Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D3934D44BDB211EFB418F396762E951A.roa
File: D3934D44BDB211EFB418F396762E951A.roa (raw, json)
Hash identifier: AtqVGOUMd5qVNEUy5rX+eNhRJkFCqQozXAT/oqbpbyg=
Subject key identifier: D4:E8:F5:81:D8:BF:95:F0:74:4B:1E:53:8F:08:90:9E:EA:C7:36:3F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E4C7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D3934D44BDB211EFB418F396762E951A.roa
Signing time: Thu 19 Dec 2024 02:42:02 +0000
ROA not before: Thu 19 Dec 2024 02:41:59 +0000
ROA not after: Wed 10 Dec 2025 02:41:59 +0000
asID: 984
IP address blocks: 45.198.251.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58567 (0xe4c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 19 02:41:59 2024 GMT
Not After : Dec 10 02:41:59 2025 GMT
Subject: CN=676387fa-4718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:bc:23:fe:8c:3f:8f:3c:f9:fc:ab:f2:39:1d:
6a:a8:8a:47:ab:c8:63:2a:6e:07:c7:a9:93:f8:10:
cd:09:ba:dc:d5:83:4a:07:02:01:a7:2a:b0:51:33:
6e:67:7c:50:21:d1:53:07:db:4d:7d:19:63:d2:2c:
a8:26:89:da:e8:4e:1d:e3:20:81:c7:1e:d4:f9:a2:
19:35:c7:02:8a:a8:eb:de:03:e2:e0:e7:2f:2d:31:
87:3e:04:5d:9e:fe:00:78:d9:01:ad:94:4f:42:ab:
52:ea:26:6f:41:a5:2f:c4:1c:50:d5:f3:29:bc:be:
9a:e5:13:f8:ca:05:d4:a0:0f:f0:60:81:66:c6:c1:
3c:d4:dd:b8:7c:f6:ef:e2:fb:46:08:63:c5:a9:17:
1e:e4:07:ad:ba:0d:a0:84:21:65:ae:2b:28:4e:dc:
fb:55:89:56:f7:d4:60:ae:21:c7:13:aa:d5:9f:05:
56:d1:23:31:bb:35:0a:b2:5f:97:d0:fd:2b:df:a9:
dd:dc:1b:26:ee:17:58:b4:96:d9:c1:76:fc:bf:18:
fb:35:bf:99:df:dd:17:b6:b4:79:d5:e9:df:ee:fc:
65:33:70:2b:1f:f6:06:6e:a3:5d:80:42:2e:c6:ee:
e2:c3:be:9e:35:0b:a7:fa:b8:bd:87:bb:68:94:af:
d0:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:E8:F5:81:D8:BF:95:F0:74:4B:1E:53:8F:08:90:9E:EA:C7:36:3F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D3934D44BDB211EFB418F396762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.251.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:d4:e6:81:9d:f1:56:b7:8b:a0:32:ed:c0:c3:d9:e3:a5:63:
0a:af:aa:0a:f3:6a:a8:65:08:9d:7f:ee:32:16:b1:f8:e5:f5:
04:27:c0:28:fb:97:2d:3c:7f:53:4c:1e:d1:25:19:9d:9e:ff:
30:e5:e6:3a:de:0c:8e:99:48:3c:82:df:b0:a7:48:ec:2c:0f:
63:a9:41:ce:4a:5d:d8:d7:81:65:83:f7:03:13:95:41:d3:72:
28:04:c1:f5:fe:19:0b:e7:d1:84:63:7c:1d:ac:54:44:0d:ea:
fc:25:55:fc:36:ce:e7:f2:a0:f7:c6:38:df:1c:0f:94:a3:7d:
7f:8a:76:87:b1:8a:ea:40:52:f9:67:13:67:3a:b9:79:ff:f3:
8f:64:9a:64:f8:b3:c9:94:d9:ed:b5:fb:4c:17:83:34:d1:2d:
9f:9d:8e:e7:ae:cd:c5:e3:e9:ea:c9:c9:60:06:cf:b9:59:4a:
9e:fa:24:71:6c:b9:b1:27:2c:77:0a:e8:c1:87:e6:54:40:0a:
16:5c:ee:20:35:0c:31:15:0f:26:34:8c:0a:e8:d9:4f:17:08:
7a:a4:fb:a4:48:5d:c7:21:3a:d1:f4:20:29:93:13:b0:68:ae:
a2:40:0e:e9:55:ed:71:f2:07:21:d9:ed:12:91:3d:62:66:eb:
7c:1a:8d:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:53:14 2025 by rpki-client