Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F56BD728C29F11EF8C9D85BB762E951A.roa
File: F56BD728C29F11EF8C9D85BB762E951A.roa (raw, json)
Hash identifier: PsJBo1FPzX+bAlBkaUz2iJEDjQdufO9072n5RMYao7o=
Subject key identifier: C0:B6:11:F7:A2:F6:54:96:9D:14:B3:A1:E6:D5:49:BA:BF:56:4C:A5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E9ED
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F56BD728C29F11EF8C9D85BB762E951A.roa
Signing time: Wed 25 Dec 2024 09:09:35 +0000
ROA not before: Wed 25 Dec 2024 09:09:31 +0000
ROA not after: Tue 11 Feb 2025 09:09:31 +0000
asID: 138915
IP address blocks: 45.197.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59885 (0xe9ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 25 09:09:31 2024 GMT
Not After : Feb 11 09:09:31 2025 GMT
Subject: CN=676bcbce-1509
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:64:43:eb:ff:7f:c8:18:09:27:95:2c:43:47:
59:3f:23:41:3d:66:3c:c9:ac:44:97:f1:a7:0e:cc:
1f:2c:46:26:43:6f:c8:c7:23:85:26:ed:4f:e5:bd:
ed:ea:e7:30:8c:94:9f:00:d2:5e:6f:35:7c:c3:56:
d0:fd:9a:03:60:74:c4:39:37:4c:b5:f4:97:88:ac:
de:36:65:b4:51:65:9d:99:ad:3f:48:c7:26:6c:7a:
b8:13:dd:34:94:88:cc:3c:1f:6f:53:b5:5f:6d:3c:
75:6f:5f:24:44:18:0c:05:bf:4d:1f:18:03:63:55:
83:08:4b:c4:e8:8d:e1:45:e9:b7:65:06:60:bc:ab:
a3:38:e3:33:a5:74:b1:be:37:c1:87:1c:31:be:c3:
e7:0b:e0:38:cc:d2:3d:d8:81:22:98:a6:c8:6b:99:
39:e5:42:a5:88:0d:3a:3c:ba:8e:bc:8e:13:42:40:
5c:ec:66:51:23:cd:1f:6c:6b:7c:1e:02:5f:bf:9e:
18:c0:c8:37:08:93:88:2c:73:ff:b5:f8:ea:36:3e:
98:34:0b:49:14:99:2c:9b:13:37:d8:f5:08:00:ee:
67:ac:1c:af:5b:ce:04:42:09:dd:5a:80:32:60:9e:
96:c8:65:f6:c2:d8:36:cf:96:0c:5f:83:29:bc:f5:
6e:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:B6:11:F7:A2:F6:54:96:9D:14:B3:A1:E6:D5:49:BA:BF:56:4C:A5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F56BD728C29F11EF8C9D85BB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.106.0/24
Signature Algorithm: sha256WithRSAEncryption
00:e2:de:77:e9:3b:63:43:1b:c9:5e:cd:04:99:d8:8d:f5:d9:
dc:15:10:0e:9f:98:d7:30:ea:cc:e0:4b:fb:0b:a5:08:06:42:
be:1c:1e:5c:a5:ab:27:49:b0:8d:d9:90:df:2d:ed:ef:3f:f8:
d8:62:79:a0:5f:51:34:f0:df:d0:c5:13:7c:a2:94:e8:00:94:
1b:a3:fc:09:00:64:2d:51:32:28:b5:7a:8d:dc:ae:fd:50:fb:
f4:d4:5d:2a:94:9a:6c:a2:59:7e:f2:06:6e:95:cf:e8:00:2f:
fd:b3:de:80:04:e0:fd:a5:ce:78:fb:5c:8c:ff:de:e4:24:ae:
51:4c:41:d1:e8:8e:07:3d:87:aa:28:b3:78:ad:ba:a8:e8:5a:
f1:26:6f:e4:27:37:f0:a9:19:9f:b9:81:a2:14:0c:d1:49:21:
2f:0c:82:22:83:9e:ac:0c:6c:c9:e2:ad:ab:98:41:00:9b:79:
f9:cb:aa:9b:d6:4b:7c:9e:c3:f8:54:49:73:a2:39:50:4b:55:
8d:f2:fb:95:18:5c:c8:df:53:86:a0:2c:21:7e:8a:35:96:e9:
72:ee:b4:74:be:45:ae:9a:e4:5c:73:d5:8f:16:8c:45:30:e0:
29:4c:5a:5a:ed:0c:60:41:2e:96:dd:79:a5:ab:a6:54:4e:8f:
3d:d4:50:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:51:14 2025 by rpki-client