Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BA973734F36211EFAC9FB658762E951A.roa
File: BA973734F36211EFAC9FB658762E951A.roa (raw, json)
Hash identifier: Ya02d7Ul10C+V7lS0duZ99I2oiW7nYs6HgkrXK+Htd8=
Subject key identifier: 55:A5:0E:CB:F5:14:0A:B6:D2:71:90:03:A4:BE:38:3E:94:84:37:DC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 012E1E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BA973734F36211EFAC9FB658762E951A.roa
Signing time: Tue 25 Feb 2025 10:24:43 +0000
ROA not before: Tue 25 Feb 2025 10:24:40 +0000
ROA not after: Wed 09 Apr 2025 10:24:40 +0000
asID: 63139
IP address blocks: 45.197.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77342 (0x12e1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 25 10:24:40 2025 GMT
Not After : Apr 9 10:24:40 2025 GMT
Subject: CN=67bd9a6b-ca04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:dc:29:5b:ad:89:8d:ff:0d:ea:f3:6d:6e:43:
12:f4:2a:0a:16:80:39:dd:79:cd:3f:5e:5f:b8:f1:
98:55:11:8c:c2:a8:17:df:a7:f5:20:c1:07:c2:33:
76:93:74:cc:0c:c8:24:dd:6f:1d:8e:53:0c:c4:e7:
ca:1d:99:05:af:51:69:9f:17:10:d6:e2:7d:4f:1a:
61:c5:8c:c9:b7:17:2d:f1:5f:9c:40:34:f0:a5:a0:
42:75:bc:36:e7:11:0b:f1:7f:0f:9e:e6:73:90:ce:
53:1c:b3:ef:74:9e:27:d1:24:6a:41:74:3b:01:cf:
03:9f:7b:72:f4:60:8b:01:9b:26:08:cb:21:10:f1:
77:25:ed:ef:52:7a:7b:b0:cb:59:3f:c1:2f:f2:04:
d6:d7:76:5a:5b:3d:44:8b:83:4e:68:85:32:bb:d1:
75:1c:f8:dc:45:1d:1e:9d:6b:17:12:55:ef:ba:66:
c5:ba:d6:46:0e:fc:82:ec:2e:29:f1:55:21:e8:17:
7f:e9:a6:5a:e2:49:21:c2:0d:b8:8a:9b:17:88:e3:
40:05:96:50:7d:4c:6d:4f:ef:53:f3:76:12:fd:9c:
01:81:0c:93:2d:cb:29:86:41:0b:d4:c5:82:ac:ea:
24:22:26:c4:7a:5e:db:3c:56:4e:05:d7:d2:e5:de:
2a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:A5:0E:CB:F5:14:0A:B6:D2:71:90:03:A4:BE:38:3E:94:84:37:DC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BA973734F36211EFAC9FB658762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.78.0/24
Signature Algorithm: sha256WithRSAEncryption
23:f9:ef:78:b6:0d:5d:dd:5c:1b:8e:ef:a4:2f:f8:25:b2:e4:
d8:c1:c0:1e:c9:7c:4c:92:94:01:59:52:99:9f:92:1a:06:05:
63:e6:89:39:07:29:41:65:e8:78:25:e8:4e:14:37:8d:ff:69:
e7:a9:1c:d9:d3:41:c9:94:87:ed:92:ed:dc:24:6f:36:a0:05:
c3:f8:2a:38:2a:df:8f:0b:70:68:21:80:7a:1b:e7:46:0f:17:
d4:d1:28:f8:45:f7:bc:f7:d6:e0:34:1a:b0:22:e7:66:d8:33:
55:51:8d:31:8c:16:a7:e2:2e:6e:0f:e7:db:2b:b8:e7:04:dc:
c5:2c:62:0f:6a:1d:df:1a:bf:ea:4b:1e:c9:3d:cf:e5:7e:1c:
62:9e:6f:aa:8b:12:05:5c:18:e0:de:9a:71:9a:7e:7b:69:2e:
ff:3d:cc:e2:e7:0d:15:b2:a7:69:da:f6:55:50:7a:60:4a:28:
00:ab:ea:ab:40:06:50:6d:d6:44:e0:97:a0:a4:f3:24:ba:43:
35:99:ac:90:cd:bc:26:e0:86:5f:c4:74:b4:92:bc:ce:94:99:
8e:e7:a2:81:88:ee:8f:a8:0d:be:4e:9d:eb:67:7a:5d:b4:f6:
ce:3a:e3:9d:0b:10:76:e0:1f:02:5c:63:bf:6e:17:80:b7:9a:
08:f4:a3:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:18:57 2025 by rpki-client