Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E83C1C7CC3A111EFA114469C762E951A.roa
File: E83C1C7CC3A111EFA114469C762E951A.roa (raw, json)
Hash identifier: p7+wyNNf8N7QGf4C+IJwUEyciEBD7sGrX/UA9szt9qU=
Subject key identifier: D9:B5:C5:BA:23:3B:AE:F6:B1:E5:2A:40:51:DF:0B:EC:A3:5F:EE:23
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EDA1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E83C1C7CC3A111EFA114469C762E951A.roa
Signing time: Thu 26 Dec 2024 15:56:02 +0000
ROA not before: Thu 26 Dec 2024 15:55:59 +0000
ROA not after: Fri 12 Dec 2025 15:55:59 +0000
asID: 984
IP address blocks: 45.200.144.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60833 (0xeda1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 15:55:59 2024 GMT
Not After : Dec 12 15:55:59 2025 GMT
Subject: CN=676d7c92-44dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:1c:20:a4:fb:f8:c0:c9:f1:7d:88:7f:8e:b3:
c1:fa:b6:ee:ac:1a:89:b7:e9:2e:a1:2d:68:0d:fd:
a2:ea:9c:01:81:30:45:d9:db:4c:e6:99:75:15:96:
7b:7b:d5:de:5e:92:b2:4a:e2:9f:5d:c8:38:c7:5c:
b4:e8:b6:9a:ca:d0:23:b2:c2:c1:8d:8e:3b:8e:c1:
bb:aa:19:8a:7b:41:9e:22:48:b3:42:9c:ba:a3:65:
f4:6c:ec:0e:67:58:6e:af:52:f3:83:3c:8c:c6:a5:
fd:7f:2a:36:10:b7:86:1d:99:01:ed:bf:cd:fb:25:
86:2f:26:e2:6c:d3:18:c0:3c:51:5a:42:ee:41:e6:
73:46:e1:df:ab:b7:fb:c9:14:8e:ca:e0:09:52:3b:
0b:2c:c0:be:8b:b8:d2:78:0f:3e:44:1a:92:4b:00:
f0:82:58:7f:83:b2:de:46:c8:31:af:bd:67:e4:26:
38:2f:af:68:bf:de:f4:26:f3:bb:df:e8:e1:56:03:
a4:21:93:c1:55:43:e9:93:4e:2a:50:c4:4a:60:fd:
56:32:c0:c9:6d:06:3f:5d:ad:0c:c7:56:f1:08:15:
8f:50:b8:91:15:1f:79:a7:2a:9f:02:10:f9:e0:57:
48:3b:00:0e:04:7f:fc:38:5e:da:30:9d:6d:6b:25:
23:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:B5:C5:BA:23:3B:AE:F6:B1:E5:2A:40:51:DF:0B:EC:A3:5F:EE:23
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E83C1C7CC3A111EFA114469C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.144.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:b0:b8:e4:5d:bf:21:51:f1:f7:b9:d2:cd:4e:a3:1c:c6:d8:
b1:d9:90:9d:44:10:00:df:d1:41:03:d0:60:46:a9:70:31:4a:
67:ad:a1:03:6b:84:37:bd:bc:78:05:21:52:a8:9e:3a:8b:31:
5f:66:2b:3a:f8:aa:ba:99:fe:db:16:bc:9c:c2:d5:60:1a:f0:
01:db:96:7f:dc:0b:eb:52:c2:1f:b6:59:37:e9:2b:19:05:a5:
34:b5:5e:ec:bf:f0:6b:e8:7a:3f:92:4f:f4:49:75:d6:9e:fb:
75:94:0a:84:24:3c:a4:3a:8b:be:85:13:5d:91:61:67:4a:23:
86:11:2f:40:05:6b:2a:8b:56:57:bf:16:95:d9:39:b2:18:b1:
49:c8:ed:65:66:10:5e:2e:c4:25:61:96:fb:fd:0e:a7:d5:5b:
fd:ca:27:00:15:09:61:19:35:44:47:2e:ce:c4:b3:f0:a5:c2:
ff:ff:75:2e:c1:3a:30:2b:8a:ff:ed:27:d2:1c:7d:e3:36:b2:
40:83:54:70:54:63:64:bc:15:08:02:eb:b9:07:2e:6a:af:05:
99:40:16:3b:7b:a6:45:a5:ef:6e:9c:ac:7d:75:8f:97:f1:70:
15:fb:d8:4f:9b:3f:4b:8c:83:5e:2c:e3:10:25:a2:5d:53:8d:
71:60:d7:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:48:44 2025 by rpki-client