Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1AD0428E7E3E11EF93F68FB0762E951A.roa
File: 1AD0428E7E3E11EF93F68FB0762E951A.roa (raw, json)
Hash identifier: 5kYiYZkHrLiAwXTG3FmDDyGaTCCs7bo3FeEtikUu++k=
Subject key identifier: 7C:5C:8E:AC:0B:9E:0A:23:87:89:8B:C0:87:AC:26:93:BB:8F:2F:B2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: BC7F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1AD0428E7E3E11EF93F68FB0762E951A.roa
Signing time: Sun 29 Sep 2024 08:37:47 +0000
ROA not before: Sun 29 Sep 2024 08:37:44 +0000
ROA not after: Mon 30 Dec 2024 08:37:44 +0000
asID: 17561
IP address blocks: 45.194.123.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48255 (0xbc7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 29 08:37:44 2024 GMT
Not After : Dec 30 08:37:44 2024 GMT
Subject: CN=66f911db-9123
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3e:1a:ca:ea:22:17:45:a4:12:c5:63:29:64:
41:ff:e1:c1:e7:47:bc:ca:65:f0:e9:b3:d2:3f:5b:
7d:a0:01:cc:0c:68:9d:1f:3c:97:a3:df:5b:39:41:
89:e2:18:11:68:35:69:43:16:b7:2e:eb:d8:ce:ef:
e7:b4:2c:ac:e4:1c:08:01:3b:b0:75:22:b4:74:44:
c2:b0:c1:d6:7d:0c:e6:3f:89:0a:a1:1f:61:f5:e3:
b7:47:51:56:11:0d:87:c6:93:ff:89:57:90:84:83:
22:6d:b6:2b:14:ae:91:14:e4:06:85:ac:c9:dd:31:
ab:9d:81:2d:bd:61:d1:36:05:8d:75:a4:b3:7a:4a:
bb:c9:76:28:ac:9d:48:96:0e:27:fd:01:3f:ea:ee:
27:b1:3f:45:c9:78:5e:aa:e6:92:63:0a:74:2f:f0:
49:42:3b:6e:26:07:c2:e6:04:d8:86:11:fe:38:46:
4d:60:cc:29:4f:5b:7c:2a:a0:92:db:82:9b:16:be:
e1:83:c3:3e:75:47:32:48:f8:d0:8a:6c:6c:8f:02:
e3:6e:20:56:88:37:7c:d7:b6:c6:c3:a2:0a:41:82:
1d:01:ce:3e:95:67:60:22:1f:80:22:4b:bd:c4:f3:
06:e6:36:a4:84:d6:3a:fa:41:40:24:9f:ea:cc:70:
e3:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:5C:8E:AC:0B:9E:0A:23:87:89:8B:C0:87:AC:26:93:BB:8F:2F:B2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1AD0428E7E3E11EF93F68FB0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.123.0/24
Signature Algorithm: sha256WithRSAEncryption
41:02:e8:7e:50:57:15:94:66:a9:40:14:b5:b3:8a:91:0b:56:
20:f5:e9:81:33:91:82:a6:cb:bb:6d:7b:9d:2e:31:29:cf:0e:
54:c1:d9:2c:39:df:30:ce:11:fd:60:6b:de:32:55:66:6c:ae:
c7:61:80:16:35:bf:0d:ec:a6:5a:e1:b6:10:64:cd:fe:93:ee:
7e:15:c9:3b:4c:d6:90:47:09:fb:88:ce:7a:90:c1:9f:50:15:
80:84:c2:fb:d6:bd:10:14:c5:2f:42:30:d7:11:c7:b5:da:df:
8e:ea:42:55:00:95:c9:fb:6c:0a:48:68:47:0a:b9:2c:45:25:
fd:7d:bd:ea:9a:05:a8:87:82:b8:f3:ef:48:53:6c:93:45:8f:
fd:2b:a8:a2:bf:43:72:3e:07:7c:1d:eb:03:2c:35:0f:2c:75:
99:06:82:c4:03:18:de:75:e8:82:00:7b:28:cc:2d:a7:98:8e:
3f:f8:0b:1f:d5:24:4d:28:b8:f0:19:11:7e:24:a4:2e:60:c1:
3a:a4:97:82:93:f1:0e:45:72:bf:75:07:c7:fd:25:f7:e0:f6:
23:8b:c7:b6:67:63:5d:3e:69:f8:40:d8:ea:e1:66:63:43:19:
03:81:b8:cf:4d:c1:40:37:73:0b:35:8a:82:51:a9:51:e4:85:
82:78:73:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:20 2024 by rpki-client on console-fra.rpki-client.org