Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B82BD088BE7C11EF8FC2F78C762E951A.roa
File: B82BD088BE7C11EF8FC2F78C762E951A.roa (raw, json)
Hash identifier: b8rX4SUaIrVIESUFWLqKmY5eFADaAib8/GofoMngm2Y=
Subject key identifier: 0D:84:72:6E:91:1B:85:8C:9C:2E:42:5D:0F:D2:BF:1A:85:D3:A8:8E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E670
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B82BD088BE7C11EF8FC2F78C762E951A.roa
Signing time: Fri 20 Dec 2024 02:47:15 +0000
ROA not before: Fri 20 Dec 2024 02:47:11 +0000
ROA not after: Wed 10 Dec 2025 02:47:11 +0000
asID: 984
IP address blocks: 45.206.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58992 (0xe670)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 20 02:47:11 2024 GMT
Not After : Dec 10 02:47:11 2025 GMT
Subject: CN=6764dab3-54ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:01:1e:0c:6a:24:06:a3:96:6a:9d:c0:56:98:
4c:30:9c:e0:fd:34:df:9b:4d:00:c0:41:b4:98:fd:
de:12:5d:ad:d1:e5:f4:2d:fa:19:02:97:bc:5f:37:
9f:86:c1:ad:5e:39:73:f2:be:8a:10:a8:93:e9:77:
bc:b7:41:e5:27:a8:3c:2f:5a:8e:11:46:3f:b2:f9:
64:07:b5:d0:08:a0:a0:0f:e7:58:5b:29:6d:9c:de:
71:a3:d4:d9:c9:3a:90:16:38:65:31:85:f8:17:04:
37:12:cc:52:b9:6a:26:ef:24:b4:7c:3e:31:fb:b5:
7a:3f:5d:30:be:00:65:75:76:51:d5:af:42:c2:a1:
15:07:06:96:c6:2e:93:67:3d:54:69:d7:58:20:48:
b2:76:2b:6c:8a:39:e8:bf:85:97:dd:95:dd:89:3c:
c8:44:1e:04:97:ee:80:69:1d:54:13:b7:c3:4e:e9:
39:79:88:d0:6f:dd:2d:bd:ba:9c:21:d5:f2:0e:30:
76:a9:28:c9:30:6a:49:48:29:23:dd:c5:d7:d9:a2:
ec:08:30:44:09:bf:6a:e6:5f:be:a3:d1:c8:c3:cc:
2e:6d:18:a9:90:85:00:84:d9:7a:f3:87:79:0b:14:
2b:f0:5d:43:cb:30:7d:c7:88:be:7e:1e:1a:e1:ef:
03:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:84:72:6E:91:1B:85:8C:9C:2E:42:5D:0F:D2:BF:1A:85:D3:A8:8E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B82BD088BE7C11EF8FC2F78C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.186.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:4b:24:65:bf:41:f1:9d:39:67:8a:92:fe:24:d9:65:4d:82:
db:ef:c5:39:c6:ec:88:a0:b0:43:6c:04:12:65:cb:04:09:e9:
a4:1e:b3:43:52:80:86:75:d7:71:59:65:79:af:dc:8e:3a:4f:
33:87:68:d3:28:ca:98:50:fb:65:14:2b:c6:68:ef:1d:e5:bf:
81:0e:2c:c0:6e:33:00:c1:65:a2:b8:06:36:be:33:d3:44:36:
7e:cc:1e:34:a8:73:1a:95:4e:3a:33:e5:c5:5a:9d:b0:be:68:
21:86:d1:3b:1f:6d:f2:ff:1d:13:41:bc:ad:d2:cd:fc:1e:5e:
34:43:0a:76:c8:3d:b7:b4:d4:cd:9d:e7:4d:8c:f9:99:5f:5b:
5f:f9:ba:c6:a8:e7:5d:39:e0:a0:7e:2e:31:d0:40:0d:32:18:
c4:16:7e:3c:36:9f:6c:96:de:f1:84:33:c3:32:46:8b:f6:b2:
e6:f1:c4:38:4b:c7:1f:6d:bc:90:d8:b7:c1:5f:8a:b1:14:80:
74:de:bf:37:2b:15:c2:d6:da:66:45:c3:2c:8d:da:a0:44:3c:
e6:35:d5:08:38:ee:f3:5c:98:fe:b5:c8:02:58:6b:e1:5a:b3:
86:58:ef:55:df:e3:12:f9:25:8c:d8:3e:f9:29:92:ec:52:85:
2a:5f:af:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:00:53 2025 by rpki-client