Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57C922A6BDBC11EF87D50D5A762E951A.roa
File: 57C922A6BDBC11EF87D50D5A762E951A.roa (raw, json)
Hash identifier: Rda/NEDNP7Ww+iRDs8sEOMaD97Y7UBwzo0iXF4s7E48=
Subject key identifier: 07:AF:95:86:25:75:50:22:82:D8:E2:CC:5F:2A:B8:44:F8:13:70:90
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E541
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57C922A6BDBC11EF87D50D5A762E951A.roa
Signing time: Thu 19 Dec 2024 03:50:10 +0000
ROA not before: Thu 19 Dec 2024 03:50:06 +0000
ROA not after: Wed 10 Dec 2025 03:50:06 +0000
asID: 984
IP address blocks: 45.206.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58689 (0xe541)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 19 03:50:06 2024 GMT
Not After : Dec 10 03:50:06 2025 GMT
Subject: CN=676397f1-3180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:84:af:54:1f:32:96:72:79:6c:84:d6:b7:b5:
ab:28:cf:e5:c2:22:3c:b4:a8:e5:47:5e:21:1c:85:
50:44:72:15:ec:6d:0c:bd:3d:60:c5:05:92:66:07:
dc:20:8b:4e:7b:ff:15:f2:1e:24:68:cd:59:7e:91:
a5:80:4e:ba:c3:23:e7:9d:b5:20:44:05:2f:20:d5:
c3:0b:67:2e:89:3c:23:ce:2f:69:b9:a0:44:e0:4f:
db:4f:52:e5:57:7e:f4:7c:9d:65:42:74:fa:97:2e:
fc:09:95:60:3d:eb:75:8f:53:07:fd:f0:15:d9:09:
85:63:06:50:a5:f0:ea:2e:8c:11:a3:3b:a4:80:91:
37:a1:fd:d5:9b:23:80:b4:b8:3e:7e:f6:69:d7:3e:
06:e5:3a:98:9f:f7:56:c1:8f:f2:97:ae:cf:c6:08:
7c:f2:a4:93:a9:61:0e:c2:13:f8:63:83:b2:88:9d:
d5:60:cb:51:da:3b:e0:36:00:2e:19:97:b9:3d:d4:
ad:63:83:91:77:20:bf:5f:bd:fa:b8:50:ea:c0:d3:
84:a4:93:3d:fa:86:6e:16:5d:3d:2e:53:57:77:ca:
49:57:ad:76:9e:b1:46:0f:20:80:82:1e:d8:4f:2b:
49:ac:28:83:a4:1c:49:7c:00:c9:57:c6:90:13:d5:
f8:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:AF:95:86:25:75:50:22:82:D8:E2:CC:5F:2A:B8:44:F8:13:70:90
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57C922A6BDBC11EF87D50D5A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.67.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:00:d3:8f:1e:a1:96:f0:0d:20:f4:47:3f:af:86:35:5a:8e:
11:dc:f3:43:40:19:68:3e:88:60:e2:cc:2c:73:ca:a8:e0:0f:
79:6c:0a:44:57:ca:97:37:09:de:df:51:a7:88:ad:4f:84:ad:
c2:3d:17:e5:82:57:12:dd:5d:61:36:1c:2b:92:55:7d:b4:1b:
84:f2:c8:e7:04:23:76:19:27:a4:60:26:6a:d1:d7:35:8a:50:
5c:cf:33:7e:1e:b4:88:ee:cf:31:f5:80:53:0e:d9:57:96:90:
ef:5c:10:b9:e7:f4:45:a0:0e:1e:d5:69:8d:f4:c8:3a:aa:8f:
e3:ea:59:4f:02:6c:08:2a:79:e5:52:96:55:b2:52:3d:04:83:
46:0f:08:c1:58:4d:61:2c:26:49:16:ff:1d:20:f5:14:b6:1b:
72:e6:b1:bd:86:dc:9b:11:c1:e0:b3:57:7b:f7:07:bd:4b:8c:
9d:ac:02:4d:32:10:bd:7b:eb:b6:f6:95:81:0d:13:87:a0:d7:
21:f2:07:bc:de:9f:cf:31:10:6f:38:46:82:1d:3c:f6:e9:fa:
f9:14:67:47:e8:d1:c6:a8:22:6a:e3:ea:74:14:77:29:8f:84:
aa:24:d9:02:70:89:66:9f:ba:3a:86:98:4a:78:bd:61:eb:2b:
52:24:35:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:49:01 2025 by rpki-client