Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/6E5BEE26CE4D11EFB6C44E85762E951A.roa
File: 6E5BEE26CE4D11EFB6C44E85762E951A.roa (raw, json)
Hash identifier: VkvxREwwr2DLFcqTSP51ZeT3RNuSfaQSqBo0zwFjj1A=
Subject key identifier: 07:3A:B3:AD:A5:CE:5A:CE:B5:CD:BE:FD:1B:05:DF:A7:35:0A:D4:BA
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 0451
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/6E5BEE26CE4D11EFB6C44E85762E951A.roa
Signing time: Thu 09 Jan 2025 05:49:03 +0000
ROA not before: Thu 09 Jan 2025 05:48:59 +0000
ROA not after: Fri 09 Jan 2026 05:48:59 +0000
asID: 329007
IP address blocks: 45.221.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.mft
rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1105 (0x451)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR
Validity
Not Before: Jan 9 05:48:59 2025 GMT
Not After : Jan 9 05:48:59 2026 GMT
Subject: CN=677f634f-a1e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:86:8d:d1:af:95:71:e7:b6:2f:53:2a:5c:86:
ac:c2:fd:53:68:51:af:1b:09:ed:e3:84:12:d8:e8:
3d:78:e9:e4:2f:10:b7:f0:cf:c3:76:32:8a:e2:6a:
74:78:9d:80:df:17:b0:3b:70:80:6a:7a:63:4a:86:
c2:e3:58:00:80:d9:f1:3b:15:83:93:76:61:64:d5:
0c:ba:02:20:92:c4:64:8c:9d:57:fe:4b:2f:f5:2e:
8a:d7:e6:05:ef:55:82:1c:de:04:ea:52:42:59:c3:
05:a3:53:ad:d9:90:54:77:fa:e8:3a:0e:9b:50:63:
36:0e:78:df:03:56:56:74:40:1d:06:43:c9:2c:91:
0a:39:de:12:57:db:85:be:38:3d:d5:c8:10:e9:87:
55:d8:45:14:61:61:dd:d6:84:ed:56:2b:b5:b3:b4:
44:07:ba:9f:f8:a6:26:6a:44:e4:b6:ae:ed:8c:a0:
85:7b:76:14:56:dd:a9:a7:ed:b9:5f:5f:f8:af:3d:
f5:c1:6c:f9:54:ba:89:99:09:06:88:a3:a6:03:c2:
71:d9:99:ff:c8:fc:bc:92:38:32:c4:11:fd:2d:8d:
13:a3:db:eb:a8:f6:10:15:c1:e7:3d:88:21:2b:35:
b5:67:fe:3e:40:a7:a7:97:b2:ec:72:ea:43:ec:d0:
a8:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:3A:B3:AD:A5:CE:5A:CE:B5:CD:BE:FD:1B:05:DF:A7:35:0A:D4:BA
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/6E5BEE26CE4D11EFB6C44E85762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.64.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:73:6a:a1:51:55:5e:58:44:b0:e1:f3:08:d0:e7:a0:9b:26:
dd:08:bd:f6:b8:78:6b:ab:fd:ee:ab:24:59:18:b9:e6:df:63:
41:48:9c:d7:36:5b:0b:c5:fb:1b:b3:66:28:3b:00:57:a3:a2:
8e:9e:57:d7:c3:2e:36:d8:20:fd:62:31:25:09:37:26:2f:4a:
71:fc:5a:82:a0:f6:9a:f0:7b:87:72:81:1f:a4:3d:c4:b7:7f:
53:3e:36:d4:f9:da:e4:99:25:26:ab:49:cd:94:3e:78:3e:43:
9a:a2:4f:4f:0a:b5:c2:a5:7e:98:70:bb:3d:f3:24:44:db:ec:
62:57:fb:be:cf:f6:51:03:29:54:c3:2a:61:dd:47:50:18:fc:
b0:fc:20:e2:f7:91:7a:20:4d:d2:93:cb:a8:e4:ff:fa:3d:f1:
c5:98:fe:2e:86:d1:84:fa:1c:38:1c:51:9d:a6:ee:bb:fc:96:
35:e4:66:af:13:12:18:e3:5c:dc:2c:ac:9f:ac:b3:a6:99:a8:
20:2c:64:d8:fc:90:75:01:8b:53:b4:fb:0a:47:64:fc:53:1f:
1f:81:89:41:34:52:e9:4b:fa:fc:49:09:e2:a3:1a:3c:2d:87:
32:fd:ae:aa:86:8e:08:06:46:73:05:a3:d2:3f:73:84:21:3c:
6d:a2:b6:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:32:51 2025 by rpki-client