Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/11E4421074C511EF99CFC792762E951A.roa
File: 11E4421074C511EF99CFC792762E951A.roa (raw, json)
Hash identifier: mCTwM0eiJdcodrRyd0qt3ypIVr7M1VHl5s/W3+Z5NMo=
Subject key identifier: BF:E4:F5:35:49:6F:AF:6D:FA:9F:6E:46:2B:3A:D5:0B:6F:8A:8E:52
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B792
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/11E4421074C511EF99CFC792762E951A.roa
Signing time: Tue 17 Sep 2024 07:18:43 +0000
ROA not before: Tue 17 Sep 2024 07:18:39 +0000
ROA not after: Fri 08 Aug 2025 07:18:39 +0000
asID: 133861
IP address blocks: 45.207.33.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46994 (0xb792)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 17 07:18:39 2024 GMT
Not After : Aug 8 07:18:39 2025 GMT
Subject: CN=66e92d53-053f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:30:60:5f:30:a0:a8:93:1f:fd:0a:91:1c:82:
72:4d:1f:bf:ef:1d:09:99:30:bb:03:bc:52:ee:18:
18:71:29:7b:73:bd:98:ce:93:dc:df:de:6b:1b:08:
1a:4b:99:e1:37:06:ce:99:41:8b:1a:3c:ed:39:96:
ef:57:1b:7f:07:a0:18:ff:55:2e:55:8a:56:91:bd:
43:77:b3:9e:d0:f0:a3:f4:81:f4:d4:9d:d1:5f:94:
b6:27:5b:75:96:96:e0:16:99:12:23:16:6a:c7:42:
a7:4a:58:de:29:b8:8d:a0:25:6f:38:26:1e:2d:67:
99:1b:b4:78:0e:0b:6a:76:e9:dc:7b:95:03:9c:b1:
3b:f0:ed:4d:b6:76:57:b3:8a:30:88:a6:b4:84:76:
15:9b:29:ca:87:0f:e5:9c:d1:b7:5c:e1:8e:aa:19:
30:26:16:90:c6:7e:c6:40:38:4b:68:a9:f5:c4:2a:
86:ac:cd:01:7e:cb:5a:ba:92:dc:2a:12:98:c9:81:
16:18:71:d4:90:87:bb:98:4c:af:fa:0c:3e:73:76:
67:12:27:f3:8d:f6:47:3d:ef:3e:29:0c:73:2d:49:
3f:a4:85:07:79:d5:21:fb:55:40:40:cd:c9:bb:93:
d6:e3:b6:09:88:65:0d:e6:bb:2b:80:04:02:f5:f0:
7a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:E4:F5:35:49:6F:AF:6D:FA:9F:6E:46:2B:3A:D5:0B:6F:8A:8E:52
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/11E4421074C511EF99CFC792762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.33.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:e2:10:3e:90:41:e4:8f:3a:5e:19:d7:ff:ba:28:d6:2f:7f:
5c:19:a8:9d:dc:b0:2d:d4:93:af:b9:ef:7e:21:62:1b:2f:4c:
26:ec:4e:16:16:4f:ae:09:a7:7e:b2:9b:4c:37:1c:42:8b:d0:
6b:1c:3c:55:45:7b:05:13:c7:cb:91:d5:67:c4:5a:8f:3f:e2:
b6:5b:2b:fe:fa:4f:1f:87:20:e3:77:04:84:5f:96:af:37:78:
a2:45:c5:8e:24:10:5c:6c:ba:e9:08:bc:ff:20:83:95:5c:e5:
8f:82:90:f9:84:c3:2e:87:7e:c6:83:55:ad:da:67:dd:07:86:
17:24:97:2e:b9:4f:2b:40:37:48:14:fc:52:5b:d9:70:eb:12:
46:fe:16:21:88:ec:49:47:0c:3d:4d:86:ea:17:b0:53:6a:9f:
9e:61:89:ef:66:e8:f7:31:d1:a8:3c:41:f8:a4:35:0f:17:af:
d7:91:4b:f2:b5:7a:a3:8d:d5:bb:48:f1:46:9d:77:f5:87:e2:
32:70:86:eb:ad:58:51:77:a0:a1:22:84:3d:53:3b:21:46:f5:
6b:47:b9:87:b1:ee:a1:87:79:8f:ff:69:e6:d2:1f:29:74:95:
55:44:1a:d3:08:07:f6:a1:b7:27:04:c5:56:1c:7c:95:be:52:
f7:5c:54:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:18 2024 by rpki-client on console-fra.rpki-client.org