Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/88752068C3A111EF9E13129A762E951A.roa
File: 88752068C3A111EF9E13129A762E951A.roa (raw, json)
Hash identifier: HsHvwK5nP5HZnNSStdGCRNawkirhO7z/TsuOTHMe/zE=
Subject key identifier: 46:2A:3A:75:BE:C7:70:C1:D8:D1:66:73:A0:50:AC:E8:47:B9:2F:A9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: ED9D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/88752068C3A111EF9E13129A762E951A.roa
Signing time: Thu 26 Dec 2024 15:53:22 +0000
ROA not before: Thu 26 Dec 2024 15:53:18 +0000
ROA not after: Sun 12 Dec 2027 15:53:18 +0000
asID: 17561
IP address blocks: 45.200.131.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60829 (0xed9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 15:53:18 2024 GMT
Not After : Dec 12 15:53:18 2027 GMT
Subject: CN=676d7bf2-cc86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:be:41:ba:f0:f9:9a:8a:d2:03:48:22:ee:f5:
09:cc:60:53:c2:bf:c8:20:d3:95:ec:c7:39:b7:1c:
4d:eb:c2:8f:e7:29:bb:9c:9b:dd:16:5a:f2:89:2d:
5f:df:91:76:84:4d:03:b5:31:7b:74:df:c3:a3:41:
44:14:ae:d2:0b:dd:2d:f9:e0:5c:47:48:2e:4a:aa:
02:24:c6:44:b2:55:2d:8b:64:81:a7:79:9b:7b:33:
37:a0:ee:b0:3d:d1:ed:17:d6:e6:e3:15:f4:37:39:
0c:70:33:16:a8:7c:15:9b:08:44:99:08:a7:fe:58:
d0:82:8c:96:22:74:2e:5e:d0:f3:d7:95:14:b6:d7:
d0:f9:70:e5:83:e1:f6:a1:36:7c:06:2a:6e:06:7f:
41:a5:03:3b:34:7b:bf:f0:bd:78:5f:6d:51:e3:f2:
49:70:1f:dd:1d:d6:43:d4:da:33:4d:f5:23:56:a7:
9d:da:17:c4:a8:3b:80:b0:7a:51:7b:8d:a7:40:35:
69:d6:cf:a4:26:d3:33:16:01:c9:0e:22:ea:cf:44:
aa:47:64:a1:d2:a7:d3:5e:6c:f9:a3:96:7f:9d:da:
17:2f:cb:82:26:d5:40:5b:60:11:70:ee:cb:7b:7d:
05:3f:a5:a1:c9:8f:c6:a1:58:4f:83:f3:cd:50:8d:
92:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:2A:3A:75:BE:C7:70:C1:D8:D1:66:73:A0:50:AC:E8:47:B9:2F:A9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/88752068C3A111EF9E13129A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.131.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:61:74:31:76:89:2e:01:da:96:f9:8b:82:1f:0f:1b:36:85:
08:31:74:0a:36:c4:c7:fa:10:ab:ee:09:6e:52:97:1c:cc:dc:
1e:fa:d6:02:6b:16:ec:92:90:17:4a:9e:ab:63:d5:37:65:dd:
0e:2c:ec:a9:e7:ad:84:a7:f3:15:00:98:90:43:4c:00:c8:dd:
b6:e8:b9:6b:7b:7f:35:fe:f8:23:97:01:65:31:9a:d6:10:f1:
b0:3c:bf:ab:a6:c6:c5:08:8b:1f:7e:05:4e:ca:52:59:a2:d9:
0c:8d:40:62:54:ac:6c:fb:1f:17:1c:a3:2a:c1:2f:37:c2:6f:
61:ba:52:25:fc:b0:f0:c4:ad:70:9a:cc:e8:33:3b:af:55:2d:
75:b0:89:56:64:05:42:02:ec:02:a6:f2:f4:92:f1:51:82:be:
01:14:12:70:dd:f6:c9:4b:37:56:1d:88:5e:47:85:e9:6e:25:
48:90:07:d3:85:66:21:02:0d:93:0d:b9:1e:b6:5c:89:ba:45:
67:0d:86:6b:04:0a:2a:1b:b5:6f:d4:a9:41:95:7c:ec:d1:14:
c7:4c:7b:83:d5:dc:90:03:c5:23:70:b6:8c:cf:2d:ea:2d:4a:
27:4a:41:f8:4e:83:23:20:92:46:69:e0:69:b3:c0:d0:47:ec:
6d:2e:23:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:57:37 2025 by rpki-client