Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1979E63274C611EF874E8797762E951A.roa
File: 1979E63274C611EF874E8797762E951A.roa (raw, json)
Hash identifier: BjKM6d69satffRt+SX5zqTf+6D/2CYdWrWPsXXY4S+g=
Subject key identifier: 5A:14:63:F7:BE:0E:A6:F7:A7:09:70:63:EC:E6:C5:E8:43:37:1A:6A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B7A0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1979E63274C611EF874E8797762E951A.roa
Signing time: Tue 17 Sep 2024 07:26:05 +0000
ROA not before: Tue 17 Sep 2024 07:26:02 +0000
ROA not after: Fri 08 Aug 2025 07:26:02 +0000
asID: 133861
IP address blocks: 45.204.2.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47008 (0xb7a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 17 07:26:02 2024 GMT
Not After : Aug 8 07:26:02 2025 GMT
Subject: CN=66e92f0d-4ca8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a5:88:7e:c1:87:89:18:5f:3d:2e:92:b9:b0:
2e:5f:b4:17:d7:4e:2f:7f:a5:3b:d0:eb:74:16:33:
63:49:77:cd:46:d8:85:39:d5:21:76:61:e2:5f:70:
0c:c6:ce:b0:52:0c:f6:c3:6a:cf:e3:54:93:75:32:
72:ce:4f:c0:55:79:be:a5:6a:e8:4e:a7:68:cb:ec:
1d:ff:e4:e3:64:1b:03:5e:87:21:0a:4e:49:24:8b:
dd:1e:3f:8f:f1:3b:21:ac:94:b8:9d:47:f4:dd:f2:
23:c9:3d:de:9c:e0:29:e0:c2:81:12:09:d4:4f:e9:
f8:9e:51:d1:a4:d7:7c:d9:85:e6:d3:a5:a6:aa:47:
5b:46:59:63:65:fc:85:43:e9:8f:1d:b8:c7:da:eb:
fc:84:4b:32:8f:af:49:a6:77:a9:4d:27:87:0b:d4:
e8:f7:e3:c4:21:22:6f:b8:7a:eb:0e:65:03:ed:1d:
d6:9a:e0:51:7c:52:28:72:a0:dd:4b:29:73:84:b0:
66:99:b1:81:38:da:b0:4f:cd:26:bb:c7:89:93:67:
a5:6f:cd:1d:b6:9c:9d:23:4f:f2:4a:40:94:34:51:
a4:13:0e:ec:24:e2:05:06:07:b7:85:d0:9d:67:e7:
61:f0:3d:76:66:38:9e:a0:ca:d7:e4:ba:e0:02:62:
0e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:14:63:F7:BE:0E:A6:F7:A7:09:70:63:EC:E6:C5:E8:43:37:1A:6A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1979E63274C611EF874E8797762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.2.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:72:f6:ab:49:f0:96:2e:97:f3:47:ed:db:d0:c8:9f:3e:ac:
07:ce:a8:ac:fc:0b:d0:a6:80:7f:ad:f9:73:a6:40:86:96:aa:
f2:76:14:12:df:6d:52:db:98:d7:bc:47:24:8f:65:51:0a:19:
16:b0:b8:35:1f:51:83:0b:d8:dc:ee:24:9c:8c:ee:97:b3:9a:
eb:45:92:f2:c6:06:63:98:e9:24:42:18:a7:d6:9e:a9:32:b5:
ea:7d:ea:b0:cf:a7:18:63:9c:b9:64:96:32:c4:fc:f3:f3:e7:
a3:f2:d2:48:9a:62:18:ef:3d:59:8e:0b:85:4c:ec:56:88:bd:
cc:52:fa:51:53:c0:b2:ba:02:32:b8:32:be:3e:a3:32:50:ce:
2f:38:54:e3:6a:a9:23:46:dc:2c:19:6f:e8:1c:70:84:88:9d:
a0:2d:10:22:96:19:da:34:54:3e:01:91:a0:c7:02:65:5a:19:
01:c6:af:49:fb:95:18:88:cd:c3:04:aa:24:06:f7:11:e4:f8:
0b:c5:e9:bd:7f:93:67:48:97:c3:56:2d:c3:b5:99:ad:72:44:
5b:81:fb:70:29:20:bb:81:13:35:79:16:57:57:8e:89:ee:c2:
33:5f:4b:55:3e:21:6d:b8:96:fc:cc:47:fa:53:c5:91:20:e1:
e3:cc:a0:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:20 2024 by rpki-client on console-fra.rpki-client.org