Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0E760A2C3F111EFAB1FA798762E951A.roa
File: F0E760A2C3F111EFAB1FA798762E951A.roa (raw, json)
Hash identifier: ZNAhgLujNCk8D9k4toDZgm8IstPsBdJQhgCF2UPExqE=
Subject key identifier: 6C:72:77:20:47:7D:5E:D1:E6:F3:34:8B:91:ED:FD:B3:09:92:DD:E9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EF5A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0E760A2C3F111EFAB1FA798762E951A.roa
Signing time: Fri 27 Dec 2024 01:28:57 +0000
ROA not before: Fri 27 Dec 2024 01:28:53 +0000
ROA not after: Sun 12 Dec 2027 01:28:53 +0000
asID: 17561
IP address blocks: 45.192.253.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61274 (0xef5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 27 01:28:53 2024 GMT
Not After : Dec 12 01:28:53 2027 GMT
Subject: CN=676e02d9-52ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f5:d3:f7:93:73:de:3f:b2:65:01:21:b1:cb:
94:09:81:6c:70:3f:f7:68:ed:90:95:bb:71:9f:fd:
a8:8e:b9:54:07:ae:c1:7f:49:69:1a:b5:51:a8:27:
49:00:84:c4:aa:49:e0:44:66:f2:83:65:ef:a2:19:
88:e6:44:d5:f9:77:71:12:5e:d1:32:39:38:f8:db:
d3:0b:e1:d3:50:e6:2d:89:f0:36:4a:47:de:3e:7b:
61:20:b7:ea:45:f3:76:b9:77:bd:3f:b8:95:ce:0b:
2c:8f:ba:af:a8:b9:ac:89:33:a8:8a:5a:3a:a2:13:
41:b3:d5:47:49:21:94:74:e2:3f:42:04:90:41:50:
ad:d0:78:5b:3d:51:3b:7f:3e:06:18:03:74:ca:18:
5c:7f:3b:8d:6a:7b:7a:de:a3:29:d7:b6:4f:7f:ec:
36:50:d5:ed:2f:4b:62:99:5d:bb:84:b4:24:66:7a:
4b:40:f0:8c:7e:52:df:09:4d:0f:78:d4:15:46:cd:
44:90:2e:54:81:84:93:12:07:b4:3e:3e:67:9d:d5:
c2:25:e8:fb:6a:2c:81:13:93:e2:c3:02:c4:77:8a:
05:ab:42:a7:ad:f1:a8:8a:40:41:eb:ea:91:50:a5:
f5:78:60:5c:78:dd:22:97:d7:cd:c0:61:d4:f6:c1:
d6:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:72:77:20:47:7D:5E:D1:E6:F3:34:8B:91:ED:FD:B3:09:92:DD:E9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0E760A2C3F111EFAB1FA798762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.253.0/24
Signature Algorithm: sha256WithRSAEncryption
34:46:f6:2e:96:e4:d6:d6:21:16:82:51:ab:d9:25:45:f4:10:
be:84:42:b9:d5:4a:38:f8:43:b7:57:a7:6e:ca:b4:b4:c2:ba:
38:dc:f5:e9:62:72:82:0c:2f:2b:8d:68:a7:1a:c7:f1:4a:9b:
18:f1:57:6b:b7:8a:4d:48:1d:c8:9c:69:c2:6e:1d:79:3b:2b:
76:25:5c:e4:05:4c:49:d6:3e:d0:f0:75:2f:1a:5f:49:e6:20:
2a:3c:5d:7d:ac:e6:d6:09:cb:23:ee:69:3c:4c:9b:a9:56:d4:
bc:51:39:e9:54:f8:e9:48:5a:c4:3e:cf:2d:d8:85:76:55:0c:
b7:44:3d:74:a5:93:56:69:0f:4e:fb:bb:4c:ea:30:11:b8:a9:
16:a8:8e:4f:36:5a:ef:b1:5b:06:0b:71:0e:a5:82:63:9b:e0:
df:a3:ed:43:25:06:0f:66:3a:c9:4f:58:54:b4:e4:03:38:68:
58:9a:ee:00:48:af:a4:1e:12:30:5d:26:1c:7a:17:c2:74:5b:
38:c3:7e:de:57:45:50:d2:1e:6e:72:01:72:0b:7f:49:da:99:
1c:15:bd:a2:48:35:7b:c3:00:26:ef:38:55:13:de:9d:2a:3c:
a1:b2:2a:35:24:1a:6b:9e:f9:6e:b8:b6:9c:02:a0:a1:98:1d:
f2:21:08:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:58:54 2025 by rpki-client