:22:
4e:44:c2:5b:d5:e7:0d:d3:6f:f7:8b:10:1f:3d:e7:
1c:2c:73:9e:14:46:e4:cd:a6:68:d2:ab:3c:61:e8:
96:54:a3:83:d0:45:07:9d:04:1d:89:ec:ef:9c:8e:
d9:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:20:BA:08:33:3A:DC:5F:47:6C:1E:B9:D3:54:A1:11:3B:89:6C:86
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/88273B98C40311EF85D58699762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.211.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:ed:9d:9d:b6:73:46:ce:ce:49:0b:9c:c6:bf:27:0f:93:b0:
67:00:54:3f:ad:0f:7c:a7:dd:c7:31:9b:0c:6f:6c:ea:35:d0:
d3:c2:79:94:2f:33:38:92:a2:9d:2b:64:21:9f:92:5d:c6:c9:
dc:8e:2c:06:07:a3:60:41:4c:64:81:19:fe:fe:8b:5a:15:13:
53:38:8e:68:86:db:1b:f7:7a:e1:ea:36:eb:8a:eb:fe:5d:f1:
58:13:b5:da:a7:9b:75:10:4c:18:19:51:e3:25:28:9a:d7:1c:
fa:4e:59:64:c0:91:7d:df:c2:55:32:b9:8f:98:1e:b7:69:6f:
a8:4d:f2:07:a1:7e:37:bf:9b:bc:69:9d:2a:66:6f:83:b5:b7:
ba:68:9e:7d:b5:78:2b:5e:6d:22:ea:9c:dd:4b:ae:2d:ad:ca:
c1:a8:9f:a3:fb:ae:77:cb:f4:98:90:29:76:0f:27:8f:20:58:
c7:30:60:f9:10:48:99:96:e3:84:96:a8:c7:35:45:ab:5e:92:
6a:0a:27:63:81:36:cb:5b:f0:3d:38:9e:73:3c:cf:35:43:e8:
39:7b:6f:48:e0:a8:10:01:c0:03:98:9d:d8:04:94:0f:4b:72:
e5:79:15:de:e0:9e:4b:57:d4:27:00:92:ac:67:fa:6c:28:39:
08:1a:38:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:59:39 2025 by rpki-client