Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6B866CCAC3F911EFB484D950762E951A.roa
File: 6B866CCAC3F911EFB484D950762E951A.roa (raw, json)
Hash identifier: HRmJlYYifI80vXRy/5DEOsjc3NeLygvVnhTxIhWDXmU=
Subject key identifier: A7:4D:63:66:8E:F1:A9:60:BF:A9:41:96:26:57:E6:EC:30:F8:2C:E9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EF90
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6B866CCAC3F911EFB484D950762E951A.roa
Signing time: Fri 27 Dec 2024 02:22:29 +0000
ROA not before: Fri 27 Dec 2024 02:22:25 +0000
ROA not after: Sun 12 Dec 2027 02:22:25 +0000
asID: 17561
IP address blocks: 45.194.90.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61328 (0xef90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 27 02:22:25 2024 GMT
Not After : Dec 12 02:22:25 2027 GMT
Subject: CN=676e0f65-fd7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:cf:da:57:e3:c6:1a:7f:0b:de:8c:bc:85:b7:
5f:71:ed:ae:50:ae:75:86:76:14:f3:8d:9b:cd:2d:
72:41:e8:a3:6d:71:23:71:4a:51:29:ef:93:61:ea:
14:3a:17:09:98:5e:b0:75:4e:49:87:0f:f4:f9:0b:
89:7d:8d:10:70:bd:3d:0d:89:ec:94:cf:28:3a:41:
d7:37:59:c2:7c:5c:a6:ca:4d:19:fa:16:8d:b6:da:
66:64:0f:ad:a2:c2:55:88:d1:80:56:aa:cf:f2:13:
dd:57:35:b4:72:c7:d3:f5:bc:1b:db:f7:94:fc:b5:
e8:ee:aa:cf:be:86:0a:68:af:a1:c1:93:fe:ea:85:
df:9b:3e:a8:02:e1:5a:00:8d:3e:35:9f:4d:4d:29:
cd:85:90:05:63:44:06:ec:6e:44:22:4b:29:f5:d2:
15:60:d0:c6:f2:34:32:32:92:92:33:d9:39:3d:c3:
cd:85:3d:46:93:a4:77:4d:4b:31:d5:a8:5f:8b:a6:
f1:0a:c0:3b:95:fc:cc:41:c9:f6:57:22:9c:07:04:
e8:c5:d7:4a:f2:f8:fd:f4:19:b2:b9:38:c0:92:7d:
0a:a8:3a:ba:ca:f8:80:ee:9a:5f:66:05:dd:cb:da:
1a:43:d3:67:73:27:e5:81:58:30:b5:a5:e2:20:75:
92:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:4D:63:66:8E:F1:A9:60:BF:A9:41:96:26:57:E6:EC:30:F8:2C:E9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6B866CCAC3F911EFB484D950762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.90.0/24
Signature Algorithm: sha256WithRSAEncryption
25:f9:d3:35:90:28:79:2b:9d:78:c6:be:ab:68:a5:70:17:5a:
06:85:34:b5:b6:72:6b:2c:25:3a:c7:eb:98:fb:c8:b8:35:8b:
d5:1b:64:51:f0:95:18:6c:a8:44:15:b3:a3:ee:84:bf:e8:c9:
47:7b:a1:88:2e:94:1b:bf:46:16:fd:47:aa:fb:db:d0:9d:6a:
d1:61:e0:f8:45:4f:a3:e3:c6:af:3e:c4:8b:d2:be:bc:c1:c6:
99:6c:63:be:da:2c:d4:32:2d:a3:d2:4c:62:ac:40:22:88:fa:
e4:75:b0:1c:ec:ef:9d:2c:9c:e9:ac:be:04:f0:90:1c:30:82:
b2:fa:9a:90:25:08:91:cc:4f:b8:be:9b:b3:87:6f:e2:66:aa:
17:ad:bf:e3:15:b2:71:ae:64:4a:31:6c:63:42:8a:22:de:e5:
62:04:95:0a:ba:4c:39:79:67:6b:ce:b8:ec:c7:ef:cb:fb:3f:
f1:d7:19:ed:1a:43:b1:48:dd:ff:d7:9a:9a:43:3e:4f:18:eb:
75:da:5c:20:33:4c:6b:2d:c2:48:28:21:49:52:fc:a7:d8:b9:
4d:6e:ef:18:ba:ef:b0:19:88:33:67:1b:a6:99:af:1f:70:23:
94:b0:ff:21:75:aa:47:01:e0:9c:a7:fc:c2:09:ff:28:ba:1d:
05:ce:f3:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:52:51 2025 by rpki-client