Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/939E7FA4BE8B11EF81AA106F762E951A.roa
File: 939E7FA4BE8B11EF81AA106F762E951A.roa (raw, json)
Hash identifier: 6aadW43rWRtSvScUyffpUOsl43OWwqbMIrnzxIodmaM=
Subject key identifier: AF:75:52:7A:C3:1E:A4:CA:6A:DE:B6:9D:DA:6E:53:A0:94:DD:B2:A2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E6CA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/939E7FA4BE8B11EF81AA106F762E951A.roa
Signing time: Fri 20 Dec 2024 04:33:36 +0000
ROA not before: Fri 20 Dec 2024 04:33:32 +0000
ROA not after: Wed 10 Dec 2025 04:33:32 +0000
asID: 984
IP address blocks: 45.206.232.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 30 Apr 2025 00:26:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59082 (0xe6ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Dec 20 04:33:32 2024 GMT
Not After : Dec 10 04:33:32 2025 GMT
Subject: CN=6764f3a0-da3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:cb:75:fe:8e:ee:a3:68:5f:ff:99:57:cd:6d:
1f:3d:16:fa:29:d7:8c:18:40:18:b2:b1:ee:10:19:
c9:0c:7b:90:e6:d6:1b:2f:09:6c:fd:05:9b:7c:0f:
c7:92:e6:e4:c0:dc:a6:06:f5:a2:4b:43:f0:61:2c:
c0:5a:af:9c:12:26:85:d9:9e:61:48:29:09:db:e2:
68:f9:db:d8:f4:eb:b5:f1:3b:8d:9e:07:3c:76:50:
e6:79:f5:30:3e:f4:1e:ee:4c:da:e1:3e:04:bc:d8:
f0:c8:33:53:d8:6d:3a:82:9d:55:5e:e8:97:64:c8:
b4:b6:85:15:82:31:a3:95:34:94:b9:5a:7a:a6:1d:
52:1a:24:68:24:03:91:e2:13:72:3d:db:b1:b4:2c:
e9:47:46:1b:cf:49:67:df:5d:cc:42:7e:5d:c4:e8:
4e:05:52:81:7c:bf:f1:f2:15:3a:fd:7d:3d:95:30:
b2:7a:46:99:89:9e:3e:5d:da:29:03:bd:87:cf:30:
92:0d:47:fb:a8:19:e2:4e:db:4f:05:2c:b8:6e:a8:
b2:bb:04:b0:ab:00:d7:24:f2:2e:51:ef:78:93:0f:
72:f3:08:72:f4:e7:cb:dc:75:48:ed:e9:c5:5b:ef:
b2:7c:25:54:91:60:16:cd:33:a0:f8:06:3c:5f:9d:
84:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:75:52:7A:C3:1E:A4:CA:6A:DE:B6:9D:DA:6E:53:A0:94:DD:B2:A2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/939E7FA4BE8B11EF81AA106F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.232.0/24
Signature Algorithm: sha256WithRSAEncryption
64:18:92:f1:2b:53:df:2d:49:bf:40:b5:b0:26:ae:d1:9a:83:
cf:cd:15:68:67:0f:dd:df:67:89:45:18:1f:ff:d5:f7:68:65:
84:c9:81:61:e3:fb:ce:44:29:75:ce:e6:37:04:db:dd:e0:6c:
d9:df:b5:4c:44:8f:a1:cb:c3:f0:66:c2:ea:fb:26:86:54:f9:
1e:33:cd:93:72:22:0b:29:42:d5:d3:0c:51:96:a8:11:62:b5:
ad:34:eb:09:e4:d0:2f:69:ea:e4:23:53:36:27:67:0f:38:dd:
ec:60:49:8d:a4:10:99:47:a5:f2:f9:c3:15:23:ce:de:bd:9e:
69:26:ea:24:10:43:0d:59:3c:ff:3f:a5:5c:84:45:32:3b:cc:
c6:41:fd:0f:ec:a2:39:b4:8f:03:16:c6:b8:ad:99:a8:c3:27:
c7:9b:e7:bb:cd:3d:3a:28:cf:4b:96:09:af:1f:69:e0:18:85:
c7:85:e0:04:24:f1:66:0c:00:29:ac:59:4f:c8:bd:27:e6:97:
ce:86:0e:ee:65:26:70:bd:43:c1:e5:80:f4:c6:6b:5e:b8:c4:
ac:94:d3:2a:70:16:2a:95:7a:37:82:6b:ee:a2:93:12:4f:25:
a3:48:df:03:d4:05:e3:84:25:a6:dd:06:6a:8c:d2:ed:17:24:
3c:e5:9e:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 23:02:20 2025 by rpki-client on console.sobornost.net