Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E7BFD8DACF2011EF89851349762E951A.roa
File: E7BFD8DACF2011EF89851349762E951A.roa (raw, json)
Hash identifier: vVfhzU0Bjb3PvRMe2CdeaTVe6tY6my2GoBjcH39wHvg=
Subject key identifier: E4:BD:F4:A4:C3:D6:21:97:F7:35:C2:0E:79:BA:9F:D6:3E:3B:27:36
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0104E7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E7BFD8DACF2011EF89851349762E951A.roa
Signing time: Fri 10 Jan 2025 07:02:51 +0000
ROA not before: Fri 10 Jan 2025 07:02:47 +0000
ROA not after: Fri 14 Feb 2025 07:02:47 +0000
asID: 20473
IP address blocks: 45.197.26.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66791 (0x104e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 10 07:02:47 2025 GMT
Not After : Feb 14 07:02:47 2025 GMT
Subject: CN=6780c61a-7817
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:5f:0a:e2:ff:ed:5f:cc:aa:bf:10:d3:d7:f1:
f5:b9:83:d6:2b:ce:4e:80:89:69:35:b3:fe:1a:a6:
f1:9f:ab:60:1b:6b:ca:97:9b:a3:43:e3:6a:16:91:
ad:71:86:53:c5:5e:56:58:91:c3:2a:f9:fc:2e:c4:
9f:a0:10:ed:3a:f6:7d:b1:d9:a7:f8:48:75:02:10:
25:e8:92:58:cf:27:bc:a0:de:59:d2:f2:29:8d:99:
c5:b2:d3:1f:b7:c2:a3:cb:56:32:9b:84:b0:4b:29:
56:79:b8:5a:fa:5b:58:7f:59:70:e7:5d:8e:da:72:
ff:29:78:68:7e:ae:eb:2f:a6:be:a4:4c:a1:0d:92:
20:67:81:88:c4:b0:07:82:df:c6:e7:b3:29:cc:0d:
a5:0f:b0:90:92:6b:4f:b1:c2:55:74:f5:81:07:d8:
13:45:82:7a:c0:e4:c3:cf:f9:09:64:94:2b:78:04:
b2:1d:08:61:78:34:e6:8f:31:40:1b:f4:37:79:e7:
6d:cd:8f:2f:d8:02:6e:81:ca:2e:f1:37:51:b4:f8:
80:ec:50:f0:96:56:30:7e:a5:5a:44:14:15:fe:54:
34:d5:c2:89:2d:a2:40:53:05:e8:69:11:37:eb:4c:
60:ef:5e:b7:e5:68:8b:47:f7:ec:22:f9:16:75:81:
1c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:BD:F4:A4:C3:D6:21:97:F7:35:C2:0E:79:BA:9F:D6:3E:3B:27:36
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E7BFD8DACF2011EF89851349762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.26.0/24
Signature Algorithm: sha256WithRSAEncryption
65:84:01:9b:21:af:36:23:d0:3d:4b:e9:d1:9e:bb:65:c4:10:
a1:eb:6d:eb:4e:03:82:62:7c:d2:01:5d:20:48:89:08:f1:d1:
51:39:d4:aa:6b:53:d7:f7:22:f5:50:37:de:4e:8a:3f:98:25:
98:4f:00:84:6e:9c:75:9d:9d:24:11:92:98:50:4b:13:01:f8:
c7:bd:54:57:ee:43:bd:20:7a:81:a1:ad:f4:4f:a3:27:24:86:
5a:eb:7f:29:7c:da:fe:73:9f:b4:2f:57:2f:bc:80:98:8a:94:
97:77:0e:1c:ca:40:37:d9:12:73:11:6f:b3:fc:2a:69:ea:34:
e4:97:fb:c4:27:22:06:d4:1c:26:3b:56:da:29:d6:bc:99:70:
bd:15:1a:c0:a5:32:d7:f1:50:ef:e7:4e:95:61:6c:93:76:b8:
51:89:4d:80:78:0a:e0:b6:8f:c1:87:0b:67:a5:84:29:18:dc:
07:75:b7:75:80:fd:e9:1d:9d:11:42:b0:55:ea:39:ea:7f:7a:
ea:fd:9f:e3:61:4b:a9:20:e5:90:dd:57:7a:29:3b:83:e0:be:
b3:76:9f:29:51:f6:1e:d4:99:a4:d0:89:b8:dd:fc:09:a7:bb:
6c:ef:bb:fe:9b:ce:0f:4e:f1:a2:fd:9b:ed:8c:f9:46:f9:b1:
7c:f2:34:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:44:32 2025 by rpki-client