Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E7C073F4BDBD11EF830FE462762E951A.roa
File: E7C073F4BDBD11EF830FE462762E951A.roa (raw, json)
Hash identifier: kOGf5yTSy9fe3x3FgH0Naf6uksBV5t62ZKUVQjWuAFU=
Subject key identifier: 75:B0:30:97:65:F4:78:B0:B8:25:7A:85:2A:C2:44:71:5B:71:5F:29
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E555
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E7C073F4BDBD11EF830FE462762E951A.roa
Signing time: Thu 19 Dec 2024 04:01:21 +0000
ROA not before: Thu 19 Dec 2024 04:01:17 +0000
ROA not after: Wed 10 Dec 2025 04:01:17 +0000
asID: 984
IP address blocks: 45.206.77.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58709 (0xe555)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 19 04:01:17 2024 GMT
Not After : Dec 10 04:01:17 2025 GMT
Subject: CN=67639a91-64b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5b:94:18:8d:bf:51:ea:3a:af:d6:8a:7b:46:
3b:e4:56:c9:39:65:27:c3:d9:2c:61:6f:00:59:12:
3c:a2:49:e9:25:e5:7b:2c:a2:52:b5:43:66:97:8f:
37:76:f4:c1:f3:09:3a:30:ac:94:d6:7a:a2:8e:e9:
e9:a1:9f:3e:5a:65:98:8f:62:f5:c5:7e:b2:ad:12:
90:0f:91:c6:ef:2f:0a:1c:be:e2:59:e3:3b:d3:51:
0c:91:c9:ca:c6:82:73:4a:6d:43:1b:99:f4:c1:a3:
4a:96:f9:b8:54:8b:e8:2e:c3:39:c7:7c:ef:e8:b5:
b4:40:16:42:d9:bd:5d:9e:f9:5c:12:aa:d2:61:9a:
1e:21:2b:06:df:af:d6:b6:8e:f9:ea:dd:6c:75:08:
e9:c7:b5:a6:7e:e2:02:96:df:0e:23:eb:ee:2e:62:
01:40:52:7b:d3:1c:24:dd:d7:57:77:43:01:a2:8f:
ad:1e:41:1e:00:08:3d:d1:02:ad:c6:3b:1d:24:e6:
db:14:0b:1f:3f:e1:da:61:18:77:ba:5b:c4:fe:2f:
48:ac:1e:95:8f:c7:e7:70:5a:75:6a:40:3f:0a:1c:
48:97:af:27:36:30:06:63:aa:26:d7:f7:f4:db:5a:
28:df:e1:47:ff:fe:79:77:4b:52:22:c2:51:d1:9e:
41:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:B0:30:97:65:F4:78:B0:B8:25:7A:85:2A:C2:44:71:5B:71:5F:29
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E7C073F4BDBD11EF830FE462762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.77.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:9e:b0:29:e2:d1:9d:72:2d:8a:41:23:0b:88:8e:24:e0:83:
4b:ef:5b:ed:23:3f:48:ee:27:dc:9e:ba:44:30:c6:01:6e:a9:
44:e8:11:0e:a2:c8:47:8a:8f:69:ed:a2:ce:1f:42:9a:b2:05:
b0:c8:54:7d:02:31:58:79:67:3a:68:5e:1b:75:14:18:91:f5:
4c:d5:fb:64:80:8a:dc:58:c6:bf:bc:a4:d1:52:c8:54:4f:b1:
6a:3b:98:8d:71:14:49:c1:6d:87:7b:a2:fa:b3:a9:0f:35:be:
19:e8:58:c7:51:f2:85:f1:b1:40:9e:d9:f6:84:0c:9b:6a:b4:
cf:28:c5:77:d9:b6:e7:af:6b:7d:db:47:52:1f:2f:7a:2b:9b:
ec:af:e1:c4:36:a7:ba:5d:f5:a0:b3:1c:3d:7b:94:81:ef:e4:
80:0d:4d:ee:e1:03:69:77:e9:f2:cc:7f:37:b8:6a:ad:26:3c:
7e:b2:e4:d7:a4:45:3e:83:05:40:05:1f:d1:d2:fc:61:af:ed:
54:18:fb:f5:91:43:1e:c7:04:04:10:02:8a:5f:26:a8:74:44:
d8:0f:b2:a8:2a:0e:30:71:2f:f2:bf:3f:d8:5f:a1:20:e8:c4:
95:d1:62:ba:36:0c:8a:a0:25:32:da:a2:17:94:7c:24:01:92:
d7:4c:e6:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:44:32 2025 by rpki-client