Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/615F65B0C6C611EF9012658F762E951A.roa
File: 615F65B0C6C611EF9012658F762E951A.roa (raw, json)
Hash identifier: 4bQbKqyUw0l7BvPg95E+RRAoW5fwG+SosEGbJRTzaP4=
Subject key identifier: 1D:4A:CF:41:30:2F:71:B2:FC:00:D9:2E:65:58:46:77:A2:3B:FF:A9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F259
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/615F65B0C6C611EF9012658F762E951A.roa
Signing time: Mon 30 Dec 2024 15:54:41 +0000
ROA not before: Mon 30 Dec 2024 15:54:37 +0000
ROA not after: Fri 14 Mar 2025 15:54:37 +0000
asID: 142002
IP address blocks: 45.197.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62041 (0xf259)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 30 15:54:37 2024 GMT
Not After : Mar 14 15:54:37 2025 GMT
Subject: CN=6772c241-9e15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:72:15:c1:d8:0f:de:3f:c4:46:5c:9b:2a:9c:
50:0a:21:2a:29:84:8a:7d:df:2f:d2:05:d5:31:4e:
63:5d:05:b2:81:5d:67:cd:f7:45:6f:51:b4:0c:92:
8b:5b:6e:17:99:00:4c:60:07:41:71:d2:20:9c:94:
58:76:56:d3:20:46:7c:cd:a7:46:e3:66:62:25:7a:
ae:85:65:d4:c6:25:5d:e5:a6:12:1c:3a:f5:d0:72:
1a:b0:67:ce:6d:b6:bd:66:ea:b7:06:ca:8a:92:3a:
7b:66:90:d8:71:28:1e:84:5b:3c:e6:f6:39:7e:bf:
bd:af:d6:53:cc:17:7a:ac:2b:c6:b4:66:3a:40:1a:
8f:ea:56:f5:f2:9f:11:10:67:4e:d0:64:d4:be:e5:
9d:1c:0a:f4:51:e8:0d:eb:29:52:3b:9b:2b:fa:69:
a0:29:ac:4d:4d:e7:2a:96:20:95:d4:ec:fd:e9:6f:
71:76:bc:12:70:bc:07:13:c1:4a:70:44:be:f7:93:
34:29:d1:22:80:98:72:64:38:94:2a:ba:8c:a9:7a:
c8:f2:db:d7:07:9b:c7:7c:56:d5:ad:af:63:70:15:
3e:65:3b:57:14:8e:8a:1d:34:7d:2a:23:7b:e5:a7:
c4:63:19:41:eb:39:45:b4:ab:c4:b8:4c:c4:46:26:
eb:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:4A:CF:41:30:2F:71:B2:FC:00:D9:2E:65:58:46:77:A2:3B:FF:A9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/615F65B0C6C611EF9012658F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.14.0/24
Signature Algorithm: sha256WithRSAEncryption
03:b7:dd:c7:de:52:aa:37:31:36:2d:67:bc:41:1e:8a:f7:30:
5e:62:97:2b:f3:82:90:53:8f:0b:2d:a9:c1:7f:cd:16:05:87:
84:21:1c:ba:f0:b0:9e:45:35:b8:62:81:92:29:12:49:d3:f0:
1b:60:f9:a8:51:b9:d1:18:78:86:3c:bf:89:c5:5a:4b:a9:13:
91:82:a4:c9:c9:b7:79:40:6a:5c:19:64:50:6f:08:5e:fa:8e:
37:ce:b0:99:54:9f:dd:db:3f:e6:ea:c7:87:b2:89:34:5d:e3:
4c:7d:4a:4f:0e:57:e8:ac:9c:f5:64:a0:1b:47:18:83:67:74:
84:04:11:7c:a7:fc:8a:ab:54:9d:f2:2f:4e:30:4e:00:c7:86:
4d:66:e5:d0:63:b0:39:b0:ef:1e:8e:e8:6b:a6:39:c0:ea:f3:
cc:9f:ce:f6:1c:78:73:ef:f3:1c:d0:be:04:1b:36:2c:ce:ab:
54:0f:50:71:72:a3:10:d9:4b:a4:5c:7a:42:da:7e:13:2e:18:
5d:fa:27:48:2b:98:2b:f2:1b:c8:04:cf:9e:fd:25:bf:a3:cc:
f6:cc:63:f0:20:38:10:24:fa:03:8d:5f:f8:7c:41:38:06:cc:
bd:b5:18:b8:62:dc:f0:21:56:f7:a7:cc:c6:9d:ee:ec:4b:53:
01:f3:42:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:46:33 2025 by rpki-client