Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1479CE4C9AA811EFB4A9004E762E951A.roa
File: 1479CE4C9AA811EFB4A9004E762E951A.roa (raw, json)
Hash identifier: f0txfxk0zfNYIAWUpp5CO8Zt8Ob+OzOkIy/hKBKEzIA=
Subject key identifier: AF:07:71:7C:17:F6:1C:DD:3E:1C:99:42:85:71:BE:4E:DD:7C:DE:20
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CD6E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1479CE4C9AA811EFB4A9004E762E951A.roa
Signing time: Mon 04 Nov 2024 12:26:56 +0000
ROA not before: Mon 04 Nov 2024 12:26:52 +0000
ROA not after: Tue 03 Dec 2024 12:26:52 +0000
asID: 54801
IP address blocks: 45.207.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52590 (0xcd6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 4 12:26:52 2024 GMT
Not After : Dec 3 12:26:52 2024 GMT
Subject: CN=6728bd90-8bf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:59:35:9a:d6:34:f4:6c:fd:78:71:64:90:70:
c7:89:70:78:4d:14:76:c5:9c:8c:f5:cc:d9:2f:81:
2b:5d:1b:6f:4c:ae:c7:72:e7:cc:3b:6e:2f:14:8f:
dc:8c:d0:b9:94:08:65:56:37:ac:bb:44:9b:ec:5c:
50:01:26:03:74:72:ff:6a:09:5e:cc:91:86:92:95:
6b:31:f2:95:cd:52:ce:71:78:93:8e:1c:67:8d:bf:
55:52:26:5c:24:92:5e:90:dc:62:4d:e9:57:7c:74:
31:bd:1c:91:87:18:e9:d8:b1:e4:ac:e7:d4:9c:c4:
63:dd:b4:dc:4c:42:0a:ab:75:99:cc:2a:7d:4c:6b:
ad:e9:97:95:38:d6:06:b1:13:6b:96:19:cb:6c:84:
61:51:03:56:0a:86:5d:1a:ce:29:02:27:f3:33:ed:
ff:b6:46:17:33:12:ba:8d:12:e5:32:db:32:3a:af:
54:f5:38:eb:8d:fe:e9:2c:ff:5d:c9:fc:87:1c:c0:
a6:ef:96:56:08:e1:9f:7e:59:14:0e:8c:43:a8:36:
97:a9:70:89:a0:3a:2f:95:68:0f:00:d7:9a:d3:ed:
70:66:83:e1:4a:6e:04:f5:13:52:96:1d:10:31:0f:
3e:f8:2c:a5:84:eb:7c:6a:ee:a1:a7:4f:28:09:ec:
d2:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:07:71:7C:17:F6:1C:DD:3E:1C:99:42:85:71:BE:4E:DD:7C:DE:20
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1479CE4C9AA811EFB4A9004E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.224.0/19
Signature Algorithm: sha256WithRSAEncryption
1a:e4:8a:b9:2a:b2:ac:ee:84:ce:2f:c6:76:f1:e6:cb:25:32:
5e:5d:81:83:cf:61:3e:af:9b:6b:ab:ef:b0:cc:2e:37:da:bd:
62:a2:e9:7a:a9:1e:be:85:f6:ba:9a:3e:01:fa:ee:04:e7:d7:
08:04:c1:01:02:e3:9f:4f:b6:52:47:35:9b:c7:03:28:e9:c8:
2a:54:a1:dc:b3:e1:49:ac:01:46:10:18:8c:8e:95:27:8b:a5:
f0:67:62:f9:21:3f:30:77:eb:b4:f7:e2:a5:7f:1b:e6:80:b4:
43:fb:62:49:69:90:b3:61:50:c6:16:7a:52:60:d1:58:8c:84:
d5:1d:7e:1d:6f:c0:05:97:6d:eb:e7:92:bd:85:68:2e:34:97:
4e:3d:ce:20:0c:ab:ae:f3:e9:4c:19:ed:0f:73:c8:8d:f3:b6:
a1:a9:4e:b9:ef:d5:06:5b:c2:6a:01:81:de:b3:fa:0b:9a:97:
65:2b:80:a1:47:fd:84:49:f8:de:77:0e:02:79:b6:1e:04:17:
2e:7d:18:6e:ec:f5:69:13:58:7c:49:f8:a7:58:16:c0:71:43:
b1:13:36:20:73:7b:91:9e:b1:51:f2:90:b4:23:3e:e8:99:14:
d0:79:7b:bd:8c:c9:e2:47:14:cd:a8:b7:7f:9a:75:30:8b:3f:
83:a6:fb:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:19 2024 by rpki-client on console-fra.rpki-client.org