Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD2426AAC3A711EFB11D2341762E951A.roa
File: BD2426AAC3A711EFB11D2341762E951A.roa (raw, json)
Hash identifier: PJlUdhzY2l2s19oU/Shh7KS4dXvjDgC9wp4D9JUX6bA=
Subject key identifier: 76:CD:57:1E:A2:B9:5D:0B:AD:74:BE:50:35:78:24:A8:B0:74:C8:46
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EDDF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD2426AAC3A711EFB11D2341762E951A.roa
Signing time: Thu 26 Dec 2024 16:37:47 +0000
ROA not before: Thu 26 Dec 2024 16:37:43 +0000
ROA not after: Sun 12 Dec 2027 16:37:43 +0000
asID: 17561
IP address blocks: 45.200.218.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60895 (0xeddf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 16:37:43 2024 GMT
Not After : Dec 12 16:37:43 2027 GMT
Subject: CN=676d865b-f7b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ed:60:45:a1:24:aa:a6:9f:d5:5e:0a:9e:e0:
1b:f1:34:4e:c9:25:6a:4f:bc:54:90:ad:18:ce:16:
a5:d9:d1:27:8c:1a:53:23:14:bf:6b:9e:c8:98:a2:
b2:08:6f:5a:6d:9d:0e:aa:dc:33:76:d6:65:cd:4d:
c7:35:65:32:72:14:7b:cd:6c:e2:0b:15:93:0c:e8:
8d:c1:49:24:ed:03:58:3c:12:3b:be:da:3f:52:7a:
3c:1d:4a:26:34:f5:39:af:1b:f7:b7:e6:fd:b2:48:
d5:c4:42:9b:37:15:01:0b:f2:54:e7:d2:f2:b5:72:
4a:e6:6a:7f:17:03:60:b7:61:82:f4:c0:19:64:28:
7f:79:47:f1:c6:b5:71:dc:65:af:55:18:f8:16:89:
1e:d5:c0:4b:61:06:e6:14:e0:1d:30:ba:80:81:fb:
dd:e0:71:c5:70:96:b7:e4:9f:b8:e3:e8:56:eb:0a:
0d:3d:73:cd:1e:c4:2e:74:a8:5d:6e:7c:c5:d1:cc:
53:8c:e6:97:65:62:41:f6:46:25:ed:c5:df:a6:58:
e8:24:b4:b7:77:5e:83:39:fc:a6:d3:97:45:62:82:
2f:7b:07:5a:9b:32:e0:12:55:76:6d:49:28:64:c4:
fe:19:9c:d1:21:de:f6:5e:f0:89:d8:72:ad:8d:0d:
6d:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:CD:57:1E:A2:B9:5D:0B:AD:74:BE:50:35:78:24:A8:B0:74:C8:46
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD2426AAC3A711EFB11D2341762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.218.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:de:37:3a:7c:7d:d7:16:e0:0b:9d:96:7c:36:f7:47:8e:65:
5b:ec:20:5b:7b:48:1d:31:52:35:d9:75:f5:1b:ea:00:bb:c5:
1b:3f:cc:3e:6f:75:d0:44:d8:a6:a1:36:6d:24:33:18:73:d2:
63:66:14:3d:cb:31:9a:a2:13:e7:0a:2e:8d:89:8d:d6:e0:7e:
c5:d0:e8:42:aa:ac:f9:06:68:80:9a:67:e6:2f:0a:2d:03:63:
8c:a0:d6:ca:8d:7b:31:5d:76:1e:24:45:20:cc:36:2f:0e:3e:
a8:38:28:86:1f:3a:73:79:58:5f:d4:a5:56:1e:b1:70:67:3b:
4f:9a:bd:a1:5b:e4:d4:87:8f:6e:69:bb:be:bf:69:cd:7f:04:
89:64:a5:85:88:81:55:0c:d8:ea:b0:74:1a:ee:b3:61:b7:46:
be:85:79:90:68:cf:a9:2c:f1:b9:b1:62:7f:27:10:f9:ec:a2:
fd:ff:29:5d:0b:3d:b4:72:6a:64:43:5f:e4:10:0a:be:1d:3d:
5a:2d:c1:6c:34:9e:7e:7b:97:9d:64:19:c9:97:56:7b:da:23:
6f:b3:cc:0f:7b:1f:84:41:0c:69:ff:08:11:cf:fc:24:04:c2:
d6:14:71:f2:39:e3:29:a7:bf:82:41:05:a9:3d:17:6c:6f:e0:
c2:fa:06:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:55:04 2025 by rpki-client