Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D34DD168CDA411EFB592C14D762E951A.roa
File: D34DD168CDA411EFB592C14D762E951A.roa (raw, json)
Hash identifier: +CVuvOEYrdAcNYfpEr0vubBb1D+9IfaDTspB7MLWT/E=
Subject key identifier: FB:A9:4B:29:0F:57:58:CB:C1:99:CA:D3:0C:D9:91:87:48:A9:B4:36
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010117
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D34DD168CDA411EFB592C14D762E951A.roa
Signing time: Wed 08 Jan 2025 09:42:08 +0000
ROA not before: Wed 08 Jan 2025 09:42:04 +0000
ROA not after: Thu 23 Dec 2027 09:42:04 +0000
asID: 17561
IP address blocks: 45.202.206.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65815 (0x10117)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 8 09:42:04 2025 GMT
Not After : Dec 23 09:42:04 2027 GMT
Subject: CN=677e486f-f93a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:54:b1:40:85:80:08:d5:e5:15:5f:68:a7:f5:
3d:d6:21:36:6e:68:64:19:86:cf:f6:1b:1d:32:0e:
fc:6b:37:3f:59:bc:cc:9e:18:21:3b:20:0c:53:5f:
3d:df:26:e7:dd:4b:bb:16:e7:1a:7b:66:7a:cc:e1:
46:eb:54:db:8e:41:58:67:29:23:82:64:69:27:d2:
64:94:6c:8e:87:f1:d2:e3:53:08:7b:ec:d2:53:5c:
97:5b:86:2f:1e:b4:a2:f4:4b:08:5c:ac:18:d9:b1:
fd:bf:aa:f8:16:76:b3:52:a2:6f:6f:1b:3b:db:af:
3d:b2:93:07:d5:e8:23:3c:63:7b:6c:b4:44:d8:cd:
71:a2:a0:e9:6f:fa:17:eb:2c:e8:dc:15:b7:93:f9:
09:d7:65:41:b9:2f:e6:a7:5f:1e:96:63:80:fc:2a:
b0:04:7d:aa:70:3b:e7:9b:d1:66:4c:d8:6d:a3:ab:
36:b8:71:af:46:ef:f2:cf:80:d7:5b:66:bf:43:eb:
41:31:23:2c:df:12:e2:eb:f7:9f:53:1c:c9:60:6b:
ef:4e:b3:97:b7:c2:f5:32:e3:29:f5:8d:df:32:98:
16:7f:08:d6:0c:a2:dc:c4:59:12:1f:8b:a6:ba:8e:
e4:50:c3:c0:1a:5c:2f:48:7e:34:80:4c:78:53:67:
0f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:A9:4B:29:0F:57:58:CB:C1:99:CA:D3:0C:D9:91:87:48:A9:B4:36
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D34DD168CDA411EFB592C14D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.206.0/24
Signature Algorithm: sha256WithRSAEncryption
21:48:9c:e2:ed:fe:11:36:b7:22:e6:51:35:0b:5c:b7:4a:2f:
95:c1:6d:1b:a0:04:09:c5:e9:51:fa:e4:51:2e:3f:99:39:6b:
6f:be:17:81:53:e8:69:2d:36:cb:84:b5:83:23:e1:e1:1d:9d:
7c:17:f7:8b:fb:a2:ae:50:5a:5f:b3:36:0c:58:71:6f:9d:ea:
f3:0c:ca:d3:3b:12:de:8a:e6:44:52:d1:ca:ec:ff:eb:cc:65:
d8:cb:eb:c4:19:17:54:81:d3:e7:c7:07:38:61:4d:bb:5f:47:
69:37:7e:0b:fa:6f:12:f9:f9:7f:37:1f:b2:54:65:59:4e:29:
0f:1e:0d:24:ce:bc:3d:d6:e2:17:fa:c5:d8:84:ff:a6:bd:ce:
6c:58:be:6e:69:55:b3:8b:1b:57:4e:69:bf:75:20:2a:a0:06:
99:97:78:1c:51:3b:50:10:ab:e8:07:81:9a:39:8d:a3:65:84:
ea:e0:c1:2b:e2:5d:f8:c8:24:25:29:b1:5c:f6:9c:67:85:63:
a9:43:26:dc:0c:7e:37:07:d0:27:f4:51:25:61:3c:91:d3:7b:
93:27:30:93:4d:08:54:58:59:c7:ab:1a:88:05:5e:fc:0f:c1:
55:6d:9c:18:b0:57:8d:31:9e:84:f7:f7:07:d6:92:db:e0:2f:
56:95:69:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:54:58 2025 by rpki-client