Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/68E18E4CBE7B11EF809DEA82762E951A.roa
File: 68E18E4CBE7B11EF809DEA82762E951A.roa (raw, json)
Hash identifier: RMgsGKhipeM9PzzSSQQiHIFitYGKx3KrcOJJtmLWn+8=
Subject key identifier: 5B:E2:9D:01:E6:66:DA:47:52:AC:41:D8:A7:E9:58:96:21:31:25:E2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E660
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/68E18E4CBE7B11EF809DEA82762E951A.roa
Signing time: Fri 20 Dec 2024 02:37:52 +0000
ROA not before: Fri 20 Dec 2024 02:37:49 +0000
ROA not after: Wed 10 Dec 2025 02:37:49 +0000
asID: 984
IP address blocks: 45.206.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58976 (0xe660)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 20 02:37:49 2024 GMT
Not After : Dec 10 02:37:49 2025 GMT
Subject: CN=6764d880-467f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:82:31:6a:8d:5d:3c:4a:55:d2:42:4c:0c:bd:
f0:54:85:63:11:de:66:b7:e7:5a:13:59:59:01:e8:
73:56:d8:2f:a7:4f:41:d4:28:8e:67:1c:8b:7d:04:
b9:00:9a:98:65:5a:59:90:71:7b:09:f8:33:90:e6:
47:3d:8d:00:97:89:b2:fd:b1:a4:b3:7a:62:0a:45:
ba:cf:d7:62:8f:7c:a3:40:ae:b8:1b:f3:67:5b:08:
e7:5e:5c:1c:a0:95:d2:f1:86:b1:ac:fd:4e:ff:d0:
cc:4e:7b:15:13:ac:45:62:59:2d:0e:c0:00:e8:9f:
30:28:85:80:9a:ab:cd:40:83:cc:09:97:b4:ac:dd:
c3:d5:57:68:f8:bc:e5:90:17:34:ec:61:d0:4f:82:
42:61:88:ce:33:43:72:74:d6:d2:17:46:d2:a9:9f:
44:84:73:34:b2:7c:ee:18:c2:e6:76:bd:26:9f:5b:
0c:32:01:6a:23:06:2e:d7:07:cb:22:17:4f:77:58:
5d:c4:69:ba:e6:57:18:ca:01:39:04:59:33:c9:b7:
7a:f1:6e:04:a6:7b:8a:9b:e2:2c:d2:12:2c:d3:0c:
69:f5:c7:97:e1:f6:16:f8:3a:52:3f:26:d8:7c:58:
32:a3:e5:c5:9f:57:9a:70:a7:42:d6:25:41:15:b7:
c9:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:E2:9D:01:E6:66:DA:47:52:AC:41:D8:A7:E9:58:96:21:31:25:E2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/68E18E4CBE7B11EF809DEA82762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.178.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:fc:1d:bb:b2:88:ab:b1:40:dd:f0:95:be:29:ed:db:db:18:
d1:e0:71:dd:a4:d4:d9:0d:a3:14:1d:09:10:ce:1b:e8:d0:3a:
92:fc:29:49:b0:08:74:00:1d:9f:51:53:aa:bd:79:43:aa:79:
7d:33:b6:ac:fe:54:f5:ea:9a:40:2f:be:7e:0d:bb:60:c3:f9:
ad:1d:41:55:6b:12:a8:7f:c3:72:2a:fc:b1:29:c8:82:d2:91:
1c:32:b6:51:3f:65:42:4e:6b:5e:03:3d:3f:c1:e0:81:55:8f:
bd:0e:8f:b9:a3:dc:ec:18:23:ba:53:cd:c2:a2:02:19:77:8f:
05:19:b9:90:27:5d:53:92:86:1b:0c:0b:5f:5a:33:90:92:f3:
86:77:5d:55:99:65:0d:08:eb:da:75:f0:72:ab:2e:00:f5:e6:
9b:c4:0a:47:de:8c:53:8e:ce:eb:90:1d:32:da:de:e9:8a:8b:
fc:73:45:81:bc:d6:10:69:ce:d7:46:c9:cc:e0:71:b8:64:19:
ae:7e:3e:cf:a7:8a:17:5d:f6:77:b1:ed:4c:10:22:df:6c:4e:
c1:b6:7d:71:89:df:23:20:57:20:97:58:2e:0d:a2:7f:91:d3:
bc:73:2e:77:00:6e:01:d7:cc:cc:bc:7b:9a:5f:cc:9a:71:49:
91:0c:85:25
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAOZgMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMjIwMDIzNzQ5WhcNMjUxMjEwMDIzNzQ5WjAYMRYw
FAYDVQQDEw02NzY0ZDg4MC00NjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqIIxao1dPEpV0kJMDL3wVIVjEd5mt+daE1lZAehzVtgvp09B1CiOZxyL
fQS5AJqYZVpZkHF7CfgzkOZHPY0Al4my/bGks3piCkW6z9dij3yjQK64G/NnWwjn
XlwcoJXS8YaxrP1O/9DMTnsVE6xFYlktDsAA6J8wKIWAmqvNQIPMCZe0rN3D1Vdo
+LzlkBc07GHQT4JCYYjOM0NydNbSF0bSqZ9EhHM0snzuGMLmdr0mn1sMMgFqIwYu
1wfLIhdPd1hdxGm65lcYygE5BFkzybd68W4EpnuKm+Is0hIs0wxp9ceX4fYW+DpS
PybYfFgyo+XFn1eacKdC1iVBFbfJoQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFFvi
nQHmZtpHUqxB2KfpWJYhMSXiMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC82OEUxOEU0Q0JFN0IxMUVGODA5REVBODI3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALc6yMA0GCSqGSIb3DQEBCwUA
A4IBAQCa/B27soirsUDd8JW+Ke3b2xjR4HHdpNTZDaMUHQkQzhvo0DqS/ClJsAh0
AB2fUVOqvXlDqnl9M7as/lT16ppAL75+Dbtgw/mtHUFVaxKof8NyKvyxKciC0pEc
MrZRP2VCTmteAz0/weCBVY+9Do+5o9zsGCO6U83CogIZd48FGbmQJ11TkoYbDAtf
WjOQkvOGd11VmWUNCOvadfByqy4A9eabxApH3oxTjs7rkB0y2t7piov8c0WBvNYQ
ac7XRsnM4HG4ZBmufj7Pp4oXXfZ3se1MECLfbE7Btn1xid8jIFcgl1guDaJ/kdO8
cy53AG4B18zMvHuaX8yacUmRDIUl
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:39:04 2025 by rpki-client