Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/8C39476CC8CC11EFA2DCE97C762E951A.roa
File: 8C39476CC8CC11EFA2DCE97C762E951A.roa (raw, json)
Hash identifier: VXOPK/VFv2AaVLe7XZwdVPeQ4+h+ByCwPFgxZjmAtoU=
Subject key identifier: BD:17:35:55:18:FA:21:74:BF:5A:B6:3E:0C:81:C7:74:13:B9:D5:A9
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 0441
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/8C39476CC8CC11EFA2DCE97C762E951A.roa
Signing time: Thu 02 Jan 2025 05:43:52 +0000
ROA not before: Thu 02 Jan 2025 05:43:49 +0000
ROA not after: Thu 01 Jan 2026 05:43:49 +0000
asID: 329007
IP address blocks: 45.221.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.mft
rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1089 (0x441)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR
Validity
Not Before: Jan 2 05:43:49 2025 GMT
Not After : Jan 1 05:43:49 2026 GMT
Subject: CN=67762798-976c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b9:3a:9a:8b:98:18:de:48:34:43:d1:24:c7:
e7:9a:14:9b:50:70:b2:65:4e:4e:19:75:f4:27:f3:
e3:85:9c:d5:53:a1:bc:66:c6:89:63:80:8e:26:73:
d8:58:57:3b:fa:3d:8a:f2:16:53:2b:c2:3a:d0:a5:
30:19:e5:c9:8d:63:76:e8:29:28:1f:88:7c:e1:e2:
4a:ef:bb:6e:d8:00:12:19:a5:23:3f:ff:c9:96:e7:
03:51:6c:ca:9f:12:4e:05:23:1e:b0:8e:0f:64:6d:
51:9e:70:70:6d:8c:7a:59:2e:60:30:08:3d:5d:dc:
89:90:3a:96:b4:10:f2:9d:c9:54:7f:2e:64:f3:a9:
70:3f:7c:33:af:d2:19:c6:b9:1e:e9:7d:bf:1b:cb:
bc:2c:56:96:c1:96:7b:ae:0c:8b:b1:ef:5f:c0:b1:
80:1c:a4:98:8a:73:2a:6d:53:51:a7:de:3f:c5:98:
c3:27:6f:e9:80:df:bf:3b:ac:81:99:1a:b0:38:58:
a4:4f:02:81:92:96:dd:12:a3:4d:91:e6:e2:b6:d2:
ba:9a:e1:e7:ab:ea:0b:15:40:01:7c:3d:62:09:5d:
dc:ec:ce:e6:c7:7f:02:f1:8a:f5:08:19:1e:61:6b:
21:76:b7:dc:c9:b8:e1:15:6a:b5:0f:e8:5c:d4:b3:
f1:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:17:35:55:18:FA:21:74:BF:5A:B6:3E:0C:81:C7:74:13:B9:D5:A9
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/8C39476CC8CC11EFA2DCE97C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.69.0/24
Signature Algorithm: sha256WithRSAEncryption
07:e1:54:94:f9:26:76:d6:f9:81:11:8a:d5:a0:b9:bc:52:0d:
84:07:1d:65:f8:55:c3:0b:2a:fd:e4:f3:83:9f:40:9c:06:d1:
77:e1:47:57:77:c6:65:e6:78:1f:87:71:7f:43:19:fa:a2:a6:
b8:d7:e4:84:2e:31:3f:b8:d0:00:c5:76:3c:65:e7:4f:9a:22:
03:be:c6:6c:32:31:16:02:a5:f3:8d:a6:61:88:3e:e2:43:50:
51:cf:d7:60:73:17:17:6d:aa:c0:f4:33:66:75:44:3c:06:52:
ce:64:6e:f8:35:75:06:4e:0d:fc:98:cc:0b:72:18:08:ca:4d:
65:a0:a8:12:6b:27:c7:86:54:08:1c:5a:c2:21:e3:63:c7:4e:
a7:89:08:26:25:f1:d3:8f:24:25:de:cc:fa:fb:eb:5a:cd:ac:
5f:ad:ff:ad:41:4c:03:d8:c9:09:60:63:9e:52:40:f4:bc:7c:
3e:3f:43:90:e3:f1:6d:39:3d:b7:15:5a:94:0f:9e:8a:47:ae:
b3:19:0d:37:66:2c:68:fe:f5:2c:75:1d:db:47:3d:fb:2b:e8:
46:b9:f3:c5:cd:80:90:c5:12:53:1c:2e:af:78:90:c0:66:2e:
ee:d7:ee:80:e0:12:f1:dd:c1:de:06:6a:e5:4b:68:63:d2:47:
13:7c:c6:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:39:38 2025 by rpki-client