Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8BBCFD10C3A411EFBB7125AE762E951A.roa
File: 8BBCFD10C3A411EFBB7125AE762E951A.roa (raw, json)
Hash identifier: encsvIyxmw9vVsTfADE3roL4k2MErNqXLXn++x/JbVE=
Subject key identifier: 20:77:C6:5C:E2:BB:8D:8F:D2:63:E8:14:21:9D:DC:EB:73:11:AF:39
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EDBD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8BBCFD10C3A411EFBB7125AE762E951A.roa
Signing time: Thu 26 Dec 2024 16:14:56 +0000
ROA not before: Thu 26 Dec 2024 16:14:52 +0000
ROA not after: Sun 12 Dec 2027 16:14:52 +0000
asID: 17561
IP address blocks: 45.200.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60861 (0xedbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 16:14:52 2024 GMT
Not After : Dec 12 16:14:52 2027 GMT
Subject: CN=676d8100-83c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:08:b9:aa:b6:b2:5f:f6:40:27:ff:16:c7:fc:
90:20:49:97:e0:08:97:24:44:d7:78:78:14:7c:5c:
2c:d3:d9:40:6f:93:06:1b:d7:ca:68:45:99:2a:f0:
1a:23:76:0a:ee:1b:f9:14:3e:3f:83:e1:ef:c0:f7:
e1:d3:1a:a4:c1:c1:ee:64:98:ba:5a:49:47:84:b2:
4e:6c:c7:b8:86:12:c7:24:7e:9a:1a:19:f8:31:24:
ad:4a:3f:7d:d2:4c:45:62:19:81:89:fa:83:4f:46:
84:0a:61:e9:e2:4e:7b:f6:3d:13:e7:be:b2:81:20:
7e:a4:bd:48:40:95:ff:81:0f:4a:ac:a9:f7:b7:ea:
6e:bc:5d:a1:ff:c6:92:ef:de:d1:f6:e2:d4:e5:42:
04:41:90:9e:a1:c9:88:7c:da:21:22:94:8a:3b:5c:
0b:79:5a:3a:fe:86:6d:25:47:e0:e2:62:19:67:5c:
65:35:ec:a2:80:92:4a:c7:1c:18:4d:69:ce:43:83:
b3:ed:da:8b:95:eb:41:d8:96:3b:7a:4f:5c:2c:cc:
a8:f2:82:bd:5d:45:12:65:fa:81:74:5d:6e:be:72:
33:c9:9f:8f:bb:6a:1b:c1:0c:2b:40:cd:86:90:81:
5a:6d:b6:c3:38:3d:a5:f8:48:c3:53:32:a4:bd:8a:
1f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:77:C6:5C:E2:BB:8D:8F:D2:63:E8:14:21:9D:DC:EB:73:11:AF:39
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8BBCFD10C3A411EFBB7125AE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.201.0/24
Signature Algorithm: sha256WithRSAEncryption
90:c4:70:b0:b1:7d:d9:a5:26:b9:42:02:cc:28:04:8b:5f:99:
21:c8:79:dd:16:9a:4a:1a:e2:25:b0:56:c9:e6:f3:89:56:1f:
08:86:33:8b:e5:bc:2e:71:38:fc:98:b6:e9:60:74:f3:89:3e:
49:c5:be:be:35:3a:85:3f:31:74:88:44:90:ca:32:10:c5:75:
bb:35:d6:34:e3:0a:9f:8b:c5:d1:80:c1:2f:15:ca:7f:92:77:
1d:b8:2a:1c:eb:a3:9e:7d:cf:3a:f7:9e:95:05:5c:7d:03:a7:
1e:31:5c:a4:b9:a9:89:81:15:91:51:8d:07:41:53:08:f7:71:
59:1b:f7:cb:e7:8c:ac:d1:80:88:3b:23:d6:96:50:fa:0d:bb:
1a:55:b8:ca:fc:5a:27:18:fc:f8:4c:2f:99:e7:b3:66:85:4f:
c1:00:1e:db:18:98:b1:bd:f2:f3:49:f2:b7:f2:37:45:e5:5f:
83:4b:c1:81:e4:96:75:7a:45:90:ca:e8:78:4b:89:de:79:39:
9b:c1:85:f1:50:ec:1b:4e:ab:a8:1a:09:da:31:da:86:9c:19:
71:0a:68:c6:10:a1:ae:1d:3a:aa:df:b7:e6:b3:36:53:66:a9:
01:57:b2:76:03:d8:01:27:c0:16:76:c8:31:ea:5a:56:2b:d6:
4d:54:44:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:58:27 2025 by rpki-client