Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/01FB0C80A73811EFACE17B88762E951A.roa
File: 01FB0C80A73811EFACE17B88762E951A.roa (raw, json)
Hash identifier: bML2c2wFqa5uTChA+Xec9UuVPm9RqJlo7Ss6HqiDcHw=
Subject key identifier: 78:22:4A:E1:CF:AD:28:67:25:1B:FA:EE:7E:11:80:49:57:03:6D:52
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D603
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/01FB0C80A73811EFACE17B88762E951A.roa
Signing time: Wed 20 Nov 2024 12:07:27 +0000
ROA not before: Wed 20 Nov 2024 12:07:23 +0000
ROA not after: Tue 24 Dec 2024 12:07:23 +0000
asID: 152711
IP address blocks: 45.202.209.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54787 (0xd603)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 12:07:23 2024 GMT
Not After : Dec 24 12:07:23 2024 GMT
Subject: CN=673dd0fe-6b24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:06:ad:37:1d:1c:2c:32:5d:64:0c:1e:04:cd:
22:22:37:c1:82:0d:60:79:15:5c:ac:17:8e:67:6f:
c6:b5:ec:c8:87:62:55:ed:88:8f:44:f1:4a:07:0a:
df:13:69:82:3f:65:b4:07:10:e6:01:34:43:85:12:
49:39:9c:e8:90:2c:53:7c:8d:9c:0f:8a:11:fd:15:
f5:b9:ed:f2:3b:31:8c:bb:f3:25:f7:b0:46:09:cb:
b4:57:de:8f:cc:ee:77:68:75:11:aa:1f:94:3f:31:
82:33:eb:f4:64:53:43:98:b4:ab:36:8f:a7:30:af:
c4:1f:f2:49:69:be:7e:a0:56:33:09:d1:f3:c4:7c:
11:0e:d4:c3:a4:10:45:d1:13:13:3a:0e:5c:ed:11:
55:8e:8b:09:1b:c3:2e:1e:81:a2:41:ac:19:72:3a:
64:a7:af:07:9d:a9:bf:eb:49:ee:7c:61:a7:95:b2:
13:aa:a3:e4:10:5c:0e:ea:12:1b:af:b7:6b:4c:96:
eb:0e:24:7e:1c:e7:24:72:d4:22:7d:b4:7c:6b:05:
d9:7f:55:56:95:e6:75:52:09:47:82:b7:94:5c:e5:
2d:40:6c:c8:02:ea:52:90:a3:50:1b:4f:13:04:4c:
6e:e4:59:24:71:f4:48:2e:3b:6f:f9:45:44:56:bf:
6b:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:22:4A:E1:CF:AD:28:67:25:1B:FA:EE:7E:11:80:49:57:03:6D:52
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/01FB0C80A73811EFACE17B88762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.209.0/24
Signature Algorithm: sha256WithRSAEncryption
72:a1:68:9c:05:25:b0:c9:fd:51:b3:0b:75:db:40:d3:c1:43:
d4:54:c0:0c:cb:85:68:75:55:39:a3:99:b3:f0:20:2f:2b:b7:
d9:d9:04:0f:02:28:21:9c:48:67:f7:b0:55:d4:1a:1f:5f:1e:
21:f2:75:ca:55:f7:0c:00:44:09:21:c0:24:34:1a:ae:0e:f9:
3d:ba:ca:76:fb:4f:45:a7:a2:21:7e:0e:92:ea:b5:6e:f1:95:
26:b5:0e:df:73:85:6a:2a:7d:fc:11:54:4c:73:37:68:55:76:
48:96:a2:07:4e:ad:76:f0:2e:2c:e2:40:7c:3b:09:f0:24:16:
e4:1a:00:df:23:12:c5:25:85:13:61:97:24:e6:37:86:1c:6d:
a6:c2:48:27:dd:54:b6:6f:2b:2b:50:d1:e1:4e:30:3c:09:07:
d4:4d:a6:92:d6:f0:7e:6e:31:d8:21:7b:2c:0f:71:ba:53:1a:
23:9e:68:de:c5:be:1a:13:b5:1c:ce:36:50:06:02:91:fa:e9:
d8:eb:c9:3d:00:f3:0f:b8:98:d5:31:c3:2b:7c:7e:bf:e3:32:
c0:4f:67:42:c3:b6:19:0f:dc:d5:19:da:b6:47:ab:dc:da:0f:
c6:f4:3a:4c:18:0d:f4:4f:95:6e:54:4c:d5:96:67:f7:f6:bb:
0e:ec:a4:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:16 2024 by rpki-client on console-fra.rpki-client.org