Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D3A2ADBEC39A11EFBDEB4F71762E951A.roa
File: D3A2ADBEC39A11EFBDEB4F71762E951A.roa (raw, json)
Hash identifier: LAgBYUuah2EbKHmBg0/evw0Cyl0h4ilFv6A7TYfSIvs=
Subject key identifier: CA:F2:E9:D7:1E:AD:8E:46:EF:C8:7B:BD:14:5B:78:92:AA:43:17:D2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: ED55
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D3A2ADBEC39A11EFBDEB4F71762E951A.roa
Signing time: Thu 26 Dec 2024 15:05:22 +0000
ROA not before: Thu 26 Dec 2024 15:05:18 +0000
ROA not after: Fri 12 Dec 2025 15:05:18 +0000
asID: 984
IP address blocks: 45.197.155.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60757 (0xed55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 15:05:18 2024 GMT
Not After : Dec 12 15:05:18 2025 GMT
Subject: CN=676d70b1-a2f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a7:80:ea:5f:45:50:b9:40:e2:a8:a5:da:43:
f7:56:1c:e1:3a:0e:45:8f:9d:29:58:62:fb:ba:62:
18:a9:20:6f:2b:b8:19:e1:28:46:59:c7:fb:35:c4:
48:36:a9:8b:4a:28:c7:4e:10:18:bf:fe:10:66:4f:
15:01:61:78:8c:0e:20:39:72:fa:97:72:fa:fc:8d:
42:49:04:a0:1a:a2:9d:8e:f9:d9:46:10:3a:34:d0:
08:3e:d6:49:d5:84:19:d4:97:c8:f1:88:20:b8:57:
c4:3a:ce:bb:7e:86:4a:fd:d3:65:8f:9b:7e:bb:66:
17:59:0c:1f:f4:9c:b2:53:e2:9e:0f:aa:56:33:03:
e0:3f:65:8d:de:d3:29:5a:6f:9c:3e:02:e7:83:9d:
9b:33:34:31:6e:20:eb:27:be:42:c5:b0:ed:af:a8:
0a:e0:60:3f:23:d4:06:55:32:7e:32:3f:a4:7d:2e:
d3:fd:dd:3b:88:13:fc:69:4d:bd:75:d7:be:fb:65:
cf:0c:35:19:48:8e:19:c8:6b:c2:be:ed:3d:ae:f3:
83:cf:fb:40:b6:5f:44:ce:3c:4d:a8:e3:f2:93:81:
76:57:5c:c9:23:60:ed:a8:29:6e:0a:6f:77:e0:26:
24:76:c4:68:05:28:91:d0:d4:40:86:c8:79:bf:9a:
a5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:F2:E9:D7:1E:AD:8E:46:EF:C8:7B:BD:14:5B:78:92:AA:43:17:D2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D3A2ADBEC39A11EFBDEB4F71762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.155.0/24
Signature Algorithm: sha256WithRSAEncryption
99:fa:63:dd:66:be:15:ad:f3:d1:88:cf:f6:e9:b7:6b:9e:21:
16:50:2f:68:09:41:1f:0b:6a:b4:06:e3:25:ce:d3:2c:a9:d1:
cc:7c:91:7e:c9:f3:26:08:6c:8b:e0:fe:7f:a8:7f:f6:1b:6d:
83:60:10:f0:a1:1d:1a:77:d6:6b:d5:3a:08:4b:ef:62:60:b3:
19:13:67:4e:5f:87:9a:50:46:c3:00:66:fe:e6:7f:23:eb:96:
5d:10:0a:f1:69:99:72:bd:91:95:da:25:85:4a:de:4e:03:34:
cf:73:8c:f3:e1:a1:0e:ff:7b:98:52:75:86:62:55:95:5c:4e:
27:8b:11:fb:3c:50:27:48:11:d4:fb:62:1d:67:b0:61:82:91:
51:2a:3d:ec:1a:6e:c0:83:ab:90:89:40:69:eb:3e:9e:e9:b3:
ba:44:39:f4:9a:99:1f:bb:b8:bf:62:a4:f4:68:2e:0a:05:57:
06:5e:2a:d1:f1:b0:dc:c7:75:e0:f0:ad:b6:8c:1b:e5:f0:c5:
03:68:73:83:63:54:76:73:26:50:f9:eb:84:d7:fd:85:72:5f:
72:c8:64:b6:37:b9:e8:7d:70:72:01:81:e1:b0:ff:77:b6:7d:
ac:e2:d7:d6:a8:15:03:08:c8:0e:df:60:08:81:66:00:20:58:
b7:4d:e2:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:56:40 2025 by rpki-client