Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0A7698EC9AAA11EF8F58E15A762E951A.roa
File: 0A7698EC9AAA11EF8F58E15A762E951A.roa (raw, json)
Hash identifier: YYQO4nBaB9WPPSOQqI8A5k2bP5LoyIQ1sipyeiWZa0I=
Subject key identifier: 29:E4:C7:9C:BA:C6:BC:21:71:99:4E:33:AF:76:4F:0B:69:A1:E2:2D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CD82
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0A7698EC9AAA11EF8F58E15A762E951A.roa
Signing time: Mon 04 Nov 2024 12:40:58 +0000
ROA not before: Mon 04 Nov 2024 12:40:54 +0000
ROA not after: Tue 03 Dec 2024 12:40:54 +0000
asID: 54801
IP address blocks: 45.201.216.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52610 (0xcd82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 4 12:40:54 2024 GMT
Not After : Dec 3 12:40:54 2024 GMT
Subject: CN=6728c0da-b2f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:30:b6:d6:42:92:4f:a1:c6:b8:50:85:aa:c6:
22:d0:83:11:2d:f2:11:74:77:6d:18:0b:a9:ba:d4:
9d:89:4c:5b:b1:6b:79:3a:a9:79:b5:54:07:d5:bf:
08:78:08:19:3c:83:a4:75:3f:4a:b7:d6:6c:c5:d0:
92:89:d9:90:f5:bb:08:5e:bb:72:36:67:05:cc:c3:
e7:c3:3d:d7:1d:0d:c4:a0:4e:83:fe:a9:b4:ef:3f:
f2:a2:f7:53:c6:29:36:34:72:9b:db:6b:8a:02:7c:
26:26:c7:30:7a:73:dd:80:7e:00:1a:17:49:8f:18:
fe:5f:c4:63:70:48:1c:dc:b5:35:4f:b9:66:12:15:
ff:94:60:41:31:ca:8b:f2:59:25:18:f8:38:9f:7d:
e0:69:00:73:06:1f:32:34:32:47:cf:fc:c7:b8:6b:
4f:1f:ec:18:f3:c2:97:d3:7f:a5:4c:e0:53:2d:5c:
c0:c5:e4:54:19:73:1f:9a:43:22:3b:d0:97:06:60:
59:1c:72:7a:e4:0a:89:1c:cf:09:e4:93:c4:76:fd:
c8:26:a6:cd:4f:04:51:44:d5:dc:fe:83:c7:3a:70:
5a:a5:7d:7d:5c:7c:b1:47:e4:c4:59:bd:7f:e8:93:
20:24:c3:32:88:d9:e3:d3:33:64:02:1c:27:fc:45:
51:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:E4:C7:9C:BA:C6:BC:21:71:99:4E:33:AF:76:4F:0B:69:A1:E2:2D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0A7698EC9AAA11EF8F58E15A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.216.0/21
Signature Algorithm: sha256WithRSAEncryption
13:6e:48:19:8e:cd:8d:b4:81:71:a7:7a:08:ec:b7:bb:3a:9f:
a7:2b:b5:df:72:a4:62:6c:17:d9:98:37:aa:b4:16:de:0a:8a:
b5:73:ce:e3:86:b1:db:26:1f:fa:4a:32:ea:ec:df:df:b1:99:
2a:21:01:21:b1:b8:d5:95:5c:bd:8e:5b:d1:13:c8:7d:e9:48:
3f:cc:8e:44:b7:4f:bf:72:79:fd:09:cf:30:70:db:e3:56:1a:
f1:a9:b0:14:00:ea:63:1e:68:30:aa:94:b1:11:3e:43:d0:13:
a8:53:a0:3d:85:92:23:d9:52:95:51:28:fe:3f:18:0d:80:98:
4a:96:2c:b4:76:a8:aa:0b:4b:81:0a:19:98:b9:c1:59:2b:bb:
04:5f:a3:77:e8:b1:7f:60:34:ef:da:a3:35:94:23:98:db:01:
93:d8:97:0b:e6:b7:a7:dd:79:9f:50:72:3d:1c:75:6a:1b:e7:
47:26:47:6e:31:c1:85:10:f5:8a:98:49:e1:48:12:d3:da:53:
4a:9a:27:16:5c:41:97:15:2f:5d:e1:d5:53:37:d5:15:72:b7:
cf:f9:ff:eb:1c:4b:b3:f1:8e:f5:9c:fd:47:7e:5f:63:31:b3:
1e:38:0a:40:e6:64:0e:8d:40:21:45:73:88:1a:4b:91:56:37:
b9:94:7e:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:17 2024 by rpki-client on console-fra.rpki-client.org