Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/22C030AABE7411EFA52AA14E762E951A.roa
File: 22C030AABE7411EFA52AA14E762E951A.roa (raw, json)
Hash identifier: 3jk3D98miGYUOHLnL2CihTistTKddKzpkPcpKELEu10=
Subject key identifier: 90:B7:32:14:63:0C:81:48:7A:F7:C2:D6:32:5B:B1:32:AB:AC:D5:65
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E610
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/22C030AABE7411EFA52AA14E762E951A.roa
Signing time: Fri 20 Dec 2024 01:45:48 +0000
ROA not before: Fri 20 Dec 2024 01:45:44 +0000
ROA not after: Wed 10 Dec 2025 01:45:44 +0000
asID: 984
IP address blocks: 45.206.135.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58896 (0xe610)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 20 01:45:44 2024 GMT
Not After : Dec 10 01:45:44 2025 GMT
Subject: CN=6764cc4c-aeb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a0:56:df:f7:4e:bf:58:64:e0:56:d8:1f:a1:
cb:3b:88:30:41:f3:3b:a3:21:8e:a9:f2:e2:b4:26:
48:ae:e6:9a:08:c1:b5:f7:51:0e:e2:5a:97:04:28:
be:73:a8:e0:7c:75:8f:07:4e:95:78:7b:b8:b2:f0:
7c:d4:53:40:3d:49:20:c5:1d:2f:5c:e6:88:ab:f0:
b0:ea:a9:fd:22:da:65:7f:a8:c7:40:58:34:15:e8:
a9:43:8f:98:5e:b7:71:53:de:66:60:57:55:7a:2d:
87:ad:29:93:24:8e:92:6f:36:34:2c:5f:0b:7d:f7:
79:60:87:e2:67:97:d2:e6:7d:29:50:63:e6:fb:49:
99:ba:39:06:6e:f6:62:72:fb:ce:17:ab:7e:83:6c:
37:d0:67:d6:9d:5d:5e:0e:a9:38:f1:6f:bc:5a:d0:
be:b3:34:31:ca:0a:b0:b6:d9:36:c9:c8:91:34:2b:
b7:f2:50:0b:a3:1d:d9:6d:7f:20:ba:f6:87:fb:db:
29:ef:69:e7:2a:94:76:31:fa:16:62:75:9e:3c:b4:
5e:3b:80:35:d9:d1:b7:93:c0:8a:ac:76:66:cd:7a:
f3:10:52:2f:0c:40:a3:f1:73:6c:e0:be:19:af:02:
c6:54:54:0b:af:49:5c:2e:6f:80:d7:54:5d:35:0d:
f1:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:B7:32:14:63:0C:81:48:7A:F7:C2:D6:32:5B:B1:32:AB:AC:D5:65
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/22C030AABE7411EFA52AA14E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.135.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:3b:11:a3:9b:59:f9:a6:7c:6e:54:da:55:90:5c:95:80:69:
05:12:a9:e8:47:02:c2:b4:d6:45:06:10:ac:96:96:6d:e3:d8:
d3:63:a3:77:52:3e:c4:93:01:f5:1c:99:7c:88:9d:88:f1:e8:
71:fe:09:b9:50:95:f7:b5:c6:08:25:e9:4c:45:8c:83:e5:67:
52:79:b8:95:3d:bd:5a:67:3b:c1:47:17:b9:5e:27:c6:0d:0a:
1b:79:42:b3:59:f4:b5:a4:b0:b7:c5:14:38:f2:b7:b7:22:d5:
f4:89:e8:fe:99:10:30:c1:32:66:8b:8a:92:59:82:2d:16:05:
70:6d:91:5c:39:74:f7:9f:fd:36:38:82:49:f4:a0:89:3f:4d:
34:3f:72:c2:c0:66:d7:9b:65:fc:3a:df:7a:97:c9:cd:4f:66:
04:a4:9a:3f:e6:95:59:97:e0:f2:60:df:93:23:96:50:90:a2:
eb:11:03:1a:ee:01:a5:15:46:eb:08:9d:75:2b:1f:16:81:64:
49:0f:d5:42:b0:82:1f:22:2c:6d:ce:69:05:16:ae:f2:e0:f3:
90:1c:8d:75:62:fd:5c:2a:57:49:e3:3f:c5:a2:a1:37:97:3c:
27:3a:8d:53:eb:f7:70:77:89:da:b2:27:cf:1e:27:80:14:53:
8d:52:7f:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:40:37 2025 by rpki-client