Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8CCCFAFAC3F111EF93FD3096762E951A.roa
File: 8CCCFAFAC3F111EF93FD3096762E951A.roa (raw, json)
Hash identifier: wt66uKK6GMyXiU41JKaknhtky5JitE64vucrahrbVxc=
Subject key identifier: 55:0E:BA:7B:E6:18:E2:AC:02:BA:4D:29:76:DB:7A:31:39:44:3D:59
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EF56
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8CCCFAFAC3F111EF93FD3096762E951A.roa
Signing time: Fri 27 Dec 2024 01:26:09 +0000
ROA not before: Fri 27 Dec 2024 01:26:05 +0000
ROA not after: Sun 12 Dec 2027 01:26:05 +0000
asID: 17561
IP address blocks: 45.192.251.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61270 (0xef56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 27 01:26:05 2024 GMT
Not After : Dec 12 01:26:05 2027 GMT
Subject: CN=676e0231-423c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:15:04:99:eb:2d:05:17:e9:2e:28:90:95:f2:
fd:ed:4a:94:5b:1d:8f:d7:1f:24:0e:cb:94:d7:2a:
28:3f:33:4f:0e:ce:ba:65:fb:35:02:f3:d0:18:c8:
4e:d4:90:4b:0d:c1:d1:b1:5d:2e:3f:3d:d5:fe:45:
b3:a7:2f:93:d4:e1:b7:48:19:e0:66:6c:4a:83:7b:
e9:bd:94:bb:55:4f:a3:02:2c:ad:91:fe:da:8b:d0:
2b:27:d2:61:7b:4b:a0:02:a1:0e:d4:90:34:c3:90:
dd:5f:bc:be:1e:52:bd:3a:4f:62:f6:5d:65:f2:0f:
8a:07:65:50:2d:77:7d:39:45:b5:56:cd:1d:ec:2c:
55:a5:0f:5a:81:da:93:02:c2:ab:a4:49:16:c6:aa:
d7:b0:b9:9c:33:a2:9a:85:5e:69:3b:af:f2:54:7f:
8b:30:43:8d:16:c8:bd:0a:93:07:16:f7:ec:ad:2c:
2c:94:dd:9a:d7:98:c1:18:b0:28:2a:0c:44:13:ef:
18:98:ff:cc:76:9e:87:a8:18:3c:51:5b:f5:b9:fd:
df:b8:1f:91:c1:42:e1:7e:22:16:6c:b1:4e:28:98:
0e:8b:03:8a:23:75:0e:2f:4a:57:62:37:37:f2:4d:
77:a7:31:ed:fe:77:72:dd:d9:be:91:16:98:6c:39:
b7:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:0E:BA:7B:E6:18:E2:AC:02:BA:4D:29:76:DB:7A:31:39:44:3D:59
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8CCCFAFAC3F111EF93FD3096762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.251.0/24
Signature Algorithm: sha256WithRSAEncryption
89:ee:9d:03:05:d1:01:d1:9e:04:a4:9e:02:46:45:fa:2e:ac:
36:17:af:0c:96:49:11:38:2a:f2:e5:1f:69:9d:4f:87:c3:09:
4b:a2:95:bd:ab:67:a8:d6:c4:8e:15:59:da:5a:f4:91:af:7c:
64:71:dc:f7:fc:bb:a4:b3:94:27:74:8b:1b:aa:d4:16:6b:b0:
22:74:0d:5f:e7:cb:ab:f9:e4:73:b8:9a:6f:51:eb:c8:14:4d:
92:90:8d:dc:2c:78:90:71:06:b8:20:0c:d0:b8:4e:c4:a2:57:
21:bc:d5:4e:21:a8:31:0d:06:7a:c5:e9:8c:78:a5:bb:a4:20:
f9:5d:76:46:37:81:7a:bc:09:fd:93:dc:3e:17:99:3b:f7:51:
32:7c:79:fc:5e:d6:a9:a1:db:27:a2:94:21:dc:a3:0a:b0:96:
d5:83:21:4f:eb:1b:7b:1e:46:d6:3b:25:98:70:f3:0a:29:26:
97:31:79:fd:c7:67:86:30:b4:22:3c:74:e3:a7:a2:79:91:eb:
e2:43:30:ed:cf:d7:ed:86:20:d4:2d:a0:ad:35:dc:17:8b:f0:
98:61:b3:f2:1e:82:b0:b3:86:9e:90:1c:50:8a:b2:46:07:47:
91:40:90:2e:a8:cb:8b:0e:25:0b:20:0e:64:ea:0d:14:0c:43:
a3:36:ab:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:36:59 2025 by rpki-client