Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/92CB192EC3BE11EF8C20E551762E951A.roa
File: 92CB192EC3BE11EF8C20E551762E951A.roa (raw, json)
Hash identifier: iXbwUQai6Ojnfat22Nbl5z7oLHXkT2s7JDr/+DlXe4Q=
Subject key identifier: 27:54:14:F6:EA:59:3C:FA:F3:E9:BD:54:CA:E2:2D:39:60:3D:68:D1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EECD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/92CB192EC3BE11EF8C20E551762E951A.roa
Signing time: Thu 26 Dec 2024 19:21:15 +0000
ROA not before: Thu 26 Dec 2024 19:21:11 +0000
ROA not after: Fri 12 Dec 2025 19:21:11 +0000
asID: 984
IP address blocks: 45.207.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61133 (0xeecd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 19:21:11 2024 GMT
Not After : Dec 12 19:21:11 2025 GMT
Subject: CN=676dacab-87a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a2:fc:d6:78:c7:88:7d:6e:d2:5b:59:b3:25:
9f:a0:a5:5f:0f:a1:b4:a0:65:e7:2e:72:fc:75:ba:
03:a1:3d:70:14:be:80:06:d3:6a:d6:40:9d:26:be:
60:38:14:68:fd:de:d8:a9:90:11:e8:3d:7f:03:89:
e8:e6:4f:70:cb:44:1f:a7:06:58:23:70:db:c9:55:
69:f0:a0:35:20:8e:c6:54:07:85:0d:36:68:08:86:
1f:10:28:7b:36:c9:26:bd:63:bf:ce:9d:aa:ca:51:
13:d8:ba:e0:3f:bc:a8:7b:5f:98:3e:97:d4:9e:35:
59:50:fb:97:44:57:2d:02:df:b8:f5:6d:8f:30:94:
ec:a3:bf:4e:93:0a:56:b9:09:d1:30:92:f9:31:bf:
1f:ab:26:42:13:02:d4:ea:19:03:e5:c6:4f:ae:1c:
03:07:ee:a7:7f:1d:02:b9:74:23:0a:bf:55:89:8c:
75:7b:d1:f4:5e:27:e7:80:ae:4c:c3:f0:8f:b8:8b:
f9:27:e5:4c:89:a7:95:ab:24:5e:65:6c:90:6e:6c:
48:d9:b8:5b:e0:96:8f:93:76:42:97:54:cc:5a:a7:
bd:69:cc:9c:15:9f:ee:4d:b2:f9:e1:32:87:fc:a4:
e4:11:70:44:b5:d3:e4:f8:92:a8:fb:02:c1:7b:36:
a8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:54:14:F6:EA:59:3C:FA:F3:E9:BD:54:CA:E2:2D:39:60:3D:68:D1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/92CB192EC3BE11EF8C20E551762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.167.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:cf:67:95:d9:49:40:70:4a:f6:10:04:39:c3:f2:72:c3:d4:
1c:0f:8c:68:e0:db:85:31:90:87:75:e5:11:2c:2c:75:5e:61:
fd:b1:f9:a3:b1:88:ae:30:70:df:34:bd:30:58:db:8a:51:09:
fa:f8:f6:07:6a:62:91:8b:d9:7c:9d:25:54:be:5a:b0:de:57:
88:ac:4f:81:1a:76:a4:f0:7c:8f:94:ce:32:35:e2:c6:cb:e9:
19:51:8e:be:e9:c3:96:19:a0:54:af:8c:0d:99:ef:99:08:dc:
96:6b:8d:fb:35:c9:ec:4c:01:b5:b3:51:28:95:a7:ad:07:1f:
b0:0b:0f:89:72:fc:26:1d:27:a9:35:e2:79:49:05:14:c4:40:
60:ba:96:15:b0:54:d3:6a:46:8e:53:e2:2a:0b:17:01:ea:b9:
0e:91:07:94:03:6b:46:18:0c:e5:84:4e:5b:a4:93:b0:74:92:
3c:b1:ef:c1:5a:d3:fd:ba:26:c9:b5:3a:00:0d:64:cc:0b:2a:
97:90:7c:29:59:ae:59:80:d6:c2:1b:62:f2:66:b6:24:1b:f8:
86:a8:24:bd:d5:fc:2c:5e:20:cf:d9:23:31:ce:c5:f2:c4:0c:
72:42:61:8f:ec:71:0f:3c:bf:e0:9a:48:ed:a6:f6:b7:ef:c5:
28:94:70:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:57:58 2025 by rpki-client