Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9C7E2222C3F011EFB1A5B98E762E951A.roa
File: 9C7E2222C3F011EFB1A5B98E762E951A.roa (raw, json)
Hash identifier: 1ET/XkcP3rKwiKKsPSpiahyAFJ2Oj69hJP+2nLrAfJw=
Subject key identifier: 78:2D:12:8C:11:A8:57:0D:2C:F9:D2:3A:91:F2:15:6E:43:B6:0E:EF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EF4C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9C7E2222C3F011EFB1A5B98E762E951A.roa
Signing time: Fri 27 Dec 2024 01:19:26 +0000
ROA not before: Fri 27 Dec 2024 01:19:22 +0000
ROA not after: Sun 12 Dec 2027 01:19:22 +0000
asID: 17561
IP address blocks: 45.192.246.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61260 (0xef4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 27 01:19:22 2024 GMT
Not After : Dec 12 01:19:22 2027 GMT
Subject: CN=676e009e-cf38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:0e:f1:ef:69:3b:fe:60:4f:e9:de:a5:0c:f3:
a8:a3:8f:fc:19:27:71:cc:58:37:9b:f1:22:b1:ed:
38:b8:b6:73:47:38:77:da:f3:1c:da:c6:1f:76:32:
39:1d:80:50:9f:a5:fc:d5:82:09:86:88:5c:dd:33:
bc:f0:cf:6f:01:2c:38:09:7c:e6:74:7b:50:c2:e3:
9f:16:3c:39:b4:56:5f:7c:9c:de:4b:d1:de:55:31:
10:04:47:b0:d7:3c:4d:9f:60:ae:b4:b3:18:c9:44:
75:fb:45:27:f5:d5:51:fd:f9:61:6e:0d:99:98:02:
04:37:56:88:a2:af:4a:4d:c8:ef:db:c3:83:71:f1:
93:4b:58:b9:e1:80:49:49:1b:85:d8:fb:5d:0c:2e:
1e:9a:5a:99:cc:9f:58:3a:8a:d8:3d:20:68:b6:18:
ed:6d:79:0e:5f:43:41:15:43:56:17:8f:e2:e8:08:
8c:9f:b7:e2:3e:d3:35:cd:73:77:9e:2d:90:84:29:
06:2e:93:d3:50:e5:9c:5e:74:1e:e1:b1:60:9d:5d:
e2:17:63:af:7d:02:78:52:6a:38:d4:f9:63:20:65:
ae:3b:2a:7e:1e:09:62:13:eb:25:c7:0b:65:8b:f7:
d5:54:27:38:1b:92:11:51:0e:5c:24:83:7b:61:96:
5b:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:2D:12:8C:11:A8:57:0D:2C:F9:D2:3A:91:F2:15:6E:43:B6:0E:EF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9C7E2222C3F011EFB1A5B98E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.246.0/24
Signature Algorithm: sha256WithRSAEncryption
82:f7:80:be:a4:a8:15:85:a0:d1:94:e8:c6:35:fa:15:b8:54:
ff:3f:d4:17:ad:57:89:33:d8:a1:9c:5b:bf:ae:23:ce:64:2d:
d0:44:da:4c:e7:28:56:40:29:52:53:9f:6d:30:02:ea:ef:68:
e3:35:6b:ab:74:74:30:51:19:38:93:61:57:64:a8:bc:f6:0e:
f9:43:b4:ca:11:6d:da:29:6b:15:86:2d:9e:74:e5:a3:67:9f:
a6:1e:d2:61:51:f8:a9:56:83:36:82:35:30:c9:c5:08:25:7c:
8a:95:bf:46:a7:16:d7:55:86:f9:32:88:e1:eb:16:87:c8:be:
a8:b7:90:10:a5:a5:0d:30:14:4a:dc:e7:8e:88:a2:ee:09:0d:
32:43:9d:36:43:33:9e:33:99:ee:f2:09:a8:14:1d:70:68:40:
88:25:ba:54:aa:e0:5c:2b:7a:b7:02:65:59:92:64:50:0e:da:
08:ac:25:c9:c7:39:8f:2c:95:e4:2e:59:83:78:47:2a:2c:5a:
dd:b8:2c:67:58:c5:24:0b:86:f0:a9:f3:4f:c3:87:28:1a:18:
81:9e:3d:eb:b9:e4:ac:13:7a:36:ba:25:97:22:69:cb:e4:01:
2d:24:a5:35:5d:67:ec:f2:7a:4b:88:fd:3e:ee:54:9a:e8:18:
0f:30:e9:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:44:31 2025 by rpki-client