Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A521CB2EBE7611EFA68A6160762E951A.roa
File: A521CB2EBE7611EFA68A6160762E951A.roa (raw, json)
Hash identifier: Z/WcRz2W1P7fkAt/d76NVg7ZkH+aqhsFPr8vSG/5rhs=
Subject key identifier: 29:B5:C5:37:ED:29:98:FC:65:75:01:AA:F0:84:E0:9F:58:90:80:46
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E62E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A521CB2EBE7611EFA68A6160762E951A.roa
Signing time: Fri 20 Dec 2024 02:03:46 +0000
ROA not before: Fri 20 Dec 2024 02:03:42 +0000
ROA not after: Wed 10 Dec 2025 02:03:42 +0000
asID: 984
IP address blocks: 45.206.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58926 (0xe62e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 20 02:03:42 2024 GMT
Not After : Dec 10 02:03:42 2025 GMT
Subject: CN=6764d082-770e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:e6:fd:31:27:00:bf:db:f2:7f:bf:16:ef:dc:
62:06:a7:51:4f:9c:e8:81:e4:95:fe:45:0c:41:aa:
70:72:87:5b:88:78:f4:20:19:ce:da:bb:0f:a9:83:
ef:24:53:42:9d:a6:76:4e:27:77:49:92:40:af:d6:
d6:a4:db:b1:db:5c:df:a3:bc:7c:d7:61:92:c0:d2:
23:f3:f8:65:9f:34:19:0f:8d:40:87:b5:2e:ae:6a:
f0:4a:fd:0e:ce:e7:68:c5:ed:5b:31:61:1a:d9:d7:
a8:77:30:b7:5e:2a:a1:7e:f3:d1:33:97:30:f6:69:
22:dd:66:35:ca:2b:39:b3:15:51:4c:53:6e:c2:3e:
25:32:29:3e:f0:01:6c:28:ee:79:f8:09:9d:80:c7:
e6:f4:f9:56:ac:36:00:5c:4f:91:51:bc:17:3d:d5:
34:65:e4:5f:5f:ee:a9:bb:d3:0b:91:bd:40:04:4c:
ee:17:f1:9b:96:2c:15:9f:8b:f9:a9:d5:14:a4:03:
38:a9:9a:c2:43:ee:70:aa:02:fe:0f:44:3c:db:ac:
f0:ea:37:5f:cc:af:cb:80:ec:bb:ec:ce:b9:21:ee:
1c:3b:f6:b3:ee:9f:d9:db:c8:a2:8b:37:0a:ef:b1:
dd:7c:72:f0:94:80:b6:c3:95:ae:42:63:99:e8:42:
89:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:B5:C5:37:ED:29:98:FC:65:75:01:AA:F0:84:E0:9F:58:90:80:46
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A521CB2EBE7611EFA68A6160762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.151.0/24
Signature Algorithm: sha256WithRSAEncryption
39:50:f3:2a:1d:36:87:89:8b:59:bb:50:6b:8d:19:05:6e:96:
74:3f:74:91:ed:23:78:04:ca:b3:90:4b:5f:9f:f4:2e:9d:a0:
d6:95:af:6c:49:4b:78:5b:ed:7b:fd:19:6a:f5:53:d7:e6:29:
0c:73:b1:a5:75:35:a4:1e:48:1f:83:92:23:e6:9c:a0:4f:f1:
8a:49:11:73:c2:6f:1f:b6:eb:8a:19:b6:bc:61:83:c6:af:1a:
df:e7:a5:3e:39:76:51:3b:aa:bb:b5:84:98:c0:35:e2:eb:53:
82:fd:7e:6c:44:4b:fa:c6:bf:8b:fd:12:e0:2b:eb:7b:9d:fe:
79:dd:03:34:0b:7f:ab:80:06:52:88:2d:e0:14:9f:82:c0:9a:
25:bf:a0:a7:ec:ed:eb:8b:81:11:3c:4c:5c:42:a5:b2:a9:f4:
ad:bc:4b:a9:e5:81:a1:9b:7a:73:69:31:a1:27:51:c3:be:14:
76:9c:79:cd:0e:b9:f0:2d:68:56:36:c1:e3:e5:48:98:4b:5e:
00:8a:4e:db:6e:eb:fa:11:6c:13:84:f1:f7:7a:21:b1:95:f3:
4f:b3:6a:d4:0d:6b:87:a6:c9:4e:86:5d:3a:7b:bb:60:1b:26:
bb:97:42:c2:c6:d3:0b:74:33:b1:2d:90:a7:ce:0c:da:ad:16:
61:d7:61:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:00:52 2025 by rpki-client