Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/02FDA17C9B5A11EF9CDBC2B3762E951A.roa
File: 02FDA17C9B5A11EF9CDBC2B3762E951A.roa (raw, json)
Hash identifier: 1/I8q7crrt68RCqX3fRKyTxqh0Tg/Twx092DzodWO5E=
Subject key identifier: D0:4A:22:AA:BB:5D:63:20:A3:0F:7B:96:F1:FD:86:E8:A4:24:F3:00
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CE3D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/02FDA17C9B5A11EF9CDBC2B3762E951A.roa
Signing time: Tue 05 Nov 2024 09:40:37 +0000
ROA not before: Tue 05 Nov 2024 09:40:33 +0000
ROA not after: Sat 07 Dec 2024 09:40:33 +0000
asID: 137897
IP address blocks: 45.204.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52797 (0xce3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 5 09:40:33 2024 GMT
Not After : Dec 7 09:40:33 2024 GMT
Subject: CN=6729e815-e5da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c6:67:4a:f3:6f:18:3b:5c:1f:2e:8d:7d:1f:
7c:cb:f7:d8:dc:b1:7c:e8:10:41:60:94:86:1f:16:
c3:68:94:cd:6e:a2:ab:6e:9b:f7:b9:4d:7e:2a:43:
3e:82:46:62:77:7b:fd:88:4e:3d:37:9d:87:fb:e0:
4c:a3:2b:aa:36:8e:cd:c6:90:cd:a2:ee:d5:3c:a3:
dc:5d:a4:99:3b:61:ea:23:28:1d:7e:dc:ac:78:c5:
40:ee:82:11:cc:2d:6b:91:c0:ca:17:e5:02:6b:ce:
60:21:df:f9:c1:a0:22:0c:2a:d0:7b:81:a4:dc:eb:
2a:f1:7a:fc:74:c7:39:06:ba:86:3d:55:14:dd:d9:
35:13:3f:cc:41:49:73:e9:50:80:ea:33:8e:c8:bd:
fc:7f:08:21:ba:7d:ed:3b:eb:b0:89:8e:df:3e:fe:
c4:4c:ab:0f:a1:ea:08:14:5a:7a:3d:e1:dc:be:79:
57:eb:cb:1a:68:a6:b9:d4:b6:80:db:14:23:69:95:
12:bb:66:8d:cb:53:35:be:f6:4c:71:27:50:7a:5e:
f0:a1:6f:99:d4:5a:5d:79:c0:a8:5f:d4:64:8e:bb:
0a:56:8b:40:be:90:17:d3:78:03:89:f7:32:1c:97:
c5:c5:23:ca:65:15:ab:f0:d3:14:7d:3e:46:18:33:
4e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:4A:22:AA:BB:5D:63:20:A3:0F:7B:96:F1:FD:86:E8:A4:24:F3:00
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/02FDA17C9B5A11EF9CDBC2B3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.141.0/24
Signature Algorithm: sha256WithRSAEncryption
88:3c:88:da:bc:0f:66:1c:9a:e4:aa:c1:78:07:64:00:6b:e0:
bb:7d:20:4b:ff:da:9b:1c:e2:00:8f:06:69:97:ec:59:66:7f:
5a:db:a8:bd:52:60:7f:6e:36:6e:8c:04:af:9e:16:db:26:c1:
4f:8d:de:e9:a8:bb:28:b1:4f:44:5a:3c:9d:e3:87:d4:0e:0d:
27:12:f6:35:71:4e:fd:c1:c3:53:43:a2:4f:45:bd:a5:82:90:
44:5f:ef:23:87:8c:bc:d5:05:06:bb:52:bb:46:bc:6d:40:5d:
c6:01:07:80:28:b2:7d:06:93:6c:7c:52:ec:cf:0d:0b:44:44:
89:1f:5e:98:0b:fa:22:c1:c0:23:d1:42:1b:4a:6a:3f:0c:93:
55:11:c9:30:f2:14:d8:bc:8f:14:4f:b6:71:b8:c2:93:04:c8:
cd:70:08:47:5c:e0:78:f2:e0:09:4b:30:0a:ce:ef:6d:ae:0a:
db:d7:4e:20:d3:a9:ae:7c:1f:09:4a:c8:5a:0b:4a:f8:4b:01:
55:55:2e:1f:16:b5:31:3c:63:69:33:19:54:85:9d:16:ef:ba:
9f:0f:a4:f8:bb:86:fb:d6:2a:cd:c7:04:8b:b5:3f:ac:c6:2d:
c5:62:56:cd:9b:96:34:da:87:b2:72:d2:e9:b7:b8:56:ba:6f:
63:34:15:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:16 2024 by rpki-client on console-fra.rpki-client.org