Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F6F8CAE8BDBC11EF9E2C585C762E951A.roa
File: F6F8CAE8BDBC11EF9E2C585C762E951A.roa (raw, json)
Hash identifier: WkThQ84X2x8Ap+9Y+pwF7/KxbrG6iHUGlnuHAiiC0Ec=
Subject key identifier: B0:9B:BB:47:6F:D2:07:69:8F:8A:69:82:60:1D:50:93:19:F7:22:0B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E549
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F6F8CAE8BDBC11EF9E2C585C762E951A.roa
Signing time: Thu 19 Dec 2024 03:54:37 +0000
ROA not before: Thu 19 Dec 2024 03:54:33 +0000
ROA not after: Wed 10 Dec 2025 03:54:33 +0000
asID: 984
IP address blocks: 45.206.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58697 (0xe549)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 19 03:54:33 2024 GMT
Not After : Dec 10 03:54:33 2025 GMT
Subject: CN=676398fd-6a88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:fb:01:e9:77:e2:9d:1b:55:13:c8:9d:5d:32:
f5:20:34:c0:0d:60:15:4b:cd:ba:f1:26:ae:d4:1a:
1c:1c:45:b2:5d:8b:26:63:c4:56:07:e4:ac:27:71:
88:67:41:6b:8f:6d:14:b4:dc:ce:f5:db:83:e2:66:
ff:40:c6:f3:d8:23:d3:54:f5:e9:76:88:4d:be:a5:
e4:ae:40:5a:54:ba:f1:f7:32:4a:9e:ea:84:b1:50:
ad:c5:3e:a3:10:f3:fc:a1:85:5e:99:8e:47:f3:76:
dd:b0:f2:26:a2:7d:b4:d6:94:e9:c8:cf:cd:fa:43:
a0:c0:72:b7:f5:8b:fc:1b:7a:37:43:1a:7e:08:49:
b5:da:d7:bb:22:b4:ec:dd:71:cc:54:d3:1c:cd:d1:
2b:62:a3:44:a0:2f:3e:fe:04:ea:ad:e0:4a:c7:ae:
6e:9d:e3:4c:b2:00:02:47:80:fb:ed:25:e1:65:03:
ed:54:ef:90:ea:8a:17:0a:a6:15:e7:fb:6d:3d:86:
60:3a:6b:bb:2b:13:39:60:ac:29:c9:01:da:41:b7:
69:e0:ec:45:48:3f:96:94:20:e3:3d:f7:a3:db:d8:
23:69:7b:13:ec:00:05:1e:09:9a:b5:ff:2e:14:c1:
50:11:8e:85:1a:a6:1a:63:13:e2:08:80:f3:48:84:
6b:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:9B:BB:47:6F:D2:07:69:8F:8A:69:82:60:1D:50:93:19:F7:22:0B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F6F8CAE8BDBC11EF9E2C585C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.71.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:88:9e:0c:d7:0b:62:f0:d6:e1:c4:8c:63:07:f2:12:98:fa:
0e:b0:82:2c:ee:65:ec:58:0b:a5:0b:bf:da:ca:b6:2b:99:5f:
bd:4c:54:cd:a0:3c:31:2f:ee:fe:c9:25:e9:4c:9b:1d:f5:7f:
b4:18:c5:0e:69:cd:87:40:5a:f4:db:c6:43:19:56:bc:e8:73:
ab:71:b8:16:c6:8d:19:e1:9d:e9:5d:1e:52:2c:70:67:b2:93:
8c:80:da:0b:d3:60:65:44:46:fc:91:1b:ac:79:96:84:a0:bc:
84:b5:41:cd:c6:20:a3:83:22:f2:f4:73:a6:44:07:25:58:4b:
83:69:c2:2b:46:1d:e2:44:88:96:14:b4:50:53:29:14:0e:3f:
07:27:83:2c:62:c3:60:7b:f5:5e:88:26:b3:f1:af:f7:61:71:
43:1a:82:2d:bc:2f:9d:fa:3e:03:35:ac:c6:05:a2:54:31:b6:
4d:6f:91:fe:56:ba:84:8a:02:6d:6f:ca:34:f1:4d:51:9f:f8:
37:5a:0e:9c:b5:aa:41:e6:53:16:ad:69:e0:2f:9a:76:de:a5:
1d:dd:37:5f:6b:7b:72:9d:a4:bc:79:d9:00:ae:74:67:e1:fb:
9f:f7:0d:ab:5f:ea:e3:65:24:5e:6e:3f:55:db:9d:30:60:46:
d1:a2:7f:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:41:37 2025 by rpki-client