Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/77CB465CBE7411EF9B290E51762E951A.roa
File: 77CB465CBE7411EF9B290E51762E951A.roa (raw, json)
Hash identifier: ELwlhGflChXGOUdA4TvaOpCtkiylwL2bogEzIly6yEM=
Subject key identifier: 46:F0:17:EA:DF:AF:0E:01:DB:A8:16:08:56:24:AF:00:68:11:4B:66
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E614
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/77CB465CBE7411EF9B290E51762E951A.roa
Signing time: Fri 20 Dec 2024 01:48:11 +0000
ROA not before: Fri 20 Dec 2024 01:48:07 +0000
ROA not after: Wed 10 Dec 2025 01:48:07 +0000
asID: 984
IP address blocks: 45.206.137.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58900 (0xe614)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 20 01:48:07 2024 GMT
Not After : Dec 10 01:48:07 2025 GMT
Subject: CN=6764ccdb-2463
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ac:fa:76:b7:30:d2:01:64:73:93:f0:ce:63:
a8:5c:64:de:a4:aa:33:e2:01:db:ca:34:e7:6b:c7:
fb:3b:d6:22:29:d6:c5:da:1c:5d:53:31:8e:f1:73:
3e:47:58:15:a9:e3:62:6b:9d:d0:44:e7:41:5c:50:
a9:92:70:29:64:74:d4:fc:64:1c:bc:10:6f:d5:51:
6e:80:94:4f:88:18:1b:96:77:ab:ed:78:ad:c4:1b:
be:8f:d3:cb:ba:2d:85:b4:da:2c:8c:af:37:fd:f5:
bc:29:39:0f:9c:22:bb:dc:e2:ed:1e:f7:56:e9:df:
aa:25:33:5c:36:e4:d7:9b:4e:3d:83:43:3b:dd:d8:
f7:8c:fe:b0:d3:c7:32:09:c1:83:22:7b:6b:18:ed:
92:00:0e:ba:e1:6d:b8:d5:ed:9e:7a:13:bf:8a:d2:
19:a4:c1:42:08:8a:5c:c9:8e:c5:2a:5c:59:0e:0c:
9b:09:a3:be:1a:07:f9:c9:63:f8:d7:7d:f8:82:56:
20:7f:98:96:77:ad:4c:c4:70:85:ca:0c:a7:40:02:
0b:65:bb:99:c6:db:78:95:cb:b5:85:2d:18:63:3b:
59:d7:4b:09:fd:ec:9e:d7:e8:5b:fb:f2:e8:60:90:
c1:98:21:6d:af:b1:44:89:db:1a:dd:59:2f:0e:7e:
3a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:F0:17:EA:DF:AF:0E:01:DB:A8:16:08:56:24:AF:00:68:11:4B:66
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/77CB465CBE7411EF9B290E51762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.137.0/24
Signature Algorithm: sha256WithRSAEncryption
72:7e:a8:8b:bb:52:80:08:04:e9:a1:43:77:03:92:48:20:fc:
8e:97:9f:33:11:5f:9e:93:ec:c5:e9:b1:51:d3:96:a8:8b:f0:
c9:9a:98:b3:30:88:d0:0b:e4:df:26:bc:2a:51:d2:b9:d4:fd:
46:30:b7:3a:c7:c6:c9:7e:e4:b7:2d:41:dc:50:82:f4:5a:81:
69:30:7f:a2:18:67:7a:02:2b:36:dc:62:35:bf:34:c9:66:61:
af:63:9d:7b:0c:0f:61:cc:fc:e3:9d:67:0d:f8:07:ed:7a:bf:
74:7c:e3:31:86:12:ae:af:b1:64:e4:df:f3:ca:74:d4:f0:8c:
80:cf:ba:8c:b7:4e:ed:6d:5e:e0:1d:b2:d7:0c:85:8a:63:17:
86:3e:f4:d8:40:31:9d:8e:ca:a2:24:51:38:90:88:10:89:b1:
34:25:17:c5:11:0e:c7:aa:94:04:b1:da:78:b6:bb:62:43:c8:
d5:01:10:93:5a:f8:77:15:9e:65:21:3c:f2:87:6c:15:18:d3:
a1:d2:c4:4f:12:43:77:ad:4c:c4:a7:a5:f6:e2:69:5c:29:66:
83:f8:ff:74:d8:84:44:5c:8e:36:b7:ba:7d:aa:3c:e2:9e:be:
c4:39:06:03:61:91:fd:0f:82:5b:b9:af:ba:50:83:9f:45:f2:
69:4e:2c:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:54:17 2025 by rpki-client