Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/95480AD8BDC211EF93152880762E951A.roa
File: 95480AD8BDC211EF93152880762E951A.roa (raw, json)
Hash identifier: cWDElYjGGZKW/y1P7DLV/y2JMq+NZDp1NtMdDbpQiC4=
Subject key identifier: 84:CE:15:86:63:D0:6B:12:11:A6:22:26:FF:11:B9:E7:8A:C9:79:EF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E581
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/95480AD8BDC211EF93152880762E951A.roa
Signing time: Thu 19 Dec 2024 04:34:50 +0000
ROA not before: Thu 19 Dec 2024 04:34:46 +0000
ROA not after: Wed 10 Dec 2025 04:34:46 +0000
asID: 984
IP address blocks: 45.206.99.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58753 (0xe581)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 19 04:34:46 2024 GMT
Not After : Dec 10 04:34:46 2025 GMT
Subject: CN=6763a26a-69ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5e:01:1f:73:01:14:67:60:8c:a3:d2:1f:35:
91:01:d8:2c:77:37:88:7b:43:6c:4a:4e:d1:e4:87:
98:70:7a:de:ac:dd:28:f8:f7:15:0b:42:65:8a:06:
9a:e0:c8:a0:d9:2d:00:f2:7c:f4:56:ae:00:b2:67:
ec:9c:b7:82:f9:cb:1d:9c:61:45:8a:7c:b4:42:ba:
5a:42:14:95:cb:b0:a5:cf:ac:4b:d1:95:07:f1:3c:
6d:95:76:8d:1e:e0:4e:ae:fa:e2:42:83:54:6d:e0:
ed:08:52:dd:94:8a:da:03:e8:8c:ab:fe:82:2b:be:
04:fe:63:6d:5c:cf:b0:88:23:79:e9:b1:20:1b:7a:
05:4c:9e:14:72:74:4f:e3:ec:ed:15:32:83:98:32:
a4:b3:c7:9d:03:0d:c6:26:75:b8:68:77:4f:13:ea:
93:75:13:7a:cb:1f:ac:f4:cf:58:20:a2:e5:78:fa:
eb:fe:af:7a:70:37:74:74:8a:e9:7d:c9:b2:72:98:
9f:40:68:64:04:f3:9b:3f:54:6d:5d:2f:3b:68:b1:
6a:92:8d:1f:d1:cf:2b:8c:f3:d8:5d:a5:64:4f:7f:
13:ad:23:45:65:83:7f:c3:e6:0d:31:90:73:13:ff:
a7:27:d5:e1:1a:13:54:c6:b7:79:81:ef:95:f5:9b:
8d:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:CE:15:86:63:D0:6B:12:11:A6:22:26:FF:11:B9:E7:8A:C9:79:EF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/95480AD8BDC211EF93152880762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.99.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:99:79:ca:e0:c6:d8:a8:c1:42:7d:89:64:c4:9c:4e:48:52:
92:a6:5a:4d:3f:dd:b6:24:9a:f2:9f:46:33:6d:d9:ed:8e:2e:
ff:6e:5f:e8:4f:3f:ff:92:11:8c:6c:7c:08:02:71:50:b5:64:
f3:1b:1e:b2:c0:13:81:36:ad:96:07:3e:82:03:4f:22:c6:5d:
4d:65:87:16:60:62:4b:0e:5b:f2:70:b2:25:b5:35:d0:07:56:
c6:2a:8f:30:a6:06:57:05:d0:7c:00:92:77:4c:60:94:f2:b0:
e1:9f:80:7a:d0:0b:2b:22:46:b4:d7:14:c5:80:fd:16:1c:30:
6a:bd:c0:8f:c8:39:44:7d:2e:0f:f7:3a:ee:3d:3c:91:d6:c2:
ca:15:7c:3e:36:63:46:8a:8e:3b:d5:33:6e:80:21:42:7d:d4:
ec:e4:25:1b:c4:82:e1:9d:86:65:57:82:b4:63:86:f4:d4:0e:
c6:a4:63:82:ac:2d:b1:14:14:b2:a9:98:cd:12:4f:5b:f3:51:
e9:bb:f7:33:af:31:90:b8:0d:43:7c:b3:bd:98:ed:06:40:98:
18:22:12:20:c9:c2:35:97:93:f4:ac:dc:ce:e3:7a:89:16:53:
e0:65:8c:e9:d5:08:47:de:af:06:4e:fb:7e:75:81:c0:66:bb:
e8:93:1f:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:59:10 2025 by rpki-client