Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6DC5BA2EAD5911EF90878BAC762E951A.roa
File: 6DC5BA2EAD5911EF90878BAC762E951A.roa (raw, json)
Hash identifier: 3IlqgJKK6vk4xbbvJox+GzBK431D4xk475Fv4i+bTys=
Subject key identifier: 7E:48:A6:04:99:1F:35:69:B4:06:9D:5A:66:C8:B6:06:43:19:FA:A4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: DC41
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6DC5BA2EAD5911EF90878BAC762E951A.roa
Signing time: Thu 28 Nov 2024 07:21:48 +0000
ROA not before: Thu 28 Nov 2024 07:21:44 +0000
ROA not after: Tue 11 Feb 2025 07:21:44 +0000
asID: 22773
IP address blocks: 45.196.48.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56385 (0xdc41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Nov 28 07:21:44 2024 GMT
Not After : Feb 11 07:21:44 2025 GMT
Subject: CN=67481a0c-fd9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:bf:1d:bc:c9:fa:cf:78:aa:7e:77:12:b4:de:
a9:2f:ca:f2:13:30:cc:d2:96:c4:62:8b:c0:35:65:
75:43:81:ec:4c:51:83:ab:ad:72:49:b4:34:81:65:
81:98:96:f0:9d:bd:3a:5f:49:47:92:35:48:08:99:
90:cc:d4:b6:dc:0f:73:56:66:52:bf:b9:fd:b8:32:
c2:25:9a:db:56:2b:7b:ab:4b:36:43:4d:a3:a9:b0:
40:ae:92:89:60:fc:fb:ab:d1:1b:bf:ac:ef:de:94:
12:e9:01:b4:46:8c:97:0c:58:58:8d:a3:bf:c4:ee:
08:27:4f:20:fa:6c:39:e6:97:6f:27:93:37:0f:74:
76:85:27:f0:e1:1f:52:06:0b:36:30:9f:55:20:e8:
87:ae:db:34:81:c1:f4:33:13:3b:51:1d:65:f4:50:
47:67:03:eb:c6:74:77:5b:77:3f:6f:d1:db:0b:c5:
8a:01:37:83:41:cd:5b:d0:b9:de:82:d8:4a:4b:c7:
c8:63:28:ff:06:6c:fd:b7:86:f3:c9:7f:ef:85:07:
80:f0:d7:4b:c8:8b:fb:03:ca:f8:61:dc:b1:b7:06:
9b:c3:25:39:a6:0e:fc:13:91:c6:9e:42:67:8a:f3:
f9:1b:3d:fb:9e:30:83:71:19:e8:ac:4f:06:45:f5:
e5:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:48:A6:04:99:1F:35:69:B4:06:9D:5A:66:C8:B6:06:43:19:FA:A4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6DC5BA2EAD5911EF90878BAC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.48.0/22
Signature Algorithm: sha256WithRSAEncryption
68:58:28:cf:1a:67:12:5f:41:81:1a:4d:43:2b:83:34:9d:50:
78:b1:48:ec:42:ee:2c:19:65:17:2d:47:46:60:fe:2a:af:d9:
20:60:5c:79:af:d1:a0:cd:16:b3:8c:5a:76:39:73:9f:14:45:
ab:25:e1:78:2c:82:9c:99:6f:81:19:4f:c7:46:59:b6:5e:9b:
1f:8b:58:9d:a0:c1:06:9e:41:fc:62:7d:b4:91:5b:9f:a3:23:
3e:01:e0:9e:3b:53:ed:f7:1c:6e:a1:6a:94:86:f6:91:52:38:
48:d3:29:34:15:06:92:a7:5a:43:d7:88:f9:b6:8e:f9:64:eb:
c9:d7:b3:5f:6b:58:9b:b6:3a:da:27:55:1e:a7:e8:85:77:0a:
52:df:b3:f2:e4:c2:61:40:bf:f6:2a:e7:3d:d7:ac:33:c3:5b:
26:5b:09:9a:4d:52:5a:d9:60:f9:66:51:c2:b0:a9:37:11:25:
a0:de:ec:90:f4:f0:44:e1:bf:50:a1:5d:8b:21:e0:44:3d:4e:
d9:fa:56:93:0b:ff:7a:c8:4d:88:28:86:fe:01:e1:63:88:61:
00:2f:6e:05:de:d8:e3:0f:36:36:86:68:ee:10:e6:26:99:9a:
41:bb:c9:2b:87:7d:13:ff:5c:3a:e4:d6:6f:99:5e:cd:3c:69:
ad:6a:a7:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:49:57 2025 by rpki-client