Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3644574/37DB92B2778011EFA6D72EB2762E951A/E527D8DA7DA311EFBFCA4063762E951A.roa
File: E527D8DA7DA311EFBFCA4063762E951A.roa (raw, json)
Hash identifier: jRt85MJWwA9IU+IpxCsOMCI0hYKPMjQQitzeHDuVxys=
Subject key identifier: 5F:EF:06:A9:AD:14:15:58:E5:9E:04:ED:7E:82:99:3F:95:63:3F:66
Certificate issuer: /CN=F3644574AR/serialNumber=F608628A4682F553804AF3AB2E58A19C30A8ADD2
Certificate serial: 23
Authority key identifier: F6:08:62:8A:46:82:F5:53:80:4A:F3:AB:2E:58:A1:9C:30:A8:AD:D2
Authority info access: rsync://rpki.afrinic.net/repository/arin/9ghiikaC9VOASvOrLlihnDCordI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3644574/37DB92B2778011EFA6D72EB2762E951A/E527D8DA7DA311EFBFCA4063762E951A.roa
Signing time: Sat 28 Sep 2024 14:13:55 +0000
ROA not before: Sat 28 Sep 2024 14:13:51 +0000
ROA not after: Wed 22 Sep 2027 14:13:51 +0000
asID: 932
IP address blocks: 45.221.120.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3644574/37DB92B2778011EFA6D72EB2762E951A/9ghiikaC9VOASvOrLlihnDCordI.crl
rsync://rpki.afrinic.net/repository/member_repository/F3644574/37DB92B2778011EFA6D72EB2762E951A/9ghiikaC9VOASvOrLlihnDCordI.mft
rsync://rpki.afrinic.net/repository/arin/9ghiikaC9VOASvOrLlihnDCordI.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35 (0x23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3644574AR/serialNumber=F608628A4682F553804AF3AB2E58A19C30A8ADD2
Validity
Not Before: Sep 28 14:13:51 2024 GMT
Not After : Sep 22 14:13:51 2027 GMT
Subject: CN=66f80f23-3a38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:41:be:6b:61:0e:f5:3d:aa:02:92:b8:41:98:
60:0d:24:c2:8f:22:1c:08:e0:9e:b0:f0:75:2d:69:
99:fb:3c:e1:be:f9:63:92:1f:6b:96:09:47:55:50:
10:16:49:12:75:e0:c9:d2:30:4c:1e:fd:0b:2d:64:
31:dd:35:4a:f2:c0:f9:bb:65:a4:3e:c6:57:bd:8c:
b9:75:d0:67:c2:04:d3:23:cf:7d:a4:a6:fd:59:3b:
ec:51:bb:39:bb:0e:81:e9:7e:cb:d8:3c:78:41:c1:
10:34:f8:9c:9d:67:59:63:5d:08:44:e5:0a:45:c6:
02:68:d4:3d:68:63:0c:27:98:fd:61:99:52:0b:f5:
0f:8f:3b:8a:aa:c7:3c:4b:8a:b7:34:f6:cf:34:93:
33:e4:0d:ae:f4:9b:de:61:1f:a9:3c:5a:10:93:21:
7c:68:08:a7:1d:03:e3:60:9a:9e:ed:da:47:a0:0f:
0d:ad:d8:33:c5:95:c4:17:8d:a8:b4:db:2d:6d:6c:
c8:15:67:6f:74:d7:4c:55:ac:40:1b:fd:d1:22:02:
f8:02:5c:c8:4e:0e:ed:70:42:aa:b4:e0:12:d1:08:
64:97:92:9f:50:68:d5:88:3c:19:84:89:ae:3a:06:
60:11:4b:5c:f7:6c:54:c8:d8:b3:06:0b:ef:d7:e1:
d3:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:EF:06:A9:AD:14:15:58:E5:9E:04:ED:7E:82:99:3F:95:63:3F:66
X509v3 Authority Key Identifier:
keyid:F6:08:62:8A:46:82:F5:53:80:4A:F3:AB:2E:58:A1:9C:30:A8:AD:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3644574/37DB92B2778011EFA6D72EB2762E951A/9ghiikaC9VOASvOrLlihnDCordI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/9ghiikaC9VOASvOrLlihnDCordI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3644574/37DB92B2778011EFA6D72EB2762E951A/E527D8DA7DA311EFBFCA4063762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.120.0/21
Signature Algorithm: sha256WithRSAEncryption
aa:17:25:cc:b1:ea:d5:71:be:22:56:c5:1c:93:6b:47:8d:45:
14:9e:15:16:a6:38:7d:ca:3c:d8:15:d3:9e:d4:ee:41:c7:0c:
e8:ff:d9:7f:d5:80:63:d6:d9:93:59:ab:19:c7:df:4c:67:53:
9a:34:74:b3:3c:ea:3b:1c:2a:39:93:58:a6:23:94:cf:bf:2f:
5b:64:3a:7b:38:01:9e:42:90:50:fc:2e:22:91:e1:b1:b0:d2:
2b:d0:94:79:c9:84:8b:25:91:4e:06:0c:7a:4c:41:62:52:8a:
25:de:31:e3:99:bf:9a:4d:36:ec:69:9d:63:3f:e6:b6:2d:85:
87:37:4d:d2:8a:64:e8:12:75:6a:e8:fb:c9:7c:b0:47:63:f2:
30:2c:b4:ad:b0:9e:8b:90:65:0b:72:ef:10:0a:ed:a6:f5:17:
f5:4e:f6:6e:af:f5:c2:1f:86:b4:17:25:25:5d:e4:54:36:73:
2c:9b:df:5a:04:87:48:af:83:ec:e5:3d:20:6d:f2:1c:53:d3:
3a:7a:86:77:ec:92:cd:79:56:f0:4f:a3:83:26:be:66:b5:9e:
dd:22:ff:bd:c5:d9:fb:76:c1:44:f6:4c:cc:62:a3:15:f0:54:
db:c9:52:3d:96:c5:39:b9:9c:2f:7c:bc:83:5f:ac:04:eb:1c:
61:ed:30:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:34 2024 by rpki-client on console-ams.rpki-client.org