Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/750E6784BE7711EFA09AA465762E951A.roa
File: 750E6784BE7711EFA09AA465762E951A.roa (raw, json)
Hash identifier: gMTN1bkMTEkCmiDnP0jtl3CB+vgy/UnkQx/hTXHRUTU=
Subject key identifier: AD:AA:53:23:F8:EB:6C:A4:F4:B9:F6:89:42:2F:06:C2:8D:EE:54:B4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E638
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/750E6784BE7711EFA09AA465762E951A.roa
Signing time: Fri 20 Dec 2024 02:09:35 +0000
ROA not before: Fri 20 Dec 2024 02:09:31 +0000
ROA not after: Wed 10 Dec 2025 02:09:31 +0000
asID: 984
IP address blocks: 45.206.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58936 (0xe638)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 20 02:09:31 2024 GMT
Not After : Dec 10 02:09:31 2025 GMT
Subject: CN=6764d1de-e9f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ea:a7:87:15:c7:57:1f:07:65:6a:50:82:19:
bd:fd:14:52:7f:f8:89:f8:8a:76:08:76:da:33:33:
80:1d:71:a4:b9:44:b5:13:af:0d:73:0c:f8:94:e5:
b3:79:a2:2b:18:2b:86:6b:ad:62:d0:fc:78:4e:d2:
06:77:7c:1b:0f:e8:7e:bd:8f:e1:2e:f5:7e:c7:c3:
cb:2e:fe:0e:ff:41:6a:a3:0c:4a:0d:54:ad:42:fb:
4d:7c:a3:fc:c6:67:a1:e2:ca:e0:cf:3d:bf:0d:40:
82:2b:90:c4:dc:61:45:d2:31:2b:56:09:91:35:bf:
21:38:81:f8:92:f8:5c:cf:29:7d:5f:33:55:d3:42:
b6:bf:d7:83:e4:6f:d5:4e:ee:90:fc:76:62:66:cd:
3f:1e:7b:2c:0d:53:61:ca:d6:9b:ac:9a:dd:d3:32:
8f:b3:9a:7b:fd:a5:70:bd:2a:fb:35:7a:9c:18:db:
ca:2e:ff:df:6a:4a:94:3c:dc:6a:70:c4:e0:bf:db:
53:66:ca:c8:d0:b4:09:78:ec:09:bf:1d:d9:11:76:
b6:5e:9d:65:45:cc:d2:cd:bf:b1:07:8d:4f:04:9a:
47:19:a5:a3:8f:73:e7:da:f9:4c:b7:ec:64:87:e8:
bc:fb:8a:e7:f6:e6:24:b8:a5:7a:5c:1a:cb:88:51:
40:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:AA:53:23:F8:EB:6C:A4:F4:B9:F6:89:42:2F:06:C2:8D:EE:54:B4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/750E6784BE7711EFA09AA465762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.156.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:a1:5c:e4:71:69:0f:68:be:c3:bb:7d:ec:bf:be:0a:ad:4b:
93:c9:d4:2c:30:6e:71:0c:75:35:f1:42:fc:a4:36:68:dd:90:
bb:5f:b2:a2:33:0a:6a:4b:ba:f0:2e:51:f8:03:05:73:7a:1e:
ac:27:72:d0:43:a3:59:3c:ce:26:37:f4:68:f6:06:2d:64:4a:
19:6e:f5:a7:05:3b:db:a3:92:00:69:4c:17:39:1e:26:fe:37:
7c:88:e2:07:31:62:42:81:22:46:a1:46:61:ac:89:bf:15:18:
e2:4a:54:90:09:57:81:ba:4c:41:30:77:c1:9b:6d:07:fc:cd:
24:87:63:9b:84:7c:d4:9d:98:0a:f5:f8:4d:42:79:33:2c:06:
c2:f7:40:84:bd:a4:67:d2:03:5a:c4:fe:59:00:8c:d1:4c:dd:
c8:f3:b3:15:a6:96:de:86:86:4f:02:68:aa:2b:78:ef:8a:62:
f8:4d:9b:fe:9b:cf:2f:3e:52:6b:c6:6d:bf:c3:9b:d0:9e:18:
23:91:22:4a:bd:77:40:2a:f0:0c:fb:c5:f3:75:40:f4:ed:7b:
6f:41:7d:39:81:6c:1a:2a:dc:1a:02:5b:2e:a4:80:62:db:9b:
ae:ed:12:48:15:cc:07:98:f6:53:4f:5a:10:43:35:35:35:c2:
20:1a:a7:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:39:03 2025 by rpki-client