Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D6A6FE2CC39D11EFBA9BC682762E951A.roa
File: D6A6FE2CC39D11EFBA9BC682762E951A.roa (raw, json)
Hash identifier: JCBnBoPPN7xNJSAOU17VZsfPfzOIw8RNY7qsUpOiGm0=
Subject key identifier: 22:2E:DC:A9:83:DB:CF:E9:FB:90:E6:89:2A:62:C4:27:20:30:5B:08
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: ED75
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D6A6FE2CC39D11EFBA9BC682762E951A.roa
Signing time: Thu 26 Dec 2024 15:26:55 +0000
ROA not before: Thu 26 Dec 2024 15:26:51 +0000
ROA not after: Fri 12 Dec 2025 15:26:51 +0000
asID: 984
IP address blocks: 45.199.143.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60789 (0xed75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 15:26:51 2024 GMT
Not After : Dec 12 15:26:51 2025 GMT
Subject: CN=676d75bf-122a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:bc:d4:e8:67:02:89:db:b5:60:80:f0:d1:f4:
65:28:e6:17:e6:70:6a:02:3f:2a:e5:1e:58:ea:d9:
c3:88:d8:56:bc:48:6c:5d:e9:05:ea:6e:4d:39:b1:
f4:8a:4f:5b:72:00:15:af:b8:c5:c8:8f:92:bb:28:
81:2d:a3:af:61:43:bc:d2:a8:8a:31:68:a1:36:31:
36:ff:d0:d5:44:26:0e:01:62:aa:ce:bb:ea:23:d8:
f5:d0:dc:26:10:e2:38:2c:52:bc:e7:cb:5b:28:b7:
62:f9:e3:aa:a7:58:c7:58:25:3e:b0:87:6e:96:5a:
0a:22:01:bd:91:65:62:37:80:9b:39:3d:06:46:95:
05:7e:4f:49:b3:e1:b7:eb:c0:d8:4f:d6:e7:64:e2:
7f:ec:20:bf:98:91:55:c3:ab:b1:2e:82:87:62:ac:
75:7a:3a:df:fc:27:77:24:1d:f7:57:3e:9a:00:70:
54:3f:fb:dc:03:03:41:cf:3a:9c:88:90:9e:ec:4b:
af:d6:19:43:1e:2b:e9:8a:c7:14:25:12:29:84:cb:
03:49:13:7d:5e:ab:fd:f3:3e:2c:bf:25:bd:30:9b:
5c:6c:f9:80:b1:fe:d1:fd:98:6b:0e:13:e4:6e:09:
4d:81:72:9d:d9:b8:c0:4f:44:93:da:7b:b4:bd:d7:
b4:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:2E:DC:A9:83:DB:CF:E9:FB:90:E6:89:2A:62:C4:27:20:30:5B:08
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D6A6FE2CC39D11EFBA9BC682762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.143.0/24
Signature Algorithm: sha256WithRSAEncryption
62:20:75:a1:0d:f7:ea:59:91:d6:c4:ff:71:9a:0f:11:3b:56:
6f:ca:4d:8f:6d:a3:b3:95:b4:96:56:87:e6:44:9c:0a:c4:b1:
b1:f7:74:8d:8e:85:ff:07:ce:4f:92:97:e2:20:ef:05:dd:fb:
21:7f:8e:44:34:d9:09:44:29:ab:b3:48:36:f2:a9:46:f8:f1:
8c:06:72:15:cc:f3:a4:ef:1f:02:43:b3:24:1b:2e:04:83:5f:
e4:f8:de:2f:87:ac:8e:71:4b:5d:0e:28:ff:be:b5:e7:6f:65:
9c:35:bd:b7:b8:e3:77:07:63:c7:73:2a:b5:08:0b:80:93:4c:
5b:ff:3e:2e:41:47:22:da:33:11:3f:01:7b:f7:42:6a:e1:fa:
34:d2:f3:ea:92:e7:e4:f5:6a:23:22:17:0b:e4:f2:89:2e:d1:
e5:76:26:aa:52:8c:84:e5:ee:e0:fb:ed:e9:fb:95:00:25:1e:
b0:ff:45:d1:3c:a5:2b:f7:a3:1f:c4:0f:6b:c5:b3:22:83:0b:
60:32:33:e7:e8:f7:5c:d7:18:d2:db:95:4f:c1:7c:e0:a2:40:
ee:f1:9b:af:11:9b:47:f1:06:c4:16:d4:80:79:78:3e:40:fa:
5b:df:a4:c3:15:5c:90:a3:70:35:95:0d:6c:34:34:7c:b5:1d:
f1:f1:f1:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:44:46 2025 by rpki-client