Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/75B99856BDB511EFB11FE2AA762E951A.roa
File: 75B99856BDB511EFB11FE2AA762E951A.roa (raw, json)
Hash identifier: SxqL6ahiVhFqeJibkcAwZRHqn3eBFcKwf3i+LiDZgpA=
Subject key identifier: 3B:24:45:28:95:0A:51:44:AC:17:D7:23:CE:C8:F7:37:7C:C4:31:15
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E4E9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/75B99856BDB511EFB11FE2AA762E951A.roa
Signing time: Thu 19 Dec 2024 03:00:53 +0000
ROA not before: Thu 19 Dec 2024 03:00:50 +0000
ROA not after: Wed 10 Dec 2025 03:00:50 +0000
asID: 984
IP address blocks: 45.204.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58601 (0xe4e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 19 03:00:50 2024 GMT
Not After : Dec 10 03:00:50 2025 GMT
Subject: CN=67638c65-c9ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:cd:b7:42:e4:ae:db:b5:4d:a1:ca:03:7a:62:
4d:23:b3:2e:5f:fa:7f:c5:23:fc:54:53:60:4b:5b:
ba:2d:cb:9c:8b:ed:75:c7:19:2c:78:c4:9b:7f:0b:
cf:6f:7b:bc:93:31:1b:ff:46:80:b1:3e:b8:8f:13:
d2:fc:bf:50:b1:aa:ab:ea:4d:1e:67:9b:9d:08:10:
3b:dc:dd:b3:fc:e3:be:43:a4:4b:eb:6c:f8:6d:95:
41:4a:49:ef:2d:f3:6b:2d:fd:59:33:5d:70:65:f7:
af:41:41:5f:aa:43:e6:bd:9b:03:6d:56:17:01:7c:
2d:64:2e:b2:65:84:33:d1:b3:0b:5c:b4:47:d8:43:
64:8a:81:74:4a:fb:0c:4c:23:22:be:7d:61:61:3a:
e9:1a:ed:64:f3:4a:1b:40:21:53:31:00:33:87:ae:
e9:fb:fb:72:5a:32:20:d5:60:97:07:ba:27:02:a8:
ca:9f:75:7f:8c:13:cb:30:4f:88:22:4c:7c:a8:96:
f7:07:e5:ba:0b:3d:a8:32:ec:da:d9:21:3a:29:ec:
ff:a4:d2:aa:5f:24:ae:17:3f:ef:3c:5c:71:24:44:
c0:0e:32:b6:c3:9d:0c:87:86:9a:91:3e:e7:ce:40:
62:1d:20:51:e5:2a:32:7a:a6:e5:0b:32:fd:33:84:
5e:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:24:45:28:95:0A:51:44:AC:17:D7:23:CE:C8:F7:37:7C:C4:31:15
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/75B99856BDB511EFB11FE2AA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.159.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:a7:51:27:11:ea:3d:5c:40:33:15:be:02:dc:f3:79:eb:dc:
82:14:b3:50:2a:c3:1a:47:39:8a:1d:d0:b9:c4:df:f1:cf:72:
e9:0d:65:47:e7:d1:0a:f7:49:d0:1c:2b:0f:97:90:b8:9d:00:
d3:56:a0:26:19:3d:a7:55:a9:36:df:e7:d9:3a:59:12:11:b8:
9d:5c:90:e1:81:18:bb:a7:55:c1:0c:63:a5:05:c5:f2:5e:b2:
50:86:8f:c1:f4:b1:7d:e8:03:05:68:39:0a:f7:7a:b2:a6:81:
a0:9f:bf:66:f3:66:40:8e:29:83:1b:05:18:f8:d3:64:d4:db:
38:48:83:c3:1d:ca:41:9f:e3:3d:3b:9c:39:23:d3:27:38:b2:
30:0e:74:a1:61:f1:0f:9c:a3:fc:3e:68:fb:4a:f1:13:82:c6:
fb:d3:01:dc:4a:3a:99:dd:c4:62:2e:ba:aa:dd:3d:49:72:f0:
fe:89:41:56:f2:6b:6b:52:ff:d0:a7:d8:ef:0b:a8:73:b6:dc:
70:d2:f8:8e:c4:14:f8:94:8d:bf:94:52:1c:d5:1e:3d:ca:ed:
2f:58:a1:e0:18:c7:33:06:1e:8e:5d:c2:dd:c6:e1:8e:e3:7a:
e7:2a:d5:34:eb:da:41:8a:db:8a:fc:30:4f:a8:16:44:37:46:
c3:19:56:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:49:35 2025 by rpki-client