Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/23CB82AC719D11EF9A5A2251762E951A.roa
File: 23CB82AC719D11EF9A5A2251762E951A.roa (raw, json)
Hash identifier: MJDvMauEIo0HxdMWiU5hUZkuwBOK/bX5iyPhHLBVktw=
Subject key identifier: F4:4C:EC:EB:B6:A1:3A:54:8C:07:E2:F8:95:0D:00:FE:54:49:0B:C0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B51C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/23CB82AC719D11EF9A5A2251762E951A.roa
Signing time: Fri 13 Sep 2024 06:55:20 +0000
ROA not before: Fri 13 Sep 2024 06:55:16 +0000
ROA not after: Fri 08 Aug 2025 06:55:16 +0000
asID: 133861
IP address blocks: 45.207.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46364 (0xb51c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 13 06:55:16 2024 GMT
Not After : Aug 8 06:55:16 2025 GMT
Subject: CN=66e3e1d8-580e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b1:8e:61:f1:22:e0:41:9c:4a:b0:0d:02:a3:
d0:5b:b5:d0:4b:24:a7:a3:10:45:98:de:82:b3:36:
bc:de:f2:96:79:de:d2:68:78:46:a7:d9:ab:20:0b:
ad:f2:b3:36:02:2a:1b:69:54:ac:49:8a:73:41:68:
d8:9f:79:80:51:a4:9d:82:42:09:1a:dc:e9:11:f7:
9b:f9:50:02:fa:76:6f:ad:57:02:5e:00:33:84:07:
46:57:83:e7:33:cb:f7:09:b9:9b:e7:2f:b7:8b:cb:
75:a0:49:40:fb:72:a4:55:49:ed:f9:37:12:8f:a1:
25:4d:5a:dd:55:7d:9c:b3:37:8f:e8:9a:cc:1b:cf:
92:e8:4a:b2:c0:bb:09:e5:c0:b3:a8:43:7b:88:08:
6c:f3:04:cd:76:40:c9:7d:76:cf:96:7f:90:eb:de:
90:c4:eb:3b:b0:6a:78:87:79:e6:a6:3c:6d:ca:cd:
7b:a5:c0:57:3f:dd:e9:8e:27:5f:6a:64:65:ec:6f:
1b:ce:1e:1a:d5:49:da:e6:5b:01:14:0c:1a:c4:5c:
95:7e:ac:5a:01:17:56:a4:01:be:88:da:9c:4c:26:
ad:11:d9:d6:0d:a4:70:8a:7b:77:0a:7a:cf:f4:a6:
a7:f1:56:8b:ba:96:69:6c:c1:b4:e8:fb:05:b5:0f:
c4:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:4C:EC:EB:B6:A1:3A:54:8C:07:E2:F8:95:0D:00:FE:54:49:0B:C0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/23CB82AC719D11EF9A5A2251762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.41.0/24
Signature Algorithm: sha256WithRSAEncryption
92:4f:0b:ef:d3:71:c3:cf:2c:35:7b:a2:f9:ee:1c:83:b4:2c:
30:22:10:bc:62:a2:f6:8f:16:e1:da:63:f2:08:28:db:36:ad:
5f:f3:92:3a:73:53:45:ab:e5:2a:cb:a5:81:36:88:c3:91:2f:
fb:be:ad:9b:7d:e8:31:94:a7:1d:80:43:9c:38:1c:56:0b:14:
aa:7c:a5:de:65:e9:c5:0b:0e:2a:f3:cd:15:7c:5b:34:e1:96:
cb:40:34:6b:43:8a:76:71:3a:f7:1a:3d:b7:47:63:f4:bd:da:
cb:7d:9e:f9:cb:69:e6:fc:0e:b2:57:de:3a:4b:50:fb:51:07:
bc:70:6e:f1:45:01:70:3c:3b:8b:f1:9c:d7:72:d4:c8:d1:f5:
bf:2a:19:53:09:22:00:d8:7d:d4:26:06:c2:fa:97:b9:15:16:
45:88:b7:39:98:35:f2:83:c6:92:c9:94:d6:f9:eb:42:68:95:
52:08:c2:94:82:62:64:68:0e:98:01:3a:e3:23:91:15:cb:4c:
d9:19:f6:af:c9:40:cb:38:99:a9:cc:87:24:6c:f0:5d:74:fc:
92:7c:f2:3c:ca:84:fa:23:76:8c:1e:59:b2:f7:14:ab:1f:e7:
b4:a9:96:a6:b2:d6:ae:36:00:06:3b:08:03:8d:a8:70:56:13:
2d:50:1a:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:21 2024 by rpki-client on console-fra.rpki-client.org