Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E82B08D8BDB111EF8F903B91762E951A.roa
File: E82B08D8BDB111EF8F903B91762E951A.roa (raw, json)
Hash identifier: htXz9ZtrRrdeZhBJHQWY/EbafjLfY0KRVdRax1oirlA=
Subject key identifier: 7A:E0:2B:B2:9C:E1:46:25:F0:6B:A4:A6:45:D6:B8:D5:E6:DA:E3:7C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E4BB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E82B08D8BDB111EF8F903B91762E951A.roa
Signing time: Thu 19 Dec 2024 02:35:27 +0000
ROA not before: Thu 19 Dec 2024 02:35:24 +0000
ROA not after: Wed 10 Dec 2025 02:35:24 +0000
asID: 984
IP address blocks: 45.198.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58555 (0xe4bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 19 02:35:24 2024 GMT
Not After : Dec 10 02:35:24 2025 GMT
Subject: CN=6763866f-c41b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:fa:92:29:a3:2e:e9:a8:bc:34:92:1c:a7:48:
69:cd:ee:24:65:2c:a1:c3:c0:30:8a:40:9d:4e:30:
0e:45:7f:c0:b0:e1:2a:87:fe:2a:6a:65:02:a0:51:
0b:bf:0d:05:c2:71:5b:ce:c3:db:73:44:5a:d9:44:
06:ef:2a:10:a0:fe:95:81:d5:d1:d8:11:d4:e5:3e:
3d:06:c6:9d:1e:58:a7:11:68:e4:a2:c8:6b:90:75:
c4:ed:e7:92:f2:c5:14:b3:c7:d2:db:73:94:00:cc:
48:54:9c:e1:fa:46:cd:3a:22:24:61:3b:ba:7e:d4:
3d:b4:d4:a9:9b:19:86:2f:f6:8d:a8:79:c4:36:a4:
d3:83:67:81:67:ea:c3:3b:af:79:95:79:3a:3b:51:
c0:d3:3b:2c:7d:61:c8:59:e0:25:24:54:73:3d:ca:
14:74:7d:00:9a:c9:26:19:ee:da:3b:c5:ec:ca:6f:
3d:ed:f9:95:4f:44:34:60:b3:57:38:3a:f3:d3:d0:
f2:be:34:ec:3a:e6:a9:07:ea:6b:ec:46:b7:39:35:
7d:11:c3:41:0a:f1:93:3f:4b:6b:fb:a4:0d:c6:de:
6b:d1:55:0e:e2:10:27:5e:03:03:ca:f3:2c:3f:b2:
72:1f:ef:3b:59:dc:ec:b7:0b:cf:ea:bc:e3:e8:ef:
7c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:E0:2B:B2:9C:E1:46:25:F0:6B:A4:A6:45:D6:B8:D5:E6:DA:E3:7C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E82B08D8BDB111EF8F903B91762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.245.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:7c:fc:41:72:ef:a9:a2:43:29:11:fd:a0:9b:ad:e9:f1:4c:
3a:3c:52:9a:54:b0:4d:4c:b6:0a:08:2c:18:62:21:74:6a:77:
00:30:4c:fd:b2:e7:2c:a2:ce:17:d2:36:82:f3:d0:6d:2f:14:
cd:a9:81:5f:12:a7:27:19:11:96:d5:96:36:57:a6:5c:59:44:
f0:20:4b:2b:6f:17:09:35:2a:1d:24:e5:0c:87:f9:e9:bf:5a:
d1:47:2a:3b:d3:7f:ca:b9:c7:0e:80:7d:c2:ff:6b:1e:ae:49:
ba:71:cf:42:20:90:ab:d0:7d:fc:c7:94:e0:89:20:85:84:02:
e9:6d:f5:e0:7c:cf:00:3d:d2:38:a9:a7:b5:a5:74:8a:e1:aa:
1b:4d:f8:45:31:18:ef:e9:9c:73:41:46:52:33:88:5b:f2:9c:
05:19:6d:b6:b3:46:bf:0e:e2:e1:01:46:bd:a7:5d:50:25:7e:
53:78:40:ec:2d:dd:8c:8b:5e:53:37:6f:cf:76:05:54:bb:2f:
55:34:85:d6:56:67:28:73:6e:21:01:1f:cf:77:42:22:4b:46:
47:db:34:9a:8c:d1:83:27:1d:c6:76:ba:6d:04:d9:53:44:4c:
a5:1c:5e:ea:27:52:6a:c8:b1:41:8e:1e:43:81:b5:87:64:03:
75:58:4c:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:00:52 2025 by rpki-client