Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BE856B52BDBD11EF85779D62762E951A.roa
File: BE856B52BDBD11EF85779D62762E951A.roa (raw, json)
Hash identifier: LzeVRWsCm6/jJl9Fn9YlBwVJaILIagbiF6QocuYsvuQ=
Subject key identifier: 81:8F:A3:F0:19:59:84:26:EC:8E:B0:F3:4A:DF:46:2A:F9:B8:72:F5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E553
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BE856B52BDBD11EF85779D62762E951A.roa
Signing time: Thu 19 Dec 2024 04:00:12 +0000
ROA not before: Thu 19 Dec 2024 04:00:08 +0000
ROA not after: Wed 10 Dec 2025 04:00:08 +0000
asID: 984
IP address blocks: 45.206.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58707 (0xe553)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 19 04:00:08 2024 GMT
Not After : Dec 10 04:00:08 2025 GMT
Subject: CN=67639a4b-e3b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:fa:e1:2e:f9:e0:31:dd:68:3b:c2:93:4c:6d:
00:27:9d:63:ca:8d:e8:8a:df:a6:86:2d:a7:4f:39:
ae:4d:2e:05:38:9b:51:f2:d1:d4:d8:7f:7d:31:1b:
e9:55:d5:25:e3:3a:c7:7e:65:ae:b8:8d:3a:5d:2b:
9d:6d:36:14:12:ba:41:c9:23:7c:d5:a1:2c:96:71:
1a:79:c1:98:0f:e2:78:20:91:21:c4:5f:4a:2e:0c:
23:de:d2:d7:b9:f7:94:4f:1c:3c:08:1b:99:6e:02:
39:b6:5d:b9:c9:5b:c1:03:82:70:0b:e7:63:1e:4a:
f4:59:8d:d8:d2:33:6b:1a:88:54:06:ad:99:a5:0f:
ae:ba:4f:44:24:72:fe:65:2c:bb:84:7b:cf:64:5e:
34:34:4c:9f:ff:20:0c:7d:89:e4:15:ea:bc:7f:5d:
47:4b:d9:89:d9:3b:87:ea:7e:d6:79:85:aa:bb:00:
57:c5:a5:7c:73:57:a4:82:7b:dc:ca:25:b4:f6:d4:
8d:c3:7e:13:4e:15:ed:30:2a:d4:99:77:2c:9e:2d:
97:ec:03:c6:bd:06:ec:86:47:8c:d4:17:cc:d8:f5:
52:95:0b:00:54:7f:a7:fc:c3:3a:50:a1:7e:a0:f5:
e3:32:9b:90:2e:ff:31:1d:fc:d2:1e:67:f4:b3:d8:
88:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:8F:A3:F0:19:59:84:26:EC:8E:B0:F3:4A:DF:46:2A:F9:B8:72:F5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BE856B52BDBD11EF85779D62762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.76.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:23:34:a6:81:15:8e:13:6a:6d:33:0a:de:ed:24:f1:f5:da:
b3:30:a9:12:eb:be:50:8d:e3:60:e2:40:b6:99:d5:22:c7:fa:
24:62:13:d3:9b:75:81:3d:e6:27:c1:b5:7a:8b:1e:58:15:31:
70:8b:ae:e4:29:17:77:54:42:30:a2:60:f9:13:90:d6:2a:d3:
1f:0a:be:c1:34:55:24:ef:a0:aa:26:da:58:94:ed:50:4e:58:
69:16:17:d3:db:13:80:38:8e:df:fc:5f:d2:c2:9f:f5:38:3b:
5a:9d:b7:b5:77:ce:ae:32:41:83:c1:8e:bb:d3:5a:c8:9d:15:
da:be:b7:78:31:58:a2:07:64:1b:38:a7:34:88:42:96:43:ad:
35:c7:34:47:b3:d2:83:e0:b0:55:73:11:af:68:75:22:b1:ac:
0b:54:7c:6a:d7:e1:bf:a3:62:46:f2:4f:48:fb:8b:3e:ba:37:
57:40:9c:90:c0:05:38:5a:2c:00:c6:f1:c6:65:8f:b5:f7:b0:
13:ff:89:80:c3:40:56:81:bc:35:4a:8f:9e:56:e8:9d:02:fa:
f7:db:e2:d2:6d:28:15:3e:ef:5e:40:37:37:c6:d7:a2:00:dc:
06:7d:61:16:47:a9:72:bd:86:ec:e5:09:b0:41:58:fe:d1:2b:
6b:98:51:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:55:59 2025 by rpki-client