Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/651ABF9CBDBB11EF9858AB53762E951A.roa
File: 651ABF9CBDBB11EF9858AB53762E951A.roa (raw, json)
Hash identifier: yWbjMYhzYUmn6RTlhUbXwdcnZmamjTp5Cw+UYO17+A0=
Subject key identifier: 0B:1E:7F:21:84:03:9B:44:CF:D2:8B:C6:F5:0C:5A:2B:34:80:38:D3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E535
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/651ABF9CBDBB11EF9858AB53762E951A.roa
Signing time: Thu 19 Dec 2024 03:43:22 +0000
ROA not before: Thu 19 Dec 2024 03:43:19 +0000
ROA not after: Wed 10 Dec 2025 03:43:19 +0000
asID: 984
IP address blocks: 45.206.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58677 (0xe535)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 19 03:43:19 2024 GMT
Not After : Dec 10 03:43:19 2025 GMT
Subject: CN=6763965a-c1bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d1:89:32:c6:fb:da:c5:c4:a7:9e:b5:bf:40:
4b:46:c1:d4:94:9d:3f:bb:72:83:cd:86:0b:a7:ee:
d5:9b:03:f3:28:7c:58:ab:88:51:a1:9d:e1:48:52:
0e:60:77:7e:6f:7d:08:93:0e:07:37:51:77:b0:67:
05:a5:6f:da:a9:5c:77:a8:f0:8c:38:15:90:db:b9:
cd:c6:7d:36:ab:43:b2:d4:34:e1:07:03:0c:75:a6:
98:de:25:a4:fa:f6:f7:5b:c2:e7:b7:54:8a:2e:af:
f8:e0:84:be:13:4e:38:a6:65:52:7e:24:7b:11:3d:
81:fe:0b:81:5c:a7:2d:94:65:d8:d2:6e:f6:bc:31:
15:4a:66:5d:e1:c8:59:60:74:9b:21:b9:e7:32:73:
11:8e:83:40:9e:18:8e:36:95:47:4f:d2:d0:93:46:
6a:4f:d6:a6:79:37:ad:be:6b:81:ce:8a:ad:76:ee:
4a:be:b6:be:39:41:b8:79:05:d3:c7:19:74:f7:2f:
b3:94:b3:81:8a:33:96:31:4f:90:87:51:2e:e6:50:
43:8f:3b:e2:fe:60:30:ec:44:3e:95:46:ef:1d:26:
e3:c5:79:63:5d:16:29:c3:6e:92:6e:d2:b2:5b:f0:
6f:64:bc:e4:f8:99:50:13:9b:6d:14:88:b0:7d:94:
26:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:1E:7F:21:84:03:9B:44:CF:D2:8B:C6:F5:0C:5A:2B:34:80:38:D3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/651ABF9CBDBB11EF9858AB53762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.43.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:85:da:2d:08:9d:8f:74:58:09:37:38:1c:47:60:78:01:05:
5b:83:a3:b5:66:a5:76:39:f4:ad:8a:41:b0:f5:7a:63:3b:d1:
a6:0f:5d:19:f7:85:f6:39:40:2a:62:d2:4d:84:8d:a8:3b:8f:
07:c1:40:1c:23:46:ef:cc:28:40:da:f5:c4:98:a3:12:f6:68:
d2:73:30:ca:71:ff:86:6d:46:1e:17:68:8d:ee:ba:48:a8:81:
fc:8d:5c:d1:86:e0:c3:e2:d5:58:38:67:8e:dd:03:39:72:49:
28:00:53:22:97:dc:ed:eb:db:da:2f:a2:9c:23:a8:0f:f7:23:
dd:88:4a:62:1e:83:90:a1:76:d6:74:c3:fb:da:e3:d6:a7:aa:
1c:cf:20:ab:54:07:0e:ac:61:9b:17:f1:6d:60:f4:89:04:c0:
d7:ee:09:db:58:9d:03:aa:a5:fe:90:ce:a0:cf:f7:9f:c9:eb:
5f:4c:2a:1f:44:1f:74:70:aa:db:e1:bf:87:82:c8:b6:fd:9b:
a0:15:08:9f:45:ec:ee:3c:22:ad:d2:d0:1b:74:4a:31:1d:93:
49:e9:db:35:3c:cd:16:73:fb:e6:db:bb:95:5e:2f:21:d1:b2:
03:58:f7:56:ab:79:0a:9d:65:06:bb:db:b1:a0:79:b4:7f:64:
c7:de:c0:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:42:41 2025 by rpki-client