Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E0B19B40C3FF11EFBE69E17F762E951A.roa
File: E0B19B40C3FF11EFBE69E17F762E951A.roa (raw, json)
Hash identifier: ZxLfukyxBWW2qFNDfmAiFaRTfBwS0vSs44zpa0VYy/8=
Subject key identifier: 7F:AC:40:D8:D1:F8:55:D8:7E:08:CB:43:51:1B:9A:C8:AF:21:7B:77
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EFCA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E0B19B40C3FF11EFBE69E17F762E951A.roa
Signing time: Fri 27 Dec 2024 03:08:42 +0000
ROA not before: Fri 27 Dec 2024 03:08:39 +0000
ROA not after: Sun 12 Dec 2027 03:08:39 +0000
asID: 17561
IP address blocks: 45.195.90.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61386 (0xefca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 27 03:08:39 2024 GMT
Not After : Dec 12 03:08:39 2027 GMT
Subject: CN=676e1a3a-df68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:de:e8:6c:9a:02:90:17:92:ae:21:a3:83:07:
a2:23:3b:d4:cd:2f:f5:78:76:42:2d:d2:e4:d0:02:
69:48:d5:91:05:5a:d2:ee:6c:a5:0a:e0:91:4e:c3:
ad:fc:01:b3:d7:ad:0d:55:54:8d:45:51:63:46:65:
02:ce:e3:47:38:d8:7b:d3:27:d5:bf:ab:b5:1d:3b:
72:5d:70:2e:51:9a:70:51:7d:e4:db:fa:6e:13:2a:
73:cc:24:46:b5:17:3e:da:4c:a8:a6:9e:4d:1a:d7:
fe:d5:81:b2:fb:94:c1:b4:ff:0a:d0:df:3c:1d:f8:
77:37:e0:ac:74:29:4e:75:0d:43:20:00:54:b3:e5:
50:6e:a5:9c:30:e2:f3:8a:32:66:d7:60:51:88:64:
05:5d:60:61:0c:20:5a:5c:db:8a:b0:7c:1c:12:02:
8d:82:87:b5:6b:1c:c5:4c:f2:e2:f9:f2:72:b6:5d:
6d:64:df:ef:3a:61:01:99:a7:fd:c2:3d:83:0d:7d:
e7:11:af:b3:e9:ff:57:14:19:34:e5:4e:a4:17:bd:
6f:01:2e:f2:69:f1:37:f6:33:e4:c9:cd:2f:ca:51:
a2:99:65:ef:87:2a:2e:ef:13:44:e6:44:2e:11:6b:
45:e4:8d:05:4a:1f:f3:fd:e3:4c:8d:7b:04:a4:5e:
2c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:AC:40:D8:D1:F8:55:D8:7E:08:CB:43:51:1B:9A:C8:AF:21:7B:77
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E0B19B40C3FF11EFBE69E17F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.90.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:bb:33:a7:45:a4:e4:b7:2b:81:88:86:47:84:ab:2e:87:c9:
fc:51:6b:41:3c:2d:8f:46:8e:49:14:fe:17:78:a9:b2:3f:a1:
b9:01:89:37:8d:5e:68:ca:f0:c5:ea:50:f5:07:50:f8:e3:dd:
fd:23:e5:dc:5c:ad:c4:98:80:39:17:db:11:ba:c6:0b:85:33:
b1:34:7e:20:1b:c9:f3:ee:db:94:a3:fd:fc:27:4c:08:4b:39:
03:6a:cb:be:87:5d:ea:13:52:19:c6:25:90:c9:9b:c7:ad:e0:
51:50:89:e0:a9:3d:ae:e7:bd:12:0a:a5:b6:de:97:c8:a7:89:
d9:cf:34:17:59:40:5b:0d:59:de:9e:38:35:ae:91:5e:dc:ac:
e2:d2:8e:98:c5:45:e3:8b:ad:1e:cf:49:c1:70:50:37:bb:ed:
d6:29:a8:3c:8e:ea:20:61:2f:64:fb:7c:fb:83:b0:80:38:ad:
05:f3:db:54:6a:29:cf:87:f2:78:28:cd:bf:bd:fe:c9:98:58:
c7:47:9e:e3:f5:9f:51:4b:5e:14:9b:34:67:b7:43:c3:93:bf:
0e:6d:67:41:cf:da:45:88:0f:2a:0d:3d:fe:83:a8:b1:37:8c:
62:94:d8:64:89:e9:a6:b6:86:c1:4c:04:bc:29:af:d0:54:d9:
0c:16:10:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:54:33 2025 by rpki-client