Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/23511B12A74D11EF98AEB28D762E951A.roa
File: 23511B12A74D11EF98AEB28D762E951A.roa (raw, json)
Hash identifier: F7qSSZjynBZLvRZ7GZ5n9gkpgFMnOqR54p90S+jajMM=
Subject key identifier: D7:0E:82:DB:DC:DE:A9:2F:8F:D5:B5:CC:0B:EC:C7:E7:5E:49:DA:D5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D6C2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/23511B12A74D11EF98AEB28D762E951A.roa
Signing time: Wed 20 Nov 2024 14:38:42 +0000
ROA not before: Wed 20 Nov 2024 14:38:38 +0000
ROA not after: Sat 30 Nov 2024 14:38:38 +0000
asID: 202656
IP address blocks: 45.199.223.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54978 (0xd6c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 14:38:38 2024 GMT
Not After : Nov 30 14:38:38 2024 GMT
Subject: CN=673df472-498d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9b:2b:ae:f1:30:d5:0c:fb:a0:ba:ee:17:9a:
da:b8:1f:45:e0:f7:06:13:0e:e9:03:48:b7:f7:3a:
88:8a:32:8a:30:cb:c4:a8:fb:4e:7c:33:9d:f0:43:
e4:b2:15:de:12:ac:cb:6d:10:df:c3:de:55:09:57:
48:c5:6f:4b:2b:a1:32:73:87:80:9c:93:9b:2e:db:
2e:37:48:3a:1f:91:18:3f:3e:3f:ab:ac:b0:f2:5f:
86:91:ac:2a:34:d5:35:6f:50:d2:cf:b0:13:e7:e8:
fa:a0:3f:af:72:14:ed:cf:2b:d9:e0:7d:45:67:d2:
b7:01:c8:90:4f:f2:58:d7:b6:57:73:a6:c0:ce:ca:
7f:e6:62:17:60:ff:1b:f4:cd:fc:c4:8e:9c:fe:7a:
37:7c:27:07:8f:51:55:b2:76:10:3d:e9:fd:f7:93:
0c:51:7f:80:08:8f:87:45:8c:a4:02:5f:7b:24:ef:
67:bb:77:40:86:a6:d4:1d:43:bd:93:fc:b5:05:6a:
5b:1d:59:c0:2d:e6:57:ee:04:34:73:13:a7:24:b5:
1b:98:e5:2e:c0:ad:1f:00:39:54:d7:bf:cc:55:e4:
e7:d9:ce:8b:f0:60:0c:ae:91:32:de:8e:6b:ab:22:
f6:8a:c7:89:d8:de:d1:d1:5b:d7:91:19:04:23:4e:
7b:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:0E:82:DB:DC:DE:A9:2F:8F:D5:B5:CC:0B:EC:C7:E7:5E:49:DA:D5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/23511B12A74D11EF98AEB28D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.223.0/24
Signature Algorithm: sha256WithRSAEncryption
98:42:83:78:48:71:f7:df:7b:6a:0f:9a:a2:3b:73:16:ac:6b:
4f:e0:f2:e0:8c:81:cb:41:61:dd:03:6a:dd:66:67:84:cd:4d:
ed:39:82:b8:04:ee:6d:49:a8:8b:d6:8c:80:29:bc:c5:dc:94:
ba:8c:aa:fe:35:d3:8f:68:4a:50:a2:9f:46:3b:65:60:2e:ee:
2e:46:0c:7c:4b:2e:2d:a9:7f:5b:a8:31:85:85:28:0f:90:2d:
df:05:b4:69:ca:4f:5d:c1:18:5a:a2:5a:49:6f:00:a0:57:01:
59:c7:fd:00:c8:ed:3e:8f:ff:4e:23:ee:ba:6d:05:cc:26:d4:
8d:ca:a5:e4:ff:a6:9f:44:73:77:7e:b9:c3:0d:e1:6c:7d:9d:
28:55:26:6b:20:56:d4:cf:f2:5c:1d:99:7d:fb:b8:15:fa:fd:
ef:c7:3a:4c:e2:b0:df:1d:7e:86:55:7b:aa:77:82:3f:36:17:
cc:66:ec:d2:45:46:4d:f7:59:23:82:53:9f:04:63:63:c5:cb:
da:78:9a:d5:01:47:c5:71:2b:e6:2d:db:9a:a9:f2:de:00:e4:
91:63:bd:25:2e:84:c4:f4:96:5d:a3:5c:b7:39:55:50:3d:6e:
25:3d:37:0f:a7:f4:57:75:9b:b8:af:0c:5c:31:e0:ea:51:95:
b5:14:11:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:23 2024 by rpki-client on console-ams.rpki-client.org