Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/150EA04ECFFA11EF8BA68EA8762E951A.roa
File: 150EA04ECFFA11EF8BA68EA8762E951A.roa (raw, json)
Hash identifier: YAR2g0RAKhFPpyPdeCwEf+36oWy/higbOYpK9B6HeCo=
Subject key identifier: AA:C6:7A:B4:59:2F:A2:72:2F:C2:6D:8F:98:2E:5B:6B:D6:74:9B:4D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010582
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/150EA04ECFFA11EF8BA68EA8762E951A.roa
Signing time: Sat 11 Jan 2025 08:57:27 +0000
ROA not before: Sat 11 Jan 2025 08:57:23 +0000
ROA not after: Sat 15 Feb 2025 08:57:23 +0000
asID: 10103
IP address blocks: 45.196.225.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66946 (0x10582)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 11 08:57:23 2025 GMT
Not After : Feb 15 08:57:23 2025 GMT
Subject: CN=67823277-2180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ee:4f:14:58:52:4c:fd:44:18:43:5d:78:8e:
d4:df:18:e2:db:60:0a:3a:9c:3b:f2:de:e1:47:dc:
91:69:6e:79:bd:94:dc:31:fc:9f:27:29:6e:9e:ba:
42:0e:c1:e2:fa:63:01:25:96:04:78:b6:f7:8d:a1:
c7:39:33:9a:df:bb:ee:40:7a:ed:da:fb:e5:8f:35:
1e:34:80:2c:c3:e8:91:c6:f9:4c:bc:0a:ca:b5:dc:
2c:bb:0b:7a:c6:47:fa:10:82:ce:41:b6:2e:84:cc:
72:7c:d8:c7:ef:e0:e4:cc:54:9f:a8:04:a0:f3:be:
74:51:d0:c1:9d:37:7d:77:87:b2:fc:48:8d:9b:aa:
d4:fb:8f:dd:00:19:e9:6b:a3:b0:6c:14:f8:dc:d1:
d6:fa:4e:5c:37:99:40:2d:67:e8:c0:0c:6f:e8:4d:
ce:81:73:8a:37:7a:76:1a:06:fe:4b:e8:31:8a:64:
4d:30:03:46:55:7b:55:e8:3d:cc:da:bb:74:ed:d0:
66:de:a8:e1:f6:e5:9a:db:8c:df:88:17:90:4a:c9:
77:c7:14:bc:62:77:5a:f8:cf:16:fd:27:95:da:17:
d3:70:5c:63:46:07:94:40:9f:3e:a7:b2:62:66:4a:
ea:39:c4:ff:42:54:bc:b0:5f:b3:65:02:4a:87:e6:
3f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:C6:7A:B4:59:2F:A2:72:2F:C2:6D:8F:98:2E:5B:6B:D6:74:9B:4D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/150EA04ECFFA11EF8BA68EA8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.225.0/24
Signature Algorithm: sha256WithRSAEncryption
20:1d:8c:a9:c8:5c:06:4b:b6:95:80:ae:d6:7c:3e:07:7a:75:
c5:6b:b5:31:6c:4c:22:5a:8e:65:fe:ce:6d:fe:dd:7f:5e:61:
7b:2a:ec:37:c6:87:ae:aa:b8:b3:14:5e:5d:7a:3c:2d:ef:9f:
6c:63:7c:44:5e:6f:31:2b:2c:c5:29:f9:72:ab:ec:e0:2c:ab:
d8:a2:33:4e:3f:9b:23:e3:ad:5e:88:c4:a4:20:68:f5:1d:72:
1a:9c:e3:9d:9c:b2:3f:fe:bc:b6:d3:1e:4f:21:83:58:c6:fb:
a7:2c:84:5c:89:3e:79:b3:3e:99:61:bb:4d:35:2e:50:57:b1:
a5:29:01:1c:35:e5:a7:f6:e9:ec:f7:10:99:cb:33:11:6b:45:
0d:12:58:c8:71:44:0f:85:06:be:23:1b:14:50:41:a9:8f:ad:
ed:9e:de:86:cf:22:c4:19:93:9a:a1:d9:09:6b:9c:aa:88:82:
38:ca:ab:78:8e:de:41:cd:91:5a:f2:40:b1:3f:3e:28:9f:58:
19:cb:ef:c9:e2:2e:e1:26:74:df:ba:e3:af:a6:5c:5e:fd:5f:
51:e8:73:fc:de:89:b5:7c:0d:b4:4c:98:c3:e4:c9:1c:30:73:
20:57:d3:c5:1a:6d:4b:43:3e:ca:ed:08:f4:18:f4:05:cd:ee:
a0:d2:eb:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:50:43 2025 by rpki-client