Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E0BA92D2C3FE11EF87A8BC78762E951A.roa
File: E0BA92D2C3FE11EF87A8BC78762E951A.roa (raw, json)
Hash identifier: o2i65Ubezy0O7QHIh+S7uJPM/mOUDFLF5Z3MfKHfxgQ=
Subject key identifier: 72:0D:C1:48:96:DF:AF:88:0E:54:1C:06:48:B2:7C:EF:29:21:2F:B0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EFC0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E0BA92D2C3FE11EF87A8BC78762E951A.roa
Signing time: Fri 27 Dec 2024 03:01:33 +0000
ROA not before: Fri 27 Dec 2024 03:01:29 +0000
ROA not after: Sun 12 Dec 2027 03:01:29 +0000
asID: 17561
IP address blocks: 45.195.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61376 (0xefc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 27 03:01:29 2024 GMT
Not After : Dec 12 03:01:29 2027 GMT
Subject: CN=676e188d-8d76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:75:88:b2:58:63:3f:c7:a0:f8:59:ee:0a:29:
ba:d9:19:d7:8d:28:db:f4:3a:8b:e7:8a:bd:af:22:
22:21:7d:d2:41:f7:6f:27:1f:e9:ab:9d:58:17:5b:
a8:81:8c:8b:e4:c9:0e:08:23:d2:d2:bf:3d:02:e5:
da:24:55:93:31:44:f4:ba:81:8c:36:99:ad:a1:70:
b5:75:7d:7c:c0:bc:53:8e:77:e7:e2:1e:a1:28:48:
2d:51:d0:e3:38:1c:cf:bb:94:0a:db:8e:a0:73:71:
59:27:9c:f7:ea:d0:37:a3:9f:d2:42:bb:7e:db:5f:
2e:32:0a:95:24:bb:f2:c1:48:47:d9:33:d0:5e:d9:
ca:0b:83:8f:e4:a4:45:3f:ae:c9:2b:48:e8:9d:05:
11:2f:fb:22:58:af:8e:59:8b:54:f6:b7:d3:76:3b:
5b:98:57:58:ed:82:84:31:8d:36:87:ad:d4:52:25:
95:52:fd:fd:87:bf:25:48:ba:1c:14:3b:5a:3e:b1:
bb:a9:4c:82:87:16:11:c6:b5:38:fe:75:6a:c0:8b:
14:2f:89:ad:d6:5e:81:56:43:77:57:67:2b:fd:15:
c6:9c:91:e2:57:c5:90:77:9f:c2:b9:67:21:37:7e:
ca:3e:aa:58:d4:15:cb:d2:10:14:12:00:4e:40:77:
40:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:0D:C1:48:96:DF:AF:88:0E:54:1C:06:48:B2:7C:EF:29:21:2F:B0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E0BA92D2C3FE11EF87A8BC78762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.67.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:c7:ee:d6:97:64:f4:1d:e1:25:b3:0f:b6:4d:b2:90:82:43:
09:99:4d:06:c0:74:c0:bd:f3:4c:12:c3:75:83:64:8a:cc:eb:
1c:75:21:d1:42:9e:c1:20:a8:76:ad:55:29:f9:ba:e8:9b:96:
06:ad:05:d1:d0:6b:11:92:ea:7e:54:92:b9:7c:3c:e5:c0:97:
a9:38:97:e5:6c:52:ea:6b:64:d7:9a:d3:5c:28:07:5b:fc:d8:
11:7c:85:3c:d7:2d:36:ec:d4:05:e4:ea:10:67:e8:aa:7b:d9:
93:46:ef:02:53:68:45:8f:2c:9d:6f:6b:ee:14:84:4d:0d:99:
51:05:b7:0a:b3:89:07:b6:d2:47:65:14:4e:68:d0:24:5d:b9:
d2:f7:d0:21:79:36:2b:c1:9a:94:42:1b:68:d8:f8:bd:d0:24:
f3:13:81:ea:28:eb:76:a5:a0:73:59:4a:3e:cb:5f:c3:5d:67:
8b:95:db:c7:be:85:2e:70:68:5d:e9:0c:85:07:35:80:da:66:
a6:21:21:de:a0:87:ca:53:11:e1:a8:83:cd:f5:2a:0b:52:68:
dd:d8:61:a2:05:51:3d:a8:32:10:4b:6a:70:f1:d2:45:20:5e:
27:71:8e:36:94:81:b0:db:d9:e7:1f:6c:f4:59:b0:8e:8c:38:
cd:2c:03:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:51:03 2025 by rpki-client