Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E70536C0C9C011EF91254D92762E951A.roa
File: E70536C0C9C011EF91254D92762E951A.roa (raw, json)
Hash identifier: srtkWqdgJO+wSd2XQn8sdbf458VvW/mVPntnPvrRDXw=
Subject key identifier: 80:E6:A3:6D:9A:96:98:9C:8F:12:22:26:CF:28:83:E9:A7:D0:40:21
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F6E1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E70536C0C9C011EF91254D92762E951A.roa
Signing time: Fri 03 Jan 2025 10:53:02 +0000
ROA not before: Fri 03 Jan 2025 10:52:58 +0000
ROA not after: Fri 07 Feb 2025 10:52:58 +0000
asID: 271916
IP address blocks: 45.207.16.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63201 (0xf6e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 3 10:52:58 2025 GMT
Not After : Feb 7 10:52:58 2025 GMT
Subject: CN=6777c18e-c172
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f2:dc:94:d1:73:5e:cb:5b:b5:7e:8a:87:12:
a6:a8:c8:8f:e6:d6:84:c0:3e:2e:e1:b1:fe:b0:bb:
05:52:a3:41:36:a0:5f:8c:31:fd:2b:40:fc:75:cc:
f2:c4:7c:89:62:33:9f:c5:ac:80:25:b8:e2:43:06:
ed:39:3a:88:19:cf:1f:fa:93:c2:13:5f:13:06:a7:
d2:d8:11:1e:c7:ef:25:57:ef:35:f5:e4:73:03:39:
1f:ca:d2:60:71:27:fb:25:04:c4:84:62:87:92:9e:
66:69:96:b1:32:3b:d5:28:9c:4c:2e:51:19:e4:0c:
91:f6:0c:00:f4:e6:d5:3d:57:2c:7d:b6:db:e0:d7:
01:03:e8:c1:df:01:05:9d:91:49:64:4b:f6:f6:af:
ae:e1:ac:6c:1c:65:88:98:b6:25:e1:dd:50:a0:68:
df:a8:22:9e:fa:c8:0c:bb:a6:47:95:6a:e7:6b:0e:
78:90:71:7f:68:e7:4d:c4:78:a6:27:3e:a1:69:d3:
cf:55:9c:c3:ae:e7:bf:f6:77:78:1c:e8:c7:20:41:
7e:4f:d4:78:96:a2:4d:be:4d:27:b9:a1:78:fa:10:
6f:cb:f6:7c:f3:e0:26:c1:9c:72:f9:d7:18:c5:e4:
93:36:b2:29:00:57:05:84:72:40:3f:4f:e3:de:5e:
ee:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:E6:A3:6D:9A:96:98:9C:8F:12:22:26:CF:28:83:E9:A7:D0:40:21
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E70536C0C9C011EF91254D92762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.16.0/22
Signature Algorithm: sha256WithRSAEncryption
55:a5:94:2b:af:c5:78:68:27:54:fb:3d:5a:b4:cb:f8:b3:eb:
12:31:08:24:2e:d0:dd:fa:c5:77:5b:bf:fb:e1:15:f4:11:1c:
4e:a2:9f:58:98:5d:a2:ff:84:63:90:5f:eb:bb:b7:72:74:55:
f7:27:3f:61:4c:9f:53:cf:6e:bd:ab:1e:cb:31:14:42:ba:6b:
d8:4f:3d:f5:f2:6e:c1:da:6a:01:8d:e7:f3:09:e4:82:50:fe:
f1:f4:36:dd:bd:a6:0e:7d:d9:fe:a8:89:eb:5b:47:7c:f3:23:
59:71:87:9f:d3:91:83:48:3d:34:db:ea:88:f0:2e:9c:a2:39:
5d:34:1d:93:4d:22:08:3c:24:93:08:de:fb:3c:52:f4:b4:e6:
be:a2:02:0e:c1:7b:0b:ab:f6:72:ff:c5:98:39:f3:fd:48:0a:
6b:3c:a1:e9:62:54:f3:d8:d5:83:15:f0:98:77:c0:de:88:0b:
dc:55:df:4b:67:10:17:00:d4:2c:72:a0:24:b6:61:3b:bb:c4:
ff:31:52:5d:74:77:f1:89:3d:4d:b8:af:04:71:00:44:0f:8a:
2a:74:c8:78:9d:7a:14:bf:8c:82:42:85:83:04:d1:ad:1a:b6:
d2:54:15:2b:d5:f6:c7:69:d1:a0:d0:83:29:c3:c4:6c:54:47:
cc:4f:3b:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:40:47 2025 by rpki-client