Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F6869A96BE7411EF8F800554762E951A.roa
File: F6869A96BE7411EF8F800554762E951A.roa (raw, json)
Hash identifier: E3j8FiyoLeAHYnyum6I9umw30WShmOjOlbRenxA6+yw=
Subject key identifier: D5:90:C4:69:AB:7F:B0:AB:61:BD:83:06:AC:32:92:4C:A5:D0:5E:60
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E61A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F6869A96BE7411EF8F800554762E951A.roa
Signing time: Fri 20 Dec 2024 01:51:43 +0000
ROA not before: Fri 20 Dec 2024 01:51:40 +0000
ROA not after: Wed 10 Dec 2025 01:51:40 +0000
asID: 984
IP address blocks: 45.206.140.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58906 (0xe61a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 20 01:51:40 2024 GMT
Not After : Dec 10 01:51:40 2025 GMT
Subject: CN=6764cdaf-f2ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:1c:3f:bb:a6:d1:18:c5:88:94:cd:e4:f1:b5:
e9:8b:c7:05:72:06:55:dc:e6:b3:c5:13:84:fb:16:
aa:a1:97:ad:8a:69:78:c1:9f:b1:8e:1c:af:e1:ca:
55:71:f3:fa:ba:79:31:83:4c:72:42:f7:5f:43:f1:
d2:25:f2:ec:b6:93:71:77:2d:62:11:13:67:ae:90:
d7:ad:1e:3d:d2:8e:f6:2b:89:5f:7d:72:8c:61:f8:
d1:73:46:d1:02:6a:a7:00:eb:89:25:0a:d3:4f:fd:
b5:96:55:9a:07:0f:c9:21:4f:89:81:43:1e:41:60:
1a:b3:12:01:80:c5:61:04:7e:da:ef:a2:8a:c9:95:
7a:b8:ce:51:ef:d3:51:79:68:ba:d1:db:dc:c0:84:
c8:e8:b3:2b:9e:74:12:01:e1:e4:db:b8:89:f4:26:
bc:b9:d1:48:04:76:36:eb:20:47:b1:3f:d5:75:5c:
1b:af:5c:23:59:46:79:7e:af:35:da:32:62:78:2a:
a1:18:5e:a3:2c:d7:a6:85:6d:8a:11:d9:6d:e4:1e:
ff:43:48:70:b1:d1:a7:da:02:0b:09:0a:17:64:85:
04:53:ca:ab:28:6a:0a:3d:cd:75:31:1c:0d:03:b0:
7a:b7:75:4e:b6:1e:11:84:87:12:10:58:d6:3a:7f:
a2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:90:C4:69:AB:7F:B0:AB:61:BD:83:06:AC:32:92:4C:A5:D0:5E:60
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F6869A96BE7411EF8F800554762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.140.0/24
Signature Algorithm: sha256WithRSAEncryption
10:84:aa:13:5c:b7:84:d6:f3:a6:d7:a6:a7:2d:cb:f1:59:b1:
34:67:e7:a6:22:e2:be:ea:81:73:e2:64:4c:78:96:70:34:69:
e2:e0:5e:f5:9f:23:85:9c:ec:b6:4c:15:a5:ac:88:28:05:3b:
15:f4:a5:b4:ad:f4:67:ef:88:75:81:3a:fc:09:f1:6c:7e:33:
5d:83:22:df:a1:0a:ec:77:83:34:22:7e:ca:fb:fc:a6:56:6d:
8f:bd:76:b3:3d:1c:f0:8b:90:e0:40:cd:e2:27:bb:1b:e7:b2:
8b:bd:ff:af:0a:48:69:e7:af:f8:09:3f:bd:6e:9f:31:8e:fc:
8e:39:66:9d:69:e4:1f:03:14:c8:6b:32:1e:a5:2c:a1:b7:22:
f0:e2:8a:83:59:1f:df:83:7b:15:c6:83:3e:73:3b:51:36:03:
28:d4:cd:99:80:af:e8:80:84:6d:3c:d6:ac:82:f1:24:54:d5:
ab:46:fd:d8:e0:1a:97:99:7c:39:fd:cc:d1:0d:b8:12:8d:e3:
02:39:dd:f6:0d:a8:b7:d3:e9:7c:69:4f:c9:d9:3d:66:4c:8e:
f6:43:98:a7:73:b4:2f:ba:13:95:0e:ad:eb:93:6a:d5:ca:07:
fe:3f:ad:a1:fb:23:b5:37:e3:bf:ae:9e:77:4c:db:17:15:5c:
0f:74:05:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:52:41 2025 by rpki-client