Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E573054EBDB811EFA567C141762E951A.roa
File: E573054EBDB811EFA567C141762E951A.roa (raw, json)
Hash identifier: zCNeGUFwYlpyYwYWxXg56vzT4zX5x+fGog2MIt2Ce/0=
Subject key identifier: 14:FD:35:70:DB:57:7D:15:CE:64:43:F3:33:DC:6C:85:C9:8B:BE:86
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E515
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E573054EBDB811EFA567C141762E951A.roa
Signing time: Thu 19 Dec 2024 03:25:29 +0000
ROA not before: Thu 19 Dec 2024 03:25:26 +0000
ROA not after: Wed 10 Dec 2025 03:25:26 +0000
asID: 984
IP address blocks: 45.204.185.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58645 (0xe515)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 19 03:25:26 2024 GMT
Not After : Dec 10 03:25:26 2025 GMT
Subject: CN=67639229-005b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6a:1c:9b:23:32:e2:ce:90:af:6e:19:f1:6e:
83:bf:52:81:a6:68:49:d5:02:42:9d:42:93:b7:b0:
c7:f1:8e:9e:11:74:7a:96:d5:9a:a7:f0:ea:1c:4f:
9a:ec:ca:25:4a:5a:b0:1e:b1:ab:a7:00:8c:a6:78:
0e:f9:f3:10:37:24:8c:5b:c4:30:10:55:15:48:06:
73:49:53:a3:1f:14:ee:5b:fc:8c:7e:c4:58:59:9f:
04:ea:49:ab:b7:ec:bf:d9:07:ef:60:18:bc:79:f2:
af:e6:34:4f:56:7e:38:94:8f:c4:7a:22:d7:7d:e1:
bd:7d:b6:22:f2:41:21:9c:3c:dd:3f:c1:6b:45:aa:
5e:a4:b7:0e:52:58:8d:57:e5:37:58:67:38:76:59:
17:b6:3a:25:64:11:7c:ce:29:6c:5b:f5:d8:52:5a:
a1:09:40:a2:8d:31:24:e0:5b:1f:f0:67:44:fa:de:
fc:07:4a:07:fb:9c:be:d5:a4:90:18:08:46:69:c5:
06:42:dd:62:8c:d0:81:77:3f:bd:18:c8:83:82:81:
80:26:2d:c0:20:27:6f:a3:ce:17:12:28:ae:0c:3a:
a6:b1:f3:e9:f6:09:34:be:b8:8e:4c:8a:99:6e:d4:
9b:c7:85:98:74:45:bd:2c:36:d0:2b:46:5c:32:8d:
01:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:FD:35:70:DB:57:7D:15:CE:64:43:F3:33:DC:6C:85:C9:8B:BE:86
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E573054EBDB811EFA567C141762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.185.0/24
Signature Algorithm: sha256WithRSAEncryption
74:1d:cb:25:40:29:a4:b7:28:62:53:3f:25:b6:a8:d0:cd:65:
3b:55:49:0b:ec:af:65:b1:30:a9:39:6f:52:62:f2:63:18:3f:
be:3f:63:61:c3:a7:63:56:70:7a:5d:f6:07:94:a7:86:c6:5b:
8d:cd:4a:dd:24:8c:99:3c:93:a2:14:50:a2:97:f9:f9:44:26:
14:aa:fc:8f:d8:3f:e9:d0:1d:16:75:ae:63:e3:5e:c3:fa:80:
b0:03:5b:27:95:b0:dd:d6:a9:5a:57:80:0d:b9:86:7c:34:e0:
98:db:bf:7d:6b:83:27:be:13:81:95:fb:eb:4c:a5:16:47:75:
b5:63:bc:35:6f:a4:90:0b:93:b8:28:dd:db:96:19:a5:a8:b8:
a0:54:9a:f9:79:12:fe:3c:86:b0:2b:ab:3c:ed:9b:23:ef:39:
9e:32:37:85:98:6d:56:55:c0:aa:1e:4d:9a:f4:cd:4e:23:3a:
62:1c:63:da:96:2f:cc:b2:31:c5:35:8b:37:5a:90:9d:86:82:
cd:96:05:a5:1d:26:f9:bc:4a:44:36:53:c3:91:70:33:6c:e3:
0b:6b:0c:28:7e:07:c7:93:0f:4f:31:b2:85:ab:07:c2:a5:09:
9f:59:3a:58:58:a1:33:a8:ae:fc:f7:40:b6:61:08:52:14:f4:
c7:0d:0b:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:49:17 2025 by rpki-client