Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9BFC1388C3A311EF8F30F3A6762E951A.roa
File: 9BFC1388C3A311EF8F30F3A6762E951A.roa (raw, json)
Hash identifier: 3jjs8rLwHpAvupKg7CQp5Vr1cRnglHTc804LrZ+EZSw=
Subject key identifier: 22:CE:55:AE:E8:B1:8D:AD:5E:2A:44:57:EC:AC:23:8F:1E:DA:37:C5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EDB3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9BFC1388C3A311EF8F30F3A6762E951A.roa
Signing time: Thu 26 Dec 2024 16:08:14 +0000
ROA not before: Thu 26 Dec 2024 16:08:10 +0000
ROA not after: Sun 12 Dec 2027 16:08:10 +0000
asID: 17561
IP address blocks: 45.200.196.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60851 (0xedb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 16:08:10 2024 GMT
Not After : Dec 12 16:08:10 2027 GMT
Subject: CN=676d7f6d-9953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a1:c8:de:05:73:3f:46:54:e3:34:82:ff:d9:
83:c2:08:96:35:6d:09:c9:dd:77:74:b4:33:75:1b:
bd:8a:16:ca:96:e5:68:5b:62:12:03:1f:d5:46:bb:
3c:ca:cb:a8:fe:dd:58:70:c9:f7:22:72:03:60:5d:
d0:79:e4:4b:08:33:8e:aa:0f:0d:2a:98:81:85:b3:
68:d5:d0:e7:92:6b:11:44:06:51:18:c7:4c:b0:d9:
72:3c:3a:78:02:04:4f:2c:64:c1:93:c5:30:97:5d:
92:9b:53:d4:4c:25:ef:79:d1:f0:16:0a:83:d1:7c:
e5:ef:e1:e7:bf:93:d0:92:51:35:d6:60:76:b9:b2:
a6:a9:17:32:2b:43:4f:da:d8:c5:3d:50:ed:0c:5b:
1f:a2:d4:51:f6:1d:9b:a6:0a:d2:c9:d2:2e:36:d7:
a3:fb:ea:75:1f:30:e1:4b:cb:9a:90:de:be:9f:81:
6f:0b:fd:e1:be:76:87:44:bb:49:61:2f:a1:50:1b:
22:8c:2d:3e:6d:dd:b4:34:3c:8b:68:a8:0f:eb:52:
5d:31:ec:34:aa:64:b2:7d:56:0e:d2:c8:1e:b0:d3:
9d:6a:a4:00:cf:73:c2:84:ef:41:a5:f5:70:80:64:
8e:21:ee:e0:60:20:0f:39:ce:21:2a:2a:93:3e:d2:
18:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:CE:55:AE:E8:B1:8D:AD:5E:2A:44:57:EC:AC:23:8F:1E:DA:37:C5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9BFC1388C3A311EF8F30F3A6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.196.0/24
Signature Algorithm: sha256WithRSAEncryption
87:ab:65:ba:6b:c0:fd:f3:b4:4f:55:30:74:d9:56:b2:3e:c7:
58:22:e3:73:f9:92:93:7f:01:86:94:ab:42:03:d0:81:e0:ed:
d1:c7:a6:1e:01:d0:d9:bc:51:41:1a:f9:67:57:ca:5e:39:34:
00:66:4b:ce:08:a2:29:bc:2f:36:7c:61:57:60:87:b1:bd:11:
c9:5b:ef:df:8a:0a:92:c8:8d:fd:48:87:a0:48:22:9b:2d:d1:
b7:40:a8:20:1f:0f:63:7a:dc:ff:ad:6b:73:4b:6e:3b:23:c3:
f0:41:f9:f8:4f:dd:f6:e0:90:ee:e6:c6:1c:c6:c8:1f:49:6b:
85:a7:b6:7c:0a:85:78:87:4a:bb:ce:5b:d5:82:0a:24:f9:41:
69:36:5d:3e:f7:73:c1:f7:a3:fe:bb:20:bb:f8:10:40:01:39:
ea:cf:a6:38:3d:fa:bc:46:32:5f:40:fc:1e:74:cb:42:c3:57:
d4:63:83:af:5e:0c:fc:88:7c:68:1d:06:b5:21:84:05:21:c5:
69:e3:b4:6e:32:91:71:6b:0a:6b:26:0a:32:e0:09:82:6f:f8:
05:df:e8:fb:88:b0:93:0c:a1:54:b6:80:ad:7e:55:f6:56:66:
52:42:01:b0:40:4e:c8:e2:66:3b:f7:67:7c:69:36:6d:97:c1:
ec:d5:eb:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:50:27 2025 by rpki-client