Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C204A630C39411EFBEEF0A4B762E951A.roa
File: C204A630C39411EFBEEF0A4B762E951A.roa (raw, json)
Hash identifier: XQwJCmBt55M9FaiogGtFOuxwj38Tru03rz3h+l4FaH4=
Subject key identifier: F5:16:9B:1F:85:28:D5:BF:41:D0:64:E5:E1:90:00:D7:E0:04:71:F2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: ED13
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C204A630C39411EFBEEF0A4B762E951A.roa
Signing time: Thu 26 Dec 2024 14:21:55 +0000
ROA not before: Thu 26 Dec 2024 14:21:51 +0000
ROA not after: Sun 12 Dec 2027 14:21:51 +0000
asID: 17561
IP address blocks: 45.196.251.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60691 (0xed13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 14:21:51 2024 GMT
Not After : Dec 12 14:21:51 2027 GMT
Subject: CN=676d6683-f618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:01:8d:8b:65:d3:ee:4c:00:4e:5f:91:4a:f3:
2d:ef:80:ef:b3:00:44:6e:8c:cd:69:4f:61:f9:fe:
4c:0d:b9:67:91:e2:ff:56:b4:4f:e7:98:ed:03:fb:
4c:75:0b:f4:84:76:a7:36:28:61:f9:f8:ef:12:cc:
30:40:64:6b:1c:b5:81:02:f3:76:1e:bf:b8:e6:6c:
e9:8d:ab:67:44:58:73:0c:2e:c6:8c:5c:b7:03:15:
d5:e9:d2:84:8a:ec:c2:ba:61:c7:63:48:29:4e:a2:
ee:34:c4:dc:c2:57:c1:14:98:c7:b5:73:5c:59:31:
44:01:5f:db:bc:61:62:09:25:a5:bd:c7:e2:b9:de:
b9:9b:0d:43:2d:c1:22:6a:16:73:d4:af:41:5b:a0:
fd:d3:c5:36:1d:8c:2f:d2:20:67:e6:c9:f4:bf:0b:
e9:f8:c0:9c:97:4d:94:fa:f2:d5:6f:7a:54:d2:c8:
4b:92:54:45:a1:6c:d4:52:87:80:f3:84:6f:70:59:
1d:05:bf:e4:79:a0:b2:92:9c:50:52:38:6f:5c:b7:
a4:dc:8a:0d:0d:7b:21:65:0c:ac:65:3f:92:a9:ba:
bf:a5:f1:f9:06:4d:e3:bd:8f:15:c9:ef:d6:ed:91:
cf:44:14:fb:25:be:53:58:bc:f9:b6:0f:97:7a:ca:
a5:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:16:9B:1F:85:28:D5:BF:41:D0:64:E5:E1:90:00:D7:E0:04:71:F2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C204A630C39411EFBEEF0A4B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.251.0/24
Signature Algorithm: sha256WithRSAEncryption
32:8a:ee:e6:9c:bb:d6:cc:48:ea:b7:e5:5f:d4:db:78:04:44:
e6:79:e2:31:ac:b2:fa:e4:05:76:84:d2:0c:48:87:75:ac:d7:
b5:d6:b2:52:54:84:ee:c9:ca:0c:0e:f5:12:60:0e:6d:74:06:
d9:3f:02:49:3b:f4:de:6b:25:94:04:96:e6:e9:44:0f:57:f5:
53:2d:d3:5d:8b:70:c2:0a:43:78:39:e8:3e:12:c0:26:f0:1a:
95:65:fc:92:20:eb:e6:13:d4:0a:f3:85:09:6c:5b:38:0a:44:
52:1f:06:40:45:73:6a:d2:43:36:86:1e:01:37:14:7f:2d:5a:
6e:11:ac:57:20:34:75:bc:84:21:69:49:f1:bd:5b:27:0b:61:
b4:91:20:a7:53:e8:88:7d:25:98:82:01:dc:2d:1e:07:be:ae:
4b:b8:3e:09:a1:21:31:67:69:1d:32:33:8d:41:0f:26:0d:36:
20:cb:fb:12:e3:f3:b7:43:4e:10:53:22:b4:63:46:f3:aa:42:
2c:5a:f9:28:b8:92:46:5b:cb:aa:c3:da:b2:dc:b0:ed:25:9d:
5d:19:76:26:3c:2e:b4:4b:07:88:88:91:c9:c2:42:a8:eb:21:
48:09:74:fc:19:63:98:f5:0f:cc:a8:05:54:e7:2a:c6:fc:2b:
10:a4:db:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:41:52 2025 by rpki-client