Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B236D92EC3E111EF9F7A40AC762E951A.roa
File: B236D92EC3E111EF9F7A40AC762E951A.roa (raw, json)
Hash identifier: uFpzmIlLpxzTtJecB5yH//KtpEpSXRZuPGD9aAeQYA8=
Subject key identifier: 34:2F:E0:5B:9A:52:75:E1:47:80:46:1E:1D:27:7B:16:6A:3B:CB:22
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EEFD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B236D92EC3E111EF9F7A40AC762E951A.roa
Signing time: Thu 26 Dec 2024 23:32:40 +0000
ROA not before: Thu 26 Dec 2024 23:32:36 +0000
ROA not after: Sun 12 Dec 2027 23:32:36 +0000
asID: 17561
IP address blocks: 45.192.171.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61181 (0xeefd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 23:32:36 2024 GMT
Not After : Dec 12 23:32:36 2027 GMT
Subject: CN=676de798-56c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:a8:0c:b6:70:71:fd:7a:9f:9c:66:59:da:2f:
ca:ff:7f:95:07:1b:39:4f:1e:14:a8:5a:33:dc:cb:
b2:22:04:6b:42:8c:d3:ff:fe:27:04:bc:5a:dc:60:
b6:a9:d8:a5:7f:0f:07:50:d5:2c:66:03:bb:07:c0:
33:d1:c4:7a:21:f2:d2:2f:a5:58:13:c7:f2:c6:ec:
0c:9a:58:3f:29:4f:ad:d1:12:9d:94:5f:a3:d9:10:
17:bc:62:ea:4a:bb:f4:a1:6e:43:2f:15:30:e5:b1:
89:3f:5a:0a:a7:b7:04:be:97:54:c0:9a:58:5a:a7:
ab:91:9d:2b:2b:24:57:ab:83:5e:7a:64:e5:ac:cd:
04:3d:6e:f0:b2:99:70:68:43:c9:cf:c5:4e:ef:aa:
41:47:79:d0:56:98:fe:d9:b9:39:43:95:c2:09:ff:
cf:d5:95:62:99:1e:55:1a:06:23:5d:3c:e1:ca:bd:
10:ba:88:30:d9:d7:1d:5c:86:4a:2f:f3:5f:fa:4d:
18:f1:66:81:3e:f6:bb:7b:7c:6c:34:56:33:eb:43:
b0:0e:ad:68:39:f8:d1:cc:1e:b8:53:4c:aa:51:27:
a9:e7:f8:cd:f3:2b:27:eb:58:b1:c9:33:c7:65:67:
6b:c6:cb:3b:d7:f4:a1:e7:6f:78:69:76:3f:d9:98:
58:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:2F:E0:5B:9A:52:75:E1:47:80:46:1E:1D:27:7B:16:6A:3B:CB:22
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B236D92EC3E111EF9F7A40AC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.171.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:9c:08:f1:3c:bb:4b:e4:30:0f:5f:65:84:f8:4d:e8:b6:84:
90:d8:24:a3:4b:4b:9a:86:ae:23:24:d6:bc:4c:a4:16:53:48:
8d:9f:a0:68:24:37:c6:8c:ba:76:7a:4d:f9:9a:59:66:4f:ed:
46:4a:19:95:e0:76:70:54:1f:a6:d7:b4:ca:d1:39:a6:cc:c2:
45:56:94:12:03:00:af:75:45:66:43:6f:3a:fd:89:2c:f0:38:
63:88:84:d9:cb:46:f6:f4:b6:99:c8:66:53:5a:c9:e0:14:f2:
c3:9f:91:21:0d:79:3d:2f:89:4c:6c:8c:72:27:09:7d:9e:5e:
8a:e5:88:19:da:9c:5b:98:6a:05:72:15:6d:73:ec:87:53:6e:
2d:03:e5:13:f5:d2:b4:8e:0a:1b:13:3c:0b:22:ab:0d:42:e3:
be:ac:66:9f:92:9e:15:1a:75:10:3f:ad:69:a9:4b:07:da:b3:
c4:06:64:1c:0c:95:f5:41:8f:b6:9a:95:56:b4:30:a7:26:b7:
c7:10:ea:83:9e:cf:cd:1d:60:ff:a5:b0:62:e6:87:8f:a3:d0:
60:51:4f:56:53:7d:fa:c2:aa:05:04:b8:7e:05:fe:ce:7f:8a:
fb:f3:b8:7f:c5:d6:a5:ec:f9:85:a9:dd:be:19:2a:8d:04:46:
c3:9e:b8:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:47:05 2025 by rpki-client