Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/06C3062EBDBC11EFB8EF3056762E951A.roa
File: 06C3062EBDBC11EFB8EF3056762E951A.roa (raw, json)
Hash identifier: PpcIw6ZGEzqtMMXKEJdMjXv1E5dlHPNOt+KkeJutGtM=
Subject key identifier: C3:49:CB:70:72:E2:13:36:5D:EE:B1:7F:5D:E9:C7:AC:32:2D:DF:83
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E53D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/06C3062EBDBC11EFB8EF3056762E951A.roa
Signing time: Thu 19 Dec 2024 03:47:54 +0000
ROA not before: Thu 19 Dec 2024 03:47:50 +0000
ROA not after: Wed 10 Dec 2025 03:47:50 +0000
asID: 984
IP address blocks: 45.206.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58685 (0xe53d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 19 03:47:50 2024 GMT
Not After : Dec 10 03:47:50 2025 GMT
Subject: CN=6763976a-e792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d7:8c:8b:b6:32:05:3d:c1:78:d0:1a:05:a2:
c3:4d:24:5a:da:9e:ea:88:79:62:bb:89:74:20:46:
ec:22:fe:e7:41:fe:a2:4a:a7:e4:74:4b:38:9b:54:
76:67:71:d5:8b:cf:e1:41:20:62:0b:16:c2:19:b7:
03:f7:b0:be:6a:a8:18:6d:f4:9d:ef:2e:17:66:b1:
e3:88:cd:35:0c:ba:53:a0:2b:17:3a:8e:35:4d:12:
73:aa:cc:89:44:db:33:c2:df:d3:ca:63:14:f9:aa:
d3:f7:98:34:7d:da:60:5f:90:1b:c5:e6:05:99:a4:
90:a9:f1:c2:35:cd:8b:bc:49:79:45:0d:8e:9f:c6:
fe:f4:3b:bd:ab:d5:28:bb:37:36:1e:81:ee:ad:b6:
57:90:8a:23:97:9d:a0:c5:5b:63:ae:36:a0:08:75:
dc:07:8e:55:91:30:64:6c:ed:89:09:40:de:5d:7a:
a4:bc:36:fa:79:70:2c:5f:d0:60:da:4b:dc:2e:f5:
a9:ff:05:cb:c7:0e:6c:d8:69:82:ec:2f:76:79:8a:
a4:16:44:9c:1f:a5:fd:57:20:e5:95:ae:cf:7e:3a:
1f:df:77:72:2e:8b:ec:5c:4d:f4:4c:ba:b8:01:1e:
29:55:82:32:1b:5e:2e:df:76:5b:07:a9:82:c4:45:
48:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:49:CB:70:72:E2:13:36:5D:EE:B1:7F:5D:E9:C7:AC:32:2D:DF:83
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/06C3062EBDBC11EFB8EF3056762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.47.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:e6:73:a1:ca:30:7c:0f:de:41:e4:90:ed:c4:41:3e:75:be:
86:62:c9:e7:3f:17:c1:86:3a:23:55:64:c7:ae:a4:63:c8:d5:
c5:6f:0e:0f:7e:c4:72:83:b3:ab:9f:ed:f4:f9:94:41:e9:5a:
74:70:36:7b:28:8b:d3:58:94:66:31:7d:48:db:37:c1:e8:b8:
96:8b:34:b9:fd:e1:dc:c0:62:76:01:98:9e:45:e5:f5:08:e8:
0c:ca:f2:c2:3e:70:31:f3:de:f3:dd:e7:0b:83:25:68:2b:23:
de:50:ac:dd:60:88:04:0f:1d:85:22:ea:78:72:05:37:f3:76:
10:ec:53:aa:f9:fd:5c:fd:4c:55:b8:8b:66:3b:83:88:4f:34:
84:49:9c:41:08:c3:d2:59:fe:eb:e4:62:0d:b2:5c:6f:d5:49:
a7:9b:74:ad:d2:75:83:c0:70:6f:eb:74:bc:3f:8a:a8:77:17:
68:98:42:92:90:2a:2f:5b:3b:5f:44:e1:69:da:e1:a0:63:f9:
c3:80:d1:25:ec:72:44:97:f4:f0:04:5c:a2:11:e2:44:bc:a0:
7d:cd:b6:dd:bc:5b:58:a1:a4:39:85:45:7c:cf:ac:94:b3:dc:
ef:10:17:48:0a:2a:c0:c6:35:1e:06:aa:4c:8f:64:ad:80:54:
d3:b6:8c:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:41:38 2025 by rpki-client