Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9E239894CAE111EF85631BAC762E951A.roa
File: 9E239894CAE111EF85631BAC762E951A.roa (raw, json)
Hash identifier: WA9QvST2Sj6VSfQPRZGxpwC+dxlc/sicwjTc929GWaw=
Subject key identifier: 7F:65:2C:0D:64:C7:E7:8B:8A:BC:E5:46:FB:81:1D:98:47:B4:0E:28
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F7B6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9E239894CAE111EF85631BAC762E951A.roa
Signing time: Sat 04 Jan 2025 21:19:44 +0000
ROA not before: Sun 05 Jan 2025 21:19:40 +0000
ROA not after: Thu 15 Jan 2026 21:19:40 +0000
asID: 43260
IP address blocks: 45.195.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63414 (0xf7b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 5 21:19:40 2025 GMT
Not After : Jan 15 21:19:40 2026 GMT
Subject: CN=6779a5f0-bfd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:71:de:bd:9f:c3:5d:19:2d:f4:32:74:58:60:
f0:c0:f4:57:91:1c:2f:f8:24:b0:88:5e:2d:3b:32:
77:01:04:a5:49:9d:c9:ad:a5:c3:8a:44:ff:d5:c1:
ff:d5:8f:c9:5c:f0:c3:41:d6:76:f1:8d:5f:be:07:
62:9d:b9:55:20:7a:7d:33:b0:b1:3f:bf:e6:d0:f0:
af:b3:0e:7d:6c:f4:9d:58:93:f2:3f:b8:81:f3:26:
dc:1c:ca:e3:a7:97:01:c2:05:a2:0b:9f:12:30:05:
80:69:1b:74:b6:eb:5a:38:11:04:58:df:ba:00:85:
f4:ff:d6:cb:30:c8:72:c5:aa:cc:e5:02:33:2d:1a:
a7:86:f0:8f:3e:92:e6:00:50:d1:ff:7d:8a:4e:15:
9d:3a:71:15:8f:e9:68:1b:b1:8c:1d:f7:fd:e3:25:
dc:70:bb:13:1a:31:1a:b9:95:77:b5:46:f8:68:2e:
cb:89:80:95:b3:f8:07:ad:4a:74:94:3a:ea:e5:c8:
45:ae:2c:2a:2b:ea:08:f8:18:94:22:ca:c3:d9:11:
0b:9c:87:b0:97:41:f4:07:b0:f4:a8:44:91:21:42:
ac:bd:aa:e1:b4:31:99:9a:78:4e:4f:48:19:57:c2:
98:66:fd:14:a3:ac:4b:94:7c:c9:8d:0d:97:59:f9:
87:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:65:2C:0D:64:C7:E7:8B:8A:BC:E5:46:FB:81:1D:98:47:B4:0E:28
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9E239894CAE111EF85631BAC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.75.0/24
Signature Algorithm: sha256WithRSAEncryption
46:f7:29:b5:4f:57:1e:10:72:51:11:f3:16:1c:71:54:24:88:
cb:85:81:e9:94:a9:22:4a:56:b5:47:9c:cd:3e:17:0d:7f:21:
d7:2b:02:af:82:87:66:95:94:65:91:e3:ae:65:c4:29:66:3b:
45:64:cf:9d:ac:84:eb:fa:e6:86:83:b5:ed:a1:bb:a5:ce:f3:
2a:89:bb:d6:c9:89:65:f8:56:00:14:78:8b:ba:d1:9b:4c:26:
4c:52:81:2a:53:89:a3:15:8d:b7:9f:01:c7:7b:50:7a:3f:0b:
e6:c1:e5:79:e2:11:e7:d2:76:a7:75:b9:4d:81:eb:e4:87:b2:
bd:5e:0a:f5:93:31:d9:56:7c:d7:09:16:28:46:f9:47:b3:17:
57:a4:22:26:24:30:1b:c2:2c:d7:09:05:62:2e:cc:23:bd:48:
b7:9e:47:92:67:06:93:4a:e2:0c:3a:39:7f:7f:4f:ba:f5:89:
ff:6a:2c:2a:a3:86:c8:58:06:c6:41:e9:0a:38:17:4d:23:d6:
e3:93:1f:31:0f:ab:59:e1:3c:b4:fe:7a:73:9b:f8:ad:73:36:
dd:c4:4e:e3:d0:38:39:45:90:12:3f:2c:77:e1:34:cc:b3:3d:
13:f2:11:b7:9a:c4:12:47:2a:bd:00:60:84:b1:a4:a3:ca:f2:
51:b9:a2:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:38:20 2025 by rpki-client