Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DF89313CC3E211EF93038CB4762E951A.roa
File: DF89313CC3E211EF93038CB4762E951A.roa (raw, json)
Hash identifier: AxucllJ38az7R/vTY8bqruroaeaJf+RjoC0Kp+/3bas=
Subject key identifier: 20:40:CB:C5:CD:F4:87:D1:D7:43:40:0D:B4:3B:4D:6A:98:8B:97:FE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EF09
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DF89313CC3E211EF93038CB4762E951A.roa
Signing time: Thu 26 Dec 2024 23:41:05 +0000
ROA not before: Thu 26 Dec 2024 23:41:02 +0000
ROA not after: Sun 12 Dec 2027 23:41:02 +0000
asID: 17561
IP address blocks: 45.192.213.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61193 (0xef09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 23:41:02 2024 GMT
Not After : Dec 12 23:41:02 2027 GMT
Subject: CN=676de991-8b93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:b7:2e:21:f4:29:fc:9e:68:54:a4:b9:fa:12:
60:4a:d5:5a:b5:b4:da:c9:2a:11:cf:85:6a:c1:ac:
54:98:4a:4c:5d:8c:8d:e0:e5:bc:22:3c:fe:29:c9:
9a:48:b3:7f:d1:b3:7a:8b:1d:c3:98:6f:69:87:03:
e7:28:b7:80:51:8c:77:a8:5e:4a:84:36:d5:ad:ee:
51:c0:2a:33:43:1b:a0:0c:2c:36:df:9f:94:4f:30:
29:69:ca:23:fd:a2:af:53:9c:14:2e:75:89:5e:da:
6c:25:a1:69:e2:f1:57:1b:6c:9b:84:33:bc:75:2f:
c9:a2:74:28:74:f7:3e:fb:d1:50:cc:a9:99:3d:33:
7c:d1:44:fc:f9:58:ea:a3:6f:2e:47:85:8e:17:b0:
c5:16:88:db:00:8d:c6:75:c7:d2:58:85:95:3e:6d:
3c:ad:91:5a:a0:18:f4:31:22:d9:79:3c:9b:0b:3c:
33:0e:84:81:8e:44:3c:64:8a:c8:be:9d:99:72:8b:
66:65:a1:06:d1:f0:7c:74:f6:3a:6d:aa:a8:2a:7f:
c7:bc:46:7c:0a:69:14:85:82:9b:dc:a7:c4:c4:3b:
49:81:a1:c8:7d:83:64:68:41:b8:15:44:08:fd:15:
ae:a1:6d:5e:e0:ec:92:0f:08:89:80:28:ab:64:8b:
3f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:40:CB:C5:CD:F4:87:D1:D7:43:40:0D:B4:3B:4D:6A:98:8B:97:FE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DF89313CC3E211EF93038CB4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.213.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:fc:6d:df:ff:46:43:c5:33:92:95:2d:b3:00:b9:65:6c:be:
d5:e5:76:1b:b0:6a:51:57:0d:7a:48:3c:bf:d3:39:2a:31:77:
e0:e2:28:52:6f:32:1c:0a:21:ad:9d:e2:6e:2b:60:2e:b7:b2:
e5:cc:8b:66:fe:36:ce:50:88:ff:2a:0b:3f:74:e5:1a:33:8c:
5b:7d:58:7c:8e:9c:cd:c2:24:c0:41:27:3a:17:54:72:19:02:
51:41:b1:50:6e:fa:d1:03:d0:6d:e3:4a:c5:bc:1e:d4:c8:43:
f3:73:1a:b6:ee:0f:12:4e:ca:73:01:4b:20:a6:32:05:23:a6:
09:dc:33:b7:34:71:09:16:bd:0d:76:6c:a7:2e:a4:cb:dd:74:
6e:2c:0c:ee:b5:c6:33:b1:ca:8a:ca:11:88:af:ff:05:b7:96:
f5:50:26:29:33:0e:45:a0:a1:1c:89:93:3e:b9:8e:0d:d3:85:
3c:ff:cd:1a:35:37:8e:62:bd:7f:bf:ef:c4:e7:c6:de:a4:af:
99:e6:ef:f7:9c:23:24:72:a2:e4:d7:b7:24:5a:60:87:d2:25:
83:85:35:a6:a3:6b:fc:3d:79:3f:e4:70:f3:60:7b:a8:c4:3a:
3b:67:b9:fa:cc:17:9e:4a:84:75:39:5e:23:ec:c6:51:86:ab:
eb:28:68:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:58:50 2025 by rpki-client