Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F9EAA76CBDB211EF9F0FF398762E951A.roa
File: F9EAA76CBDB211EF9F0FF398762E951A.roa (raw, json)
Hash identifier: t+xq4mxCE/XHRsH9SLMCTeRAkGRfaDRZmdOq2f9pAHQ=
Subject key identifier: AF:11:28:A8:A7:62:33:86:2B:FD:B2:27:B5:DF:07:49:5A:0E:D2:CB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E4C9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F9EAA76CBDB211EF9F0FF398762E951A.roa
Signing time: Thu 19 Dec 2024 02:43:07 +0000
ROA not before: Thu 19 Dec 2024 02:43:03 +0000
ROA not after: Wed 10 Dec 2025 02:43:03 +0000
asID: 984
IP address blocks: 45.198.252.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58569 (0xe4c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 19 02:43:03 2024 GMT
Not After : Dec 10 02:43:03 2025 GMT
Subject: CN=6763883b-6a6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:30:36:f8:f8:f8:a2:b3:01:7a:70:4d:f5:32:
14:89:ae:b8:bb:2e:1a:a0:92:f2:b4:5e:1e:8d:4e:
b7:2a:bf:c3:37:57:18:96:71:c1:1c:07:6a:44:4b:
0d:33:36:c3:d2:d7:d7:cd:71:e8:a7:63:cd:80:bc:
33:df:41:e0:2b:bd:55:f5:c4:2a:6f:80:3c:4d:da:
c8:12:d1:55:91:6d:f5:2d:62:07:3f:78:a4:16:37:
d6:28:e6:d5:ce:f2:1e:ab:d9:cd:39:4b:f2:cc:e0:
88:eb:42:5b:00:16:b0:29:2f:9a:04:6b:4c:99:15:
1a:ed:b7:fd:1d:fa:1e:64:cc:7a:f1:fc:44:69:29:
5f:b0:84:98:ab:cd:96:ff:b7:31:b1:eb:74:84:21:
38:70:07:e7:d9:bc:b2:78:c1:48:86:fc:d4:ef:bb:
83:f2:92:aa:f5:18:97:c1:02:f0:85:ad:90:2d:d6:
c0:ad:f5:6f:6e:c5:6d:c6:2d:fb:23:ad:23:a7:d6:
03:8f:7d:43:2e:2e:66:30:86:5e:eb:b7:f1:3b:e7:
3b:1a:39:0d:b1:fd:ce:39:33:48:1c:f8:6f:80:07:
bb:ce:9c:f1:ba:3c:3c:b2:9c:f6:30:a4:1f:97:08:
1f:46:51:e3:81:1f:52:b9:e7:1d:26:c5:3b:34:5f:
08:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:11:28:A8:A7:62:33:86:2B:FD:B2:27:B5:DF:07:49:5A:0E:D2:CB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F9EAA76CBDB211EF9F0FF398762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.252.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:8c:6c:11:9d:be:e8:25:73:e9:28:f9:9b:c1:7e:c8:2b:fd:
f0:5c:7e:0f:de:37:7c:17:81:80:be:78:44:55:e4:f8:26:dc:
f8:82:98:45:2d:40:c2:e0:95:9e:2b:c9:8d:44:9b:2e:ad:33:
a9:f3:3b:f5:3e:c3:01:0d:05:30:74:4e:95:d3:8e:b4:15:0f:
35:1f:d6:b3:5c:76:e4:0a:ec:f8:b9:63:d8:ab:2a:86:b4:c2:
a0:a0:88:58:3b:cd:8d:bd:04:56:ce:ca:82:de:03:07:c8:19:
42:ae:6f:7b:51:cc:ff:27:a8:40:ad:ca:be:43:fc:fd:3f:68:
87:d2:44:c3:2b:15:c3:81:2a:56:73:0d:4b:ab:0f:88:3f:db:
50:d0:d1:6f:37:60:4a:05:82:0e:f4:54:2f:78:ab:cb:43:c5:
b0:64:76:2d:19:37:e3:f1:d6:cf:ba:48:ec:fe:03:ac:4f:57:
90:f5:d2:7a:e3:43:b6:7d:05:2a:a0:0e:77:c5:73:2d:62:84:
a2:c4:29:cf:84:b8:ce:7b:0d:51:fb:df:19:d0:23:f5:de:b9:
75:6c:77:f4:42:0c:30:e7:a9:46:28:ac:a4:91:a3:0d:46:64:
6c:ae:42:bc:3d:49:72:09:ac:12:67:94:e3:92:3b:7e:ce:f9:
57:25:bb:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:43:23 2025 by rpki-client