Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A9C24340C3B011EF8F015079762E951A.roa
File: A9C24340C3B011EF8F015079762E951A.roa (raw, json)
Hash identifier: H+k6H8wKfY7DzvWGxpCSwIY2bDVbycNuTzpvKpCwn8g=
Subject key identifier: 2F:FA:B4:B1:7A:C0:F1:0C:C5:74:0F:C3:A8:5B:7B:02:9D:A2:7C:3C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EE3D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A9C24340C3B011EF8F015079762E951A.roa
Signing time: Thu 26 Dec 2024 17:41:40 +0000
ROA not before: Thu 26 Dec 2024 17:41:36 +0000
ROA not after: Sun 12 Dec 2027 17:41:36 +0000
asID: 17561
IP address blocks: 45.203.32.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60989 (0xee3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 17:41:36 2024 GMT
Not After : Dec 12 17:41:36 2027 GMT
Subject: CN=676d9554-1412
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:12:89:99:4f:bc:3c:32:e2:48:64:10:d7:5b:
75:09:2a:12:37:88:f0:c5:b9:f1:3c:2b:ec:ef:d8:
df:b9:71:53:c7:e4:70:ff:b5:53:3d:6a:9e:b1:ab:
30:37:c3:3a:56:35:9d:0a:9b:e8:cf:a7:da:86:23:
c2:a1:fb:fe:b6:7c:f9:df:69:8d:72:99:b2:14:ce:
1b:f2:2c:b0:b4:2c:69:a1:96:1b:71:3e:3c:4a:09:
0e:f2:18:c3:7e:75:d0:1e:fa:47:e2:f1:37:5e:9b:
e8:8c:81:72:82:6b:03:70:fd:7f:9b:97:9e:16:3f:
03:63:ef:2b:91:d1:4f:47:94:4a:55:89:c5:2b:35:
37:66:fe:3a:e1:45:83:72:5b:9a:27:f0:3e:69:ce:
d5:34:3a:78:a6:f6:aa:59:62:d3:f0:e5:cd:91:b7:
d7:8e:0b:8f:e5:14:6e:86:fa:a9:d2:0f:ae:0c:df:
95:8e:10:c4:67:f1:4b:b8:59:99:91:50:d8:f4:c2:
3e:21:ee:c1:38:66:ea:6e:cd:cb:9b:93:26:bc:6d:
99:3f:de:18:69:23:e3:5e:8e:37:9a:10:e9:32:33:
79:d0:2c:cc:88:6d:16:88:30:18:43:9c:dd:fb:f7:
1c:b3:44:62:a5:d0:34:09:fc:5d:7f:0f:b8:cb:a1:
31:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:FA:B4:B1:7A:C0:F1:0C:C5:74:0F:C3:A8:5B:7B:02:9D:A2:7C:3C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A9C24340C3B011EF8F015079762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.203.32.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:c4:a0:e6:9f:2e:7b:1c:f9:3b:74:67:43:5a:38:78:76:5a:
fb:52:c7:a1:a3:92:22:aa:e9:d9:36:66:ad:82:95:5a:b9:61:
7f:9a:38:39:e4:f2:02:8f:3e:24:46:6b:a0:cb:59:d0:ad:b1:
9d:81:97:89:3f:ca:6b:80:5e:06:42:05:48:c7:9a:fa:f3:aa:
e8:5e:25:36:f4:b5:f6:b4:b7:14:00:0d:5f:62:02:c7:27:79:
97:91:a9:5d:92:82:4e:1b:d8:11:4b:92:c0:c6:b2:7b:41:e5:
ae:29:71:dd:88:32:f7:09:db:8c:01:98:5e:fd:73:2f:f2:bf:
ad:af:be:1b:18:a8:41:14:4f:5a:ee:94:8d:52:ec:58:c6:6c:
a5:16:08:af:16:99:ed:98:ef:2a:2c:28:6c:39:f5:6f:a9:92:
8a:b7:25:63:fd:f2:75:cd:8f:d2:f5:12:41:57:a2:c8:7f:4a:
08:33:f7:97:df:9f:8b:d0:04:2c:17:73:f9:cb:ab:01:13:66:
01:8e:21:1a:06:0f:b7:cc:2e:f0:73:f3:79:c1:62:27:93:c6:
50:31:79:dc:2a:ca:64:6d:59:84:e7:c7:90:a9:cb:1f:c8:ce:
44:b4:03:e9:9f:83:3e:47:38:cf:66:f5:ca:76:0a:12:76:0d:
42:7e:93:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:57:37 2025 by rpki-client