Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AADBAED0C39511EFBD0F2451762E951A.roa
File: AADBAED0C39511EFBD0F2451762E951A.roa (raw, json)
Hash identifier: VKe7f7MTwseoC78cubIYBKGj4XN63N3x/1Fn9eTLuho=
Subject key identifier: 02:A4:ED:2F:E2:39:B0:55:F6:DF:8A:05:64:AF:A2:18:4C:14:9C:F3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: ED1D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AADBAED0C39511EFBD0F2451762E951A.roa
Signing time: Thu 26 Dec 2024 14:28:26 +0000
ROA not before: Thu 26 Dec 2024 14:28:22 +0000
ROA not after: Fri 12 Dec 2025 14:28:22 +0000
asID: 984
IP address blocks: 45.197.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60701 (0xed1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 14:28:22 2024 GMT
Not After : Dec 12 14:28:22 2025 GMT
Subject: CN=676d6809-7907
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:36:bc:b7:3b:0b:3a:52:91:ab:96:ed:1e:a3:
ef:e6:8a:54:5f:ab:d5:6c:49:66:04:20:a5:9c:6d:
29:bd:82:c1:31:d0:26:c5:95:63:20:69:ee:d2:3f:
6a:e5:54:e3:ff:f2:a1:57:af:8b:69:37:21:86:45:
1e:b6:d4:4f:04:b4:f4:79:e9:89:83:b5:9e:be:98:
5b:58:e3:5b:45:84:8c:eb:4f:b3:dc:2a:bd:f4:3d:
dd:e1:76:67:0a:f7:8a:6f:58:d0:4f:4e:a6:18:7e:
39:67:c9:20:9c:1e:cb:8b:c9:1c:c9:cc:d6:4e:9c:
a3:34:e9:6f:e1:23:5d:76:02:7e:9d:02:fd:cb:cc:
e1:e7:44:68:f1:ff:a7:68:e4:d6:09:8c:07:37:b9:
d5:b1:34:24:80:a1:64:5b:6f:40:59:70:4e:dd:36:
86:a8:a2:1e:4e:7d:14:02:c9:0a:30:62:34:a4:a5:
cb:3b:2c:5a:2d:36:b6:69:a9:42:34:b4:11:86:83:
e7:83:1a:dd:56:6e:54:63:c6:9a:fd:f5:03:55:c9:
a4:46:ec:20:7a:e3:7f:91:2f:76:ea:aa:68:73:c9:
4f:f6:ab:53:93:35:e5:a4:97:21:52:0b:37:11:7a:
06:89:c4:20:bf:70:7a:fe:45:c5:d6:6a:b2:9a:1d:
0c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:A4:ED:2F:E2:39:B0:55:F6:DF:8A:05:64:AF:A2:18:4C:14:9C:F3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AADBAED0C39511EFBD0F2451762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.6.0/24
Signature Algorithm: sha256WithRSAEncryption
76:9a:d4:65:56:44:06:05:50:36:b7:d6:9e:b7:c6:7d:91:ab:
f0:5c:9f:05:de:c0:b4:29:b1:10:69:9f:3f:23:e4:08:c9:73:
b8:7f:35:4f:69:da:6d:62:cf:33:0e:7b:56:fe:74:3c:1a:ad:
6b:31:0a:cb:3d:a3:25:61:4b:f3:4d:98:07:ca:ea:c7:12:17:
f1:b6:54:f0:69:18:ec:dd:27:9f:65:8b:cf:61:ed:8d:d1:19:
b2:0e:24:6b:4c:b7:33:f9:55:83:28:34:75:9d:aa:0d:4e:d1:
62:aa:0b:c0:a7:e6:61:fa:32:87:e6:ad:68:78:5a:b4:f0:6c:
f8:38:1e:98:aa:66:91:c8:52:21:57:15:9f:c9:24:82:e2:fd:
42:b3:00:58:65:8a:2a:71:36:32:b2:b7:30:99:d8:0a:e2:1e:
b6:bd:b9:fa:87:93:8e:07:fd:3e:8b:3c:3b:dd:0d:2d:93:64:
79:51:90:21:bd:f8:8c:46:99:91:1c:b4:dc:a6:34:d3:a8:86:
11:0f:d9:6a:34:61:8b:27:c4:60:c2:bb:51:01:33:88:15:eb:
5c:b3:8a:7d:23:42:02:37:23:de:ff:d4:2e:cd:79:f2:fa:95:
aa:92:0e:76:cc:74:ed:37:7b:f3:68:d9:03:76:66:99:bc:a9:
39:7a:80:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:36:17 2025 by rpki-client