Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/319CA698BDB711EF9647A4B5762E951A.roa
File: 319CA698BDB711EF9647A4B5762E951A.roa (raw, json)
Hash identifier: qD8+ksRxrA0MroSXg1ct/HDpHO6UtnhGV7dloaqPd6o=
Subject key identifier: 7D:0D:E3:CD:0F:76:33:76:DC:42:D3:E9:5D:3E:48:4D:27:E9:BC:66
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E4FF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/319CA698BDB711EF9647A4B5762E951A.roa
Signing time: Thu 19 Dec 2024 03:13:18 +0000
ROA not before: Thu 19 Dec 2024 03:13:14 +0000
ROA not after: Wed 10 Dec 2025 03:13:14 +0000
asID: 984
IP address blocks: 45.204.172.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58623 (0xe4ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 19 03:13:14 2024 GMT
Not After : Dec 10 03:13:14 2025 GMT
Subject: CN=67638f4e-07d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ae:b5:a4:47:68:41:8d:28:24:0e:e3:3c:7c:
1a:b8:58:ec:96:7b:3a:39:2b:64:26:65:3f:c3:1a:
37:d2:8d:75:b4:76:60:55:16:4e:29:16:72:8a:9a:
44:0d:03:3f:87:62:45:ce:1b:ff:40:9f:32:8c:48:
a1:96:40:27:54:4f:bb:95:fe:30:bd:47:af:23:73:
b5:21:3d:1b:c7:4a:eb:86:c3:a5:93:7e:21:d6:a8:
ef:2b:d4:30:65:fb:33:d3:41:d4:7d:d1:0f:e9:da:
d7:57:59:cd:3a:4d:fc:19:3b:a3:39:3b:87:cc:32:
cc:88:bd:47:fb:2b:67:10:fd:9d:ea:75:9c:35:13:
99:e1:b1:8f:1a:59:f2:1d:c4:a0:18:34:d3:c2:5c:
81:fd:1c:f6:27:26:f2:40:7e:e3:72:0e:98:f8:0a:
dc:f8:15:6a:45:a3:9a:da:57:61:10:83:37:26:14:
5a:80:58:79:45:84:f3:8d:63:85:9d:c1:ba:b6:c0:
a2:90:13:74:cd:67:13:b6:cb:c0:cf:ba:ce:b6:c7:
85:eb:89:ab:9c:cd:f7:b3:fe:b6:2a:9e:f5:dd:d7:
e8:ce:3e:2e:c4:32:86:a1:b1:fb:8d:db:06:48:c1:
79:b4:b5:31:d2:d1:4c:1b:61:2e:e2:9a:2c:ba:dd:
e8:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:0D:E3:CD:0F:76:33:76:DC:42:D3:E9:5D:3E:48:4D:27:E9:BC:66
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/319CA698BDB711EF9647A4B5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.172.0/24
Signature Algorithm: sha256WithRSAEncryption
22:ac:07:63:89:44:6b:69:40:a4:e6:ac:c5:07:6b:60:0a:dc:
05:56:25:f4:08:47:86:f3:a0:05:be:23:47:8c:7a:8c:26:83:
7c:11:dc:0b:52:d4:e8:f9:27:4a:63:98:60:00:22:a4:69:62:
04:c5:10:c7:a2:26:23:d3:8c:c9:ad:43:c1:a7:51:98:d6:59:
e5:24:d5:a4:bb:d7:76:4f:48:a5:6d:3f:ce:eb:a6:3e:94:74:
fb:6f:fd:72:05:6b:bb:27:81:c0:75:00:c1:16:a7:58:4c:57:
79:70:0c:93:52:5c:2a:56:1f:13:62:63:fe:0c:33:c6:f2:eb:
af:92:8e:93:34:12:51:11:f1:e8:10:b3:a2:40:6f:f1:8c:f3:
58:a2:2b:bb:5a:01:c1:78:53:d4:fa:ac:e1:01:ca:87:dc:da:
5d:27:d4:d3:c5:3a:ec:f3:88:a4:52:d4:3d:75:6e:7d:2a:4d:
d2:d5:0e:e8:a2:98:cf:72:98:f5:f6:6d:e2:73:14:65:d0:ae:
06:be:d2:a9:f5:d0:88:0f:5b:62:a7:4d:35:06:9d:c6:4c:06:
de:04:de:8a:af:89:f8:5b:4b:a2:31:63:cc:19:db:2a:6c:5a:
56:12:32:ff:09:46:fa:18:a3:90:7d:69:be:53:df:f4:f7:87:
93:db:21:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:48:55 2025 by rpki-client