Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BECF0282C3F111EFB0E4A596762E951A.roa
File: BECF0282C3F111EFB0E4A596762E951A.roa (raw, json)
Hash identifier: ydSAlBrDVoZS46YpbhOhl41Gwjl2OUR4HT1aSrq8aB0=
Subject key identifier: D3:CF:A3:16:C1:67:68:F2:79:BA:5D:DB:C9:70:3D:BA:08:14:59:2B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EF58
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BECF0282C3F111EFB0E4A596762E951A.roa
Signing time: Fri 27 Dec 2024 01:27:33 +0000
ROA not before: Fri 27 Dec 2024 01:27:29 +0000
ROA not after: Fri 12 Dec 2025 01:27:29 +0000
asID: 984
IP address blocks: 45.192.252.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61272 (0xef58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 27 01:27:29 2024 GMT
Not After : Dec 12 01:27:29 2025 GMT
Subject: CN=676e0285-45d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:64:02:fc:68:0f:5d:95:6a:3f:0b:e3:21:56:
2f:5d:20:85:65:f3:cc:1d:a5:c4:d0:2c:72:dd:51:
b4:7b:23:a3:e2:e4:c0:3b:cc:5d:ab:3d:f7:31:b6:
c2:a1:79:ae:2a:8f:24:49:20:2a:62:12:1f:6b:86:
1d:69:8c:50:72:6f:ca:60:ec:68:d5:10:95:8b:06:
7c:d5:7b:a6:e7:fb:ee:94:4a:ec:3f:1f:73:ca:bf:
1b:c8:03:95:ac:41:62:88:5f:03:84:d4:fb:36:fd:
6d:d2:eb:06:d9:f5:99:74:d2:dc:c2:b7:d4:28:54:
eb:02:c8:de:dc:8c:d6:76:60:8f:95:f6:ee:ce:cb:
97:36:bb:c8:9e:98:63:c3:36:23:3a:3c:ed:72:0f:
6f:fe:58:f4:ce:2e:83:d8:f3:01:43:d5:9f:c3:f0:
cb:e0:bf:e5:84:fb:11:c2:ed:74:94:6d:6a:87:26:
e3:cc:14:08:ee:17:dd:72:d4:ad:03:01:56:bf:4e:
12:7c:ea:e1:ed:a0:6b:fa:fc:cb:24:bd:44:9b:64:
dc:f8:aa:3e:23:c5:46:aa:dc:34:9d:7a:0e:f2:cf:
8e:c0:1e:e7:b4:60:1b:c6:da:28:ee:0d:1a:63:03:
02:f6:f7:a1:06:5a:e2:77:73:14:da:41:7b:27:0f:
81:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:CF:A3:16:C1:67:68:F2:79:BA:5D:DB:C9:70:3D:BA:08:14:59:2B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BECF0282C3F111EFB0E4A596762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.252.0/24
Signature Algorithm: sha256WithRSAEncryption
13:a6:12:00:94:d2:0e:20:66:31:ef:75:6d:dd:ca:db:bd:00:
d2:1b:b2:be:41:ae:81:69:cd:90:86:ba:0b:60:42:65:58:5f:
d5:84:11:dc:98:e5:c5:08:b3:ac:a5:8d:b9:cf:8e:97:0e:86:
d9:55:8f:88:d2:8f:fd:74:76:73:9a:61:d0:b3:fa:6e:67:8e:
f3:02:b8:b9:0f:29:37:77:4d:80:74:d9:15:8c:f3:7a:50:fa:
de:3d:7c:06:5b:74:bf:a0:a5:ef:ba:38:16:67:68:f0:a0:9a:
bf:bb:c7:6c:56:38:f2:e5:d0:d3:35:5e:3b:61:3f:1e:7b:02:
15:a1:a7:80:10:a0:9f:84:7f:56:54:17:d0:f6:e7:a1:6c:2d:
25:16:62:9f:5c:a3:60:e7:60:7f:e4:c2:a7:cd:e8:55:94:9c:
8b:c4:ca:3b:05:9f:1a:78:94:8d:05:fe:54:9f:a7:0f:e7:c9:
e6:56:de:e6:ae:aa:4b:8d:1f:b4:01:f7:56:89:22:e6:f3:c6:
7a:c5:01:af:a4:0d:29:cf:0a:30:26:3c:22:e9:d5:31:67:10:
47:f0:81:f0:33:4f:1d:b0:f7:c1:50:8a:96:c0:17:90:12:4c:
e9:67:5c:65:94:8a:ce:61:10:0e:05:9b:23:3e:4f:fe:61:16:
80:4e:01:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:50:55 2025 by rpki-client