Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C0FEC124CEF911EF8D96884A762E951A.roa
File: C0FEC124CEF911EF8D96884A762E951A.roa (raw, json)
Hash identifier: Fv4j376vCCnD76szgIiAgiIOhnfZ6GUMCkqV/rbWlNk=
Subject key identifier: F0:F3:3A:76:FB:F2:D9:2C:FA:F6:5A:C1:69:D6:EB:66:ED:9D:9F:2C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0104A3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C0FEC124CEF911EF8D96884A762E951A.roa
Signing time: Fri 10 Jan 2025 02:22:35 +0000
ROA not before: Fri 10 Jan 2025 02:22:32 +0000
ROA not after: Fri 14 Feb 2025 02:22:32 +0000
asID: 202736
IP address blocks: 45.192.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66723 (0x104a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 10 02:22:32 2025 GMT
Not After : Feb 14 02:22:32 2025 GMT
Subject: CN=6780846b-9d89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d9:c0:a4:77:96:9b:06:9b:fa:cc:50:6c:1c:
89:67:59:99:4c:51:2f:8f:d4:40:dd:59:6b:aa:2a:
21:c2:0f:ad:7f:db:dd:16:50:9b:b9:f9:bc:01:0f:
02:52:8f:d9:a8:5b:61:eb:e1:c8:3c:56:af:34:19:
6c:65:b6:4a:c0:33:80:d9:bd:f4:78:e1:bb:83:4e:
d2:74:82:ec:e3:9d:24:2e:7b:6f:4a:39:9d:3a:a6:
40:03:30:46:29:80:25:8b:6b:fc:dd:58:be:a6:f3:
41:d4:73:64:1a:3b:ff:48:2a:0b:05:ab:8b:a6:49:
ce:c1:00:3b:f5:44:e6:6b:2c:73:4d:05:62:88:46:
a7:79:50:e6:34:8f:f3:46:72:c8:0f:cd:b5:f9:90:
81:68:df:8a:8f:55:0b:da:6d:dc:6b:e5:df:d3:21:
92:83:71:ab:1b:81:72:4d:a9:bd:e6:a7:2e:e4:16:
b6:4b:c3:89:70:d3:a7:e6:28:c8:26:25:b3:d3:43:
23:14:65:68:9d:a6:dc:cf:e4:4e:d5:cb:d6:22:01:
ec:5b:a5:ae:f7:09:29:96:0f:00:86:17:2d:5b:bb:
c2:c4:43:d4:97:31:af:8c:6b:c7:ec:f6:ce:e0:9c:
c2:65:a7:99:78:b7:f9:88:c9:32:99:16:6c:50:d4:
a9:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:F3:3A:76:FB:F2:D9:2C:FA:F6:5A:C1:69:D6:EB:66:ED:9D:9F:2C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C0FEC124CEF911EF8D96884A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.113.0/24
Signature Algorithm: sha256WithRSAEncryption
91:14:4e:82:5b:bd:3c:15:0b:48:b4:b9:16:cb:b5:6b:d8:68:
63:c1:3b:de:ed:a5:50:6b:7b:a1:f1:ca:21:c6:df:7a:7a:bd:
fd:c8:27:02:46:47:74:84:5c:61:9b:9f:75:e2:36:86:42:79:
36:7d:2b:4e:0c:5b:f6:41:bb:b7:f8:1b:ab:89:97:d8:56:e8:
79:2c:94:ba:67:39:ab:7d:e3:38:f7:27:80:49:2a:8d:bf:08:
16:c5:49:a5:da:e9:d2:49:13:9d:33:16:08:88:7a:5a:3e:7c:
ec:48:de:1d:c7:49:80:d6:cb:bd:83:a3:86:c6:7a:57:7d:f3:
ac:eb:6c:99:27:68:8c:39:15:39:17:68:2e:ea:10:d4:8b:f9:
8a:47:11:d4:70:fb:a2:34:9e:18:60:32:0c:6e:6e:b1:f4:46:
1e:e1:c4:9c:49:e1:58:b1:ff:e0:54:71:51:e0:0b:94:c2:a0:
07:38:ed:a5:33:e3:b4:b4:ab:98:ad:4b:92:8f:12:d5:f2:dc:
11:72:e1:8e:61:51:b0:b0:b3:2a:0c:77:3f:01:fb:cb:71:5b:
85:a9:91:c9:de:c0:f3:d7:29:ca:0b:95:fc:cf:28:4f:8b:33:
5d:f2:0e:b5:41:30:ed:0e:e4:24:be:83:5d:8b:a1:c8:c0:2b:
f1:4d:83:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:49:24 2025 by rpki-client