Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FEDFFC14CEF011EFA9B84588762E951A.roa
File: FEDFFC14CEF011EFA9B84588762E951A.roa (raw, json)
Hash identifier: csln32yqxEEccvdxvSUnemCktaNx9hI2SLRePkJzSYo=
Subject key identifier: BB:BB:C4:B2:3A:98:F4:70:CA:EE:DC:AC:9E:6A:73:89:F1:C7:D1:F1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010473
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FEDFFC14CEF011EFA9B84588762E951A.roa
Signing time: Fri 10 Jan 2025 01:19:53 +0000
ROA not before: Fri 10 Jan 2025 01:19:50 +0000
ROA not after: Thu 13 Feb 2025 01:19:50 +0000
asID: 54801
IP address blocks: 45.202.8.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66675 (0x10473)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 10 01:19:50 2025 GMT
Not After : Feb 13 01:19:50 2025 GMT
Subject: CN=678075b9-1c83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:23:10:57:ea:30:dc:f3:63:c2:fa:c5:21:56:
ca:ea:e1:02:db:43:7f:55:e4:90:29:fd:14:dc:85:
19:e8:88:25:37:11:a7:93:2c:ee:4b:2c:06:dc:08:
ee:af:df:7d:09:f5:ce:0c:c0:ab:d9:e3:83:98:35:
5f:b5:57:aa:af:ad:69:27:de:6a:20:75:c4:46:34:
a0:b0:b6:0c:8b:a0:16:5f:90:fe:07:46:dd:e2:06:
2f:2f:ab:4c:3d:8b:a3:b3:99:bd:18:6a:4d:db:b9:
91:7a:6a:af:e4:40:cf:6c:e0:37:50:07:b6:28:1f:
62:94:c4:2b:0a:08:cb:73:30:5c:02:7f:a0:78:41:
5d:f5:6b:7f:10:16:65:f9:9a:18:19:d5:7a:4f:b4:
6b:2e:ce:ce:2f:d2:f0:27:bd:c4:ba:09:0f:22:86:
96:2b:7c:3a:16:41:75:43:be:23:a1:90:02:85:1e:
b5:02:ee:60:eb:58:3f:52:bf:78:5c:02:34:63:59:
b5:01:c4:3b:cf:00:27:e0:05:fb:6d:78:9f:82:3d:
d9:5e:b9:22:6f:68:d9:78:14:9a:ea:96:bc:f0:5d:
9c:c0:0f:8f:6e:8c:f0:05:f3:ca:7a:69:8e:ec:ff:
93:63:19:7f:0d:03:2c:0e:a9:4f:59:20:54:2e:0a:
65:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:BB:C4:B2:3A:98:F4:70:CA:EE:DC:AC:9E:6A:73:89:F1:C7:D1:F1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FEDFFC14CEF011EFA9B84588762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.8.0/22
Signature Algorithm: sha256WithRSAEncryption
98:cd:30:0d:8c:c7:f8:18:ad:01:c1:a9:08:8a:61:67:a1:47:
21:3c:62:ca:bf:b2:40:2d:27:b9:c4:10:4c:06:e8:2e:b2:b1:
2d:04:62:58:c2:84:3b:d1:96:d7:be:a7:54:8f:be:9b:05:ef:
be:d7:02:d0:fa:be:f3:15:a5:0d:c7:b8:fb:dc:e6:3e:c2:8b:
54:a9:c8:f6:59:d1:46:70:96:b2:40:a5:6e:12:71:a6:12:e8:
fe:39:85:7e:08:cc:4a:6a:76:09:81:ac:42:da:9d:94:70:10:
b8:61:5f:94:75:81:ea:dc:68:75:1b:21:07:c4:83:53:1c:a7:
cc:3e:f5:71:36:7a:9a:e9:ce:a2:e5:e9:70:52:ca:b8:f2:13:
2a:f0:a5:34:b2:91:6d:93:15:23:03:1d:40:28:c6:6b:f4:fb:
b2:5b:f6:3c:09:3c:5f:1f:58:2e:48:fd:d0:7e:4b:bd:ff:16:
da:83:a8:03:b3:51:f8:a8:c5:b0:da:88:36:3d:ab:b4:d4:23:
2d:f2:5d:e3:09:68:a5:7a:60:01:56:aa:cf:a0:5a:5e:75:30:
1e:b6:90:91:f3:3b:11:26:69:a0:98:00:a5:77:a5:61:91:3b:
80:3d:6d:41:14:ba:ca:26:cf:e6:66:8a:8b:c9:cc:da:c2:08:
39:84:62:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:58:45 2025 by rpki-client