Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0AD871384B1911EFACE20477762E951A.roa
File: 0AD871384B1911EFACE20477762E951A.roa (raw, json)
Hash identifier: 8abLmpvdkAZd0TSzjKEZjythR9YW/UcHp0rpSJcCiok=
Subject key identifier: 05:C7:09:27:64:26:26:A1:F5:E2:B9:5C:3D:FE:D7:2C:33:DD:C4:E3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: A052
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0AD871384B1911EFACE20477762E951A.roa
Signing time: Fri 26 Jul 2024 06:34:00 +0000
ROA not before: Fri 26 Jul 2024 06:33:57 +0000
ROA not after: Mon 28 Jul 2025 06:33:57 +0000
asID: 149024
IP address blocks: 45.199.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41042 (0xa052)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 26 06:33:57 2024 GMT
Not After : Jul 28 06:33:57 2025 GMT
Subject: CN=66a34358-817a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:11:79:22:66:1f:0b:8f:61:d8:75:da:19:8a:
23:ad:e3:53:28:ae:dc:be:01:c6:37:9b:39:02:7a:
d3:58:35:0e:0c:e5:5f:30:00:16:a5:8f:e9:02:6a:
a8:06:f2:72:24:47:69:8f:d3:3b:b0:76:1e:f3:7f:
8d:72:87:28:dc:db:1a:06:8c:94:a8:f9:b9:e6:f8:
b0:98:18:df:8c:fc:4a:de:7b:7b:19:39:cb:2a:bc:
62:96:48:e6:0f:67:e0:52:71:39:ab:32:73:81:00:
b3:62:95:55:e3:a6:ab:9d:b1:a9:2e:e3:df:7a:82:
e8:3f:4a:e1:c6:7b:5d:a0:ea:a9:ac:ef:eb:1a:98:
31:09:45:bf:ea:d6:b4:11:22:35:ae:01:da:e3:71:
9c:80:b8:4d:bf:9a:da:84:eb:8b:69:df:fb:9a:26:
f5:48:c3:13:4e:a1:5d:4e:84:fe:3a:0b:b8:53:62:
78:46:b9:bd:01:ae:20:9d:dd:01:9f:5d:64:a8:f6:
ec:33:49:5f:a4:30:f3:2d:cc:12:fa:07:5a:87:d7:
df:7d:88:2b:81:47:be:04:25:d1:9e:e2:cc:35:c5:
9a:34:27:bc:7c:41:f1:8c:cb:06:67:c7:98:47:db:
92:8c:39:7b:b9:59:60:11:ee:42:35:f9:12:f3:62:
71:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:C7:09:27:64:26:26:A1:F5:E2:B9:5C:3D:FE:D7:2C:33:DD:C4:E3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0AD871384B1911EFACE20477762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.180.0/24
Signature Algorithm: sha256WithRSAEncryption
43:9a:81:0e:db:6c:ab:e8:34:5f:c4:86:21:bc:79:df:1b:73:
73:70:af:4e:30:4c:47:8a:5b:08:e1:83:56:17:cb:fd:b7:af:
fe:90:d1:56:1e:b9:89:c2:6b:3a:35:cb:ae:47:b4:0f:1e:45:
e2:99:7f:17:40:69:59:cc:36:8b:f3:da:fb:f9:c3:f7:a0:89:
c8:5d:ce:a2:a9:bc:1e:33:24:a8:da:cd:aa:73:92:66:da:ee:
4a:7d:03:bb:f7:c7:ca:86:7f:c6:cb:9f:0c:47:ce:51:fb:9d:
49:90:f2:ef:80:e8:c2:d2:ac:3c:87:27:b8:21:dc:8b:23:10:
18:67:a7:b3:cc:6d:de:e3:b8:94:82:f5:a1:d4:9f:5e:bc:6f:
e5:c2:97:c9:e0:aa:27:48:15:5c:e5:5d:97:39:3a:8e:a0:46:
86:7f:75:40:b7:ab:8d:b8:bc:5a:8d:7f:4d:ea:83:c9:06:06:
00:34:17:30:ef:5c:c5:0c:46:82:a5:c9:b8:c2:e3:4c:c1:ad:
e1:13:09:ae:b3:32:be:18:1c:09:7b:43:1e:74:64:34:c7:e0:
15:46:b1:df:dd:38:e9:5c:32:12:a7:48:67:21:e6:a6:f8:f3:
2f:fc:23:cf:91:9b:48:84:88:9d:f9:92:21:c4:de:38:b3:3d:
f1:ce:17:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:17 2024 by rpki-client on console-fra.rpki-client.org