Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/093084745B9A11EFAF32CF45762E951A.roa
File: 093084745B9A11EFAF32CF45762E951A.roa (raw, json)
Hash identifier: 1Bj8YUkLK062GzleAT6GmmZCrZ5d0K6M+PjWFSvo+go=
Subject key identifier: 48:4B:94:AB:C8:10:85:CF:73:BC:60:BD:38:1D:3B:CE:54:12:71:7D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: A7BA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/093084745B9A11EFAF32CF45762E951A.roa
Signing time: Fri 16 Aug 2024 06:37:41 +0000
ROA not before: Fri 16 Aug 2024 06:37:38 +0000
ROA not after: Mon 24 Mar 2025 06:37:38 +0000
asID: 132513
IP address blocks: 45.200.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42938 (0xa7ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 16 06:37:38 2024 GMT
Not After : Mar 24 06:37:38 2025 GMT
Subject: CN=66bef3b5-e10f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:81:0d:cf:c8:aa:a0:9c:8b:25:46:fd:8a:5c:
65:a1:d4:95:60:95:f0:29:1d:dd:52:11:af:f6:4e:
a5:8a:d6:e0:3d:95:30:76:44:2c:9c:25:cd:09:da:
85:60:eb:5e:1a:d5:54:27:fc:1c:10:f0:8f:89:f2:
18:1c:80:f6:e2:18:c9:4d:ca:39:2a:a8:64:e3:39:
b8:50:ad:a1:2d:ea:74:ac:ce:f5:80:c8:fb:9e:b5:
dd:ed:84:56:80:f8:05:32:b5:a2:94:30:a0:60:43:
bc:c2:99:fc:10:e5:e7:17:f0:f7:09:ca:39:a9:15:
4f:b2:42:3c:ff:23:19:ea:1d:04:8b:02:90:5f:79:
40:31:3c:2b:e6:8f:5b:c2:59:45:03:b3:ac:cb:36:
13:25:ab:83:46:e4:93:16:3b:ce:f3:12:ad:5b:8c:
33:c2:34:aa:56:eb:0a:ab:7d:a5:fb:0a:01:ac:66:
ff:ca:e9:00:db:24:40:03:d2:51:12:5e:33:2c:01:
31:b8:56:83:17:b5:65:d2:19:53:a0:47:f6:14:c7:
93:ae:67:1b:e2:60:26:d5:10:0e:47:10:1f:64:94:
4b:9f:aa:a2:b4:ea:1c:da:d6:e5:5f:68:f9:6d:6c:
b9:d5:96:a5:0a:8a:0c:22:5f:1c:54:29:1d:71:2b:
95:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:4B:94:AB:C8:10:85:CF:73:BC:60:BD:38:1D:3B:CE:54:12:71:7D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/093084745B9A11EFAF32CF45762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.151.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:07:d5:24:2a:9c:38:96:69:59:a0:52:62:34:6b:cf:32:a5:
00:0d:d9:81:25:c3:f8:4d:40:9a:e5:62:8c:30:d9:15:fa:31:
bf:03:80:b4:c2:1b:31:bf:e3:b1:17:a2:bb:d8:56:21:4f:2c:
50:0e:4b:e3:55:29:e8:77:b8:28:ab:7e:50:44:81:38:50:0f:
c3:e1:75:9a:29:23:4c:b1:f2:9f:00:e4:e7:72:68:6b:41:d8:
26:2c:e5:98:c2:dc:83:b3:fc:ea:c8:df:6e:d2:b5:f8:db:f6:
3a:06:8a:de:d9:fd:3e:25:d0:8f:85:1c:45:ac:cf:14:af:51:
47:11:57:60:f4:07:e0:a8:e1:e4:a3:7c:01:cd:4a:fd:bd:74:
78:c1:dc:cb:62:65:86:d4:37:4b:33:44:04:3d:9f:4c:1e:b0:
93:36:24:2d:ab:7c:6b:85:ab:3f:3b:58:1e:26:05:36:b8:d6:
3a:83:1d:ec:d2:b2:32:6e:95:21:8e:31:58:80:75:fa:17:02:
fb:1f:4a:75:be:da:08:61:15:a7:9f:b4:a9:ed:6a:1e:86:21:
50:b5:dc:1b:d9:87:bf:81:67:c8:51:96:a3:52:e6:81:8d:41:
64:62:29:d3:38:30:b9:d9:2b:e9:a6:e2:23:47:74:d0:b8:5c:
1d:46:61:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:17 2024 by rpki-client on console-fra.rpki-client.org