Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A1119572C39011EFB43058AF762E951A.roa
File: A1119572C39011EFB43058AF762E951A.roa (raw, json)
Hash identifier: 657RgH2kpYkyW4ZO/kxX0qGGaHC4wtJ2IBnWT7AiHRA=
Subject key identifier: F2:E4:E1:8B:89:8A:1D:56:CC:FC:DA:E8:D4:46:AF:76:D3:4A:17:0C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: ECE5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A1119572C39011EFB43058AF762E951A.roa
Signing time: Thu 26 Dec 2024 13:52:22 +0000
ROA not before: Thu 26 Dec 2024 13:52:18 +0000
ROA not after: Sun 12 Dec 2027 13:52:18 +0000
asID: 17561
IP address blocks: 45.196.228.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60645 (0xece5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 13:52:18 2024 GMT
Not After : Dec 12 13:52:18 2027 GMT
Subject: CN=676d5f96-d07e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ea:86:de:99:67:42:f8:94:5b:09:8b:b6:19:
b7:14:87:88:b1:4c:d6:42:fa:f8:6e:4b:1a:f4:e3:
e2:3d:94:37:c0:68:a5:47:83:ed:73:5c:30:95:1c:
f3:04:c2:da:2a:9c:97:21:95:ed:ac:49:1e:a2:a1:
ea:b1:b3:50:5e:87:af:97:a7:90:21:42:2f:af:9d:
fb:42:68:cf:36:84:d4:9c:61:a5:58:eb:b8:9c:23:
82:36:58:79:77:ed:9b:a9:9f:3d:0c:40:3c:de:5d:
1a:00:c6:08:2c:8b:41:5e:4b:7f:4b:73:7d:4e:fd:
b7:b3:40:69:5b:8b:83:da:a6:3d:07:02:d9:48:8c:
6f:52:70:d8:ec:02:ea:34:5d:20:8c:b5:79:c5:62:
aa:52:22:fb:fb:4b:c7:6e:34:a5:98:2a:ac:ab:a8:
74:c5:07:4d:19:91:88:ec:49:61:65:62:24:80:a6:
63:68:4e:ed:66:df:92:40:d5:70:17:2f:42:1f:f0:
fc:eb:93:d0:ad:74:05:fd:19:79:23:1e:cc:32:1e:
2f:6c:15:1d:28:89:25:7d:17:04:76:09:d6:f0:d2:
85:e3:9c:ac:97:c1:10:ac:3e:dd:9f:62:34:56:0f:
1c:54:7e:c6:a5:dc:0b:1b:f7:f7:5d:99:07:cf:59:
29:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:E4:E1:8B:89:8A:1D:56:CC:FC:DA:E8:D4:46:AF:76:D3:4A:17:0C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A1119572C39011EFB43058AF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.228.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:c0:c9:c3:c5:a2:b1:9e:8a:62:ff:fc:14:7d:03:60:da:f9:
43:ba:ed:79:1d:e3:67:c5:ec:54:a7:10:f7:f2:59:a1:f7:f6:
0e:26:82:0a:ba:61:b3:c8:93:26:7d:5f:4f:90:78:0a:60:12:
a0:72:80:89:b8:b2:16:07:e9:37:82:11:5d:08:17:bb:8c:e8:
57:ac:80:3c:1f:b0:7a:fa:3d:fd:08:a0:7f:53:35:8b:59:78:
f4:bf:02:d9:f2:18:d7:97:41:9b:e2:cb:28:9e:28:e8:dc:bb:
19:56:7f:bd:75:2e:0d:6a:76:a8:19:9c:1a:4b:99:3b:10:cb:
eb:21:89:da:7c:a7:f6:46:bf:ee:b1:21:a8:66:8d:ce:e1:8d:
31:d4:7a:b6:26:6c:b9:4a:e5:b3:44:56:ce:59:d3:20:57:db:
69:07:de:bf:b8:60:c8:34:d8:85:43:ef:90:ce:14:2c:ff:a6:
96:f1:3f:a0:99:37:b0:a5:9b:21:0e:08:43:ea:7f:57:d0:72:
f4:b0:0f:eb:1d:e7:e4:de:52:18:e9:6f:42:d4:c0:1e:64:fd:
dd:82:65:96:01:05:50:0f:0c:66:4a:5c:77:36:ce:b4:12:ef:
dc:7d:82:25:cf:4d:71:51:da:08:d5:63:57:77:2e:3f:30:89:
67:82:02:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:55:47 2025 by rpki-client