Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F321266AB2D911EF8F1CBC60762E951A.roa
File: F321266AB2D911EF8F1CBC60762E951A.roa (raw, json)
Hash identifier: wTYgosE66VCIgmU+MlBUK582PmwW/K4qyTgZKR9TQxY=
Subject key identifier: B6:CD:5A:73:7F:81:98:7A:95:F1:0C:60:83:EF:0D:03:7F:A5:7A:3F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: DF89
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F321266AB2D911EF8F1CBC60762E951A.roa
Signing time: Thu 05 Dec 2024 07:24:23 +0000
ROA not before: Thu 05 Dec 2024 07:24:19 +0000
ROA not after: Tue 09 Dec 2025 07:24:19 +0000
asID: 215618
IP address blocks: 45.195.144.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57225 (0xdf89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 5 07:24:19 2024 GMT
Not After : Dec 9 07:24:19 2025 GMT
Subject: CN=67515527-cdc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1f:b4:eb:38:8b:03:cc:12:80:df:e3:56:e7:
16:df:ee:e0:c7:ad:d9:55:ac:47:11:f9:34:f9:cd:
b4:40:3d:fe:d0:c1:40:1c:58:ff:32:9c:0e:a0:4c:
3e:b0:56:7e:35:b8:cf:99:2f:91:42:50:b3:ab:4d:
bf:81:f3:6b:7c:43:78:0c:a9:16:16:f4:f3:52:c8:
67:c5:e0:c9:0c:f6:c3:37:91:29:27:cd:c3:dd:b8:
00:0c:e0:ec:6a:38:c7:e7:79:21:f4:52:fd:7e:30:
94:70:c6:08:2d:66:d3:ef:01:3b:ad:17:c4:7a:41:
d5:b3:43:8e:ed:4f:ee:93:93:14:84:ea:09:10:d1:
62:f6:74:17:f3:86:90:d7:c7:b0:ff:81:98:42:e6:
f0:4e:19:d2:b3:50:6d:23:54:09:37:87:f1:19:12:
6f:70:e0:60:a5:fb:36:68:44:85:b1:6e:f5:84:f6:
8b:cc:17:c2:ca:21:ff:71:1d:55:dc:4b:8a:ee:d9:
8e:0c:b0:13:36:3f:45:83:26:a3:41:c1:b7:7d:7f:
a6:d6:10:f1:99:08:e0:8a:f6:3c:17:1e:31:05:db:
6c:11:c4:47:89:67:d4:7b:fd:ce:5b:d0:7e:f7:14:
52:ce:08:f0:8b:8a:67:fb:25:1c:2b:58:8f:90:ce:
2f:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:CD:5A:73:7F:81:98:7A:95:F1:0C:60:83:EF:0D:03:7F:A5:7A:3F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F321266AB2D911EF8F1CBC60762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.144.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:48:88:e9:49:51:bd:ab:c0:d0:bb:72:48:2c:16:99:f8:79:
2d:c3:42:fc:58:8d:80:65:d5:8e:7c:96:66:b5:69:e2:62:2f:
e3:ef:84:95:e5:f6:07:6b:f4:ba:08:98:18:ff:6c:0e:4e:49:
2c:b6:d9:93:84:3b:7d:3c:70:b9:1d:66:f4:dc:01:8e:e4:a4:
be:92:91:1c:aa:dc:0b:71:ce:51:5b:dd:3d:99:23:3c:e7:72:
7e:29:15:42:28:fa:31:e4:85:22:fe:85:27:2e:2c:64:98:a9:
77:96:5e:95:ef:b8:e1:31:0e:d8:cc:d6:4a:ee:51:9a:c6:bc:
82:6e:37:d5:9c:98:5b:a0:2d:74:5a:f2:b6:43:d0:05:d3:e4:
05:d7:1c:c9:a5:da:64:82:d5:c4:d8:dc:a3:2b:12:33:9d:59:
6d:bd:ae:6f:e2:28:ec:41:bb:5f:83:1d:61:55:93:4d:61:db:
29:3d:a4:a6:b1:4e:de:52:08:83:c4:53:11:37:0e:99:ee:d2:
f9:4c:e6:80:47:6f:9b:6a:4b:66:45:37:98:28:f0:a3:af:c0:
bd:87:b4:a7:12:f6:69:21:26:4c:36:8c:36:74:8c:e9:ee:6e:
50:d5:42:74:83:3a:31:b7:ba:f8:82:b5:1f:f6:e8:6a:75:f3:
69:60:59:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:56:21 2025 by rpki-client