Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4A50DF3EBDB111EFB998968C762E951A.roa
File: 4A50DF3EBDB111EFB998968C762E951A.roa (raw, json)
Hash identifier: WhDMivPy1i+H4iv26KduPJmd6IvWFzh1Go5espQTjnQ=
Subject key identifier: 2F:20:95:A4:F0:00:66:3D:B3:88:7E:D7:C6:08:49:95:75:C7:86:0B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E4B3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4A50DF3EBDB111EFB998968C762E951A.roa
Signing time: Thu 19 Dec 2024 02:31:03 +0000
ROA not before: Thu 19 Dec 2024 02:30:59 +0000
ROA not after: Wed 10 Dec 2025 02:30:59 +0000
asID: 984
IP address blocks: 45.198.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58547 (0xe4b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 19 02:30:59 2024 GMT
Not After : Dec 10 02:30:59 2025 GMT
Subject: CN=67638566-25b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d2:a3:59:93:11:b5:50:1a:db:ad:c3:a5:28:
bb:06:02:52:59:82:39:79:73:21:b1:83:10:5c:8b:
29:0b:46:16:18:18:28:f4:df:c2:6c:6f:02:93:e1:
7b:65:13:5c:15:ec:98:7d:ca:97:31:ee:e6:12:4a:
eb:19:96:8c:2f:ef:c4:4b:78:74:cb:a8:a9:16:f7:
fa:91:48:06:8d:cb:00:68:47:bd:12:54:a8:f5:a7:
e3:48:09:55:0d:54:13:ac:65:85:f9:1e:7e:60:de:
52:25:ac:c8:c0:20:e6:3a:22:e2:eb:13:e9:15:d3:
8a:88:f3:42:1a:2b:15:c8:3b:58:d3:ef:40:79:8d:
4b:47:78:b6:da:d6:45:74:91:4f:06:2f:c4:a0:82:
1a:23:20:9b:d9:2b:3c:25:07:41:94:69:82:7a:c5:
0c:fc:eb:98:fb:e2:4d:6d:02:0a:83:42:d7:b3:ea:
2e:45:b5:0a:3b:55:81:5e:f8:73:12:8b:25:5a:52:
ff:78:e9:ff:85:49:03:5c:25:4c:82:d9:86:d0:ef:
29:fb:5e:ad:70:27:75:f1:5c:4e:25:3d:56:c9:02:
5b:f8:10:35:73:93:bd:ba:4d:33:ba:ea:a9:90:66:
40:98:25:32:88:20:36:a6:fd:68:95:4a:50:e0:f2:
60:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:20:95:A4:F0:00:66:3D:B3:88:7E:D7:C6:08:49:95:75:C7:86:0B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4A50DF3EBDB111EFB998968C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.241.0/24
Signature Algorithm: sha256WithRSAEncryption
27:f6:db:86:dc:55:28:63:16:c3:63:e1:f5:de:33:26:35:fc:
38:5e:60:f8:72:88:64:fd:a1:0e:60:dd:4f:f7:cb:72:fa:4f:
f9:69:c0:1b:53:87:0a:3b:bd:20:69:09:dd:50:19:fc:b7:88:
80:0a:2c:0f:2d:d0:c0:0d:d5:2c:c3:bc:99:08:13:ea:51:db:
be:f3:b5:91:3a:a4:ee:6f:b1:cd:9a:4f:ed:7e:d0:e0:07:81:
8b:90:89:fc:de:ca:24:ea:18:50:db:74:21:f5:52:59:de:70:
17:56:b9:d9:41:8c:4f:e3:d6:32:6e:75:41:9b:81:03:de:c4:
f4:79:e7:da:28:ef:5c:c8:30:c2:a3:0c:d4:67:ab:70:c3:12:
28:bd:cd:bd:4c:be:06:39:ef:7e:48:9d:8a:f7:a3:57:2b:13:
7c:17:57:d9:09:ae:eb:fc:52:ad:a0:3b:2d:a0:62:4f:ac:be:
db:b2:11:4f:f9:87:0c:14:3d:da:88:dd:3d:a8:71:70:e4:ba:
26:f4:0a:7d:4f:92:d6:d4:86:c4:07:67:32:bf:64:ce:e7:e5:
6d:2f:dd:42:9f:65:18:17:80:c6:cb:98:43:71:39:8d:1e:3f:
72:44:d2:98:bb:fe:6e:20:63:e1:e5:43:ff:eb:a0:db:1a:c2:
1a:24:b4:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:00:54 2025 by rpki-client