Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/72A13B9ABDEE11EF96FC568E762E951A.roa
File: 72A13B9ABDEE11EF96FC568E762E951A.roa (raw, json)
Hash identifier: 6AgBKFfd7VCxG9UqU8LR9WpL2khGdtc0W8ZovPBu/WM=
Subject key identifier: 01:70:6E:0F:05:6F:73:06:45:11:1B:42:79:CE:16:2A:EC:CB:95:20
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E5DF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/72A13B9ABDEE11EF96FC568E762E951A.roa
Signing time: Thu 19 Dec 2024 09:48:49 +0000
ROA not before: Thu 19 Dec 2024 09:48:46 +0000
ROA not after: Wed 10 Dec 2025 09:48:46 +0000
asID: 984
IP address blocks: 45.206.112.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58847 (0xe5df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 19 09:48:46 2024 GMT
Not After : Dec 10 09:48:46 2025 GMT
Subject: CN=6763ec01-9053
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ee:72:05:46:6d:a1:d6:a4:8c:a6:55:ff:6e:
a1:ea:60:84:f3:13:e5:06:b4:b1:3e:23:22:0c:ee:
56:05:b2:9e:5c:03:4b:0e:fa:b4:57:2f:2b:46:f1:
9c:6b:2f:5c:b5:53:7b:c4:31:d3:20:67:89:37:93:
e9:c6:bd:51:85:cf:d3:1e:0c:4b:0c:90:fa:76:37:
cf:f5:7d:fd:16:65:e3:f0:27:ff:cf:f2:82:96:23:
35:5b:39:ea:04:46:05:8c:a8:8f:fc:b4:55:de:09:
c4:59:4d:21:cc:45:31:76:47:ce:da:22:00:5f:2a:
64:a3:4f:30:57:60:27:aa:5b:37:a1:39:46:d3:a0:
2a:fb:fb:54:ab:16:72:f4:75:1c:2a:08:0a:65:83:
4d:3d:64:80:85:0a:5f:b3:85:c8:14:86:57:2a:4e:
48:bf:d8:40:a6:dd:40:85:26:7e:4c:53:cd:48:9f:
ff:63:e2:f6:29:59:a9:ab:93:ea:26:89:d8:99:52:
b0:0d:c6:4d:4b:f3:1f:53:5e:9d:e7:45:bb:7a:f5:
d3:73:32:7d:f8:4e:90:bd:56:0f:1c:de:36:78:98:
00:7a:68:ed:96:94:5c:28:a6:e0:10:03:8d:4b:b0:
65:2b:f2:8f:0b:6f:32:f4:bb:b1:f0:be:8b:f2:aa:
fa:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:70:6E:0F:05:6F:73:06:45:11:1B:42:79:CE:16:2A:EC:CB:95:20
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/72A13B9ABDEE11EF96FC568E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.112.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:b3:ef:d6:33:20:02:7c:e4:6f:fe:c3:43:0b:51:6d:d7:9a:
a2:7a:c9:1e:6f:50:b5:bf:db:56:d0:d9:e7:c8:b8:0d:89:d0:
20:8a:68:b5:98:48:17:f2:28:8c:79:50:45:53:7c:78:b9:2f:
c9:65:34:63:9c:d0:0f:02:17:36:a5:4a:84:3a:d9:5e:77:bc:
b6:79:3e:1d:16:53:68:07:22:68:13:80:00:dc:03:4f:b2:a5:
f1:ec:fa:9d:52:16:38:1a:f2:c2:cb:0e:90:03:67:2c:c0:97:
5b:8a:ee:e7:f9:67:25:5a:a3:52:23:9e:3e:65:e7:33:e8:8d:
f1:82:8e:f7:78:f5:0d:54:d3:e1:85:81:3c:7a:c5:ac:39:ac:
67:8b:43:c7:49:b2:46:4f:08:56:29:9d:a4:80:4d:b1:14:27:
59:ee:d9:04:f9:a8:1f:71:cd:d0:9c:8f:72:3b:31:bf:d7:e7:
52:a3:cd:ed:a2:dd:cf:cc:8a:75:59:b7:db:c1:85:60:06:8e:
5b:bc:b1:58:74:c9:c1:dc:74:f5:50:35:5c:6f:ef:47:54:41:
7a:30:5c:68:3e:85:f5:8c:69:d7:e4:85:4a:30:01:b8:99:e0:
da:53:2b:90:bd:1c:e3:89:a0:5a:e3:b3:5b:98:c6:52:fe:a7:
cf:24:f7:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:01:27 2025 by rpki-client