Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/25C502D4A44911EFB943FA95762E951A.roa
File: 25C502D4A44911EFB943FA95762E951A.roa (raw, json)
Hash identifier: tpIfaB+ndocOIMClPFdjfC9mHHj91zZRM+U4ENzKSjE=
Subject key identifier: 22:7B:9F:BF:18:F8:36:AE:CF:30:B7:AC:29:F3:B5:AE:53:B7:23:2E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D394
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/25C502D4A44911EFB943FA95762E951A.roa
Signing time: Sat 16 Nov 2024 18:32:34 +0000
ROA not before: Sat 16 Nov 2024 18:32:31 +0000
ROA not after: Mon 25 Nov 2024 18:32:31 +0000
asID: 9009
IP address blocks: 45.192.146.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54164 (0xd394)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 16 18:32:31 2024 GMT
Not After : Nov 25 18:32:31 2024 GMT
Subject: CN=6738e542-5d60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:46:12:5e:bb:97:d8:2a:f8:49:75:32:29:a5:
df:55:5b:5c:9a:72:87:4f:dc:57:b7:65:13:af:0f:
af:16:bc:67:c2:8a:0b:71:e1:11:50:fe:d7:6f:98:
7f:31:7e:fe:f0:7a:af:85:aa:9a:bc:1a:c9:5e:93:
f0:4b:8c:33:54:c8:d5:9a:64:27:30:e5:13:b7:1d:
35:ba:80:37:08:9e:7c:b8:53:a6:6c:f0:24:64:20:
ee:b7:4c:38:76:6f:ee:3e:7d:ce:26:5c:6a:db:22:
1c:44:41:e4:53:6a:b4:2f:c2:8e:7a:b0:dc:f1:81:
3b:c7:fb:b4:6a:94:47:37:39:19:94:81:35:eb:f6:
03:85:7f:6f:e8:ef:cf:f0:eb:ef:6e:0f:a2:9b:95:
b5:7a:90:80:b1:de:ff:46:55:47:f5:41:95:5c:1b:
78:13:cd:a0:af:79:6a:a4:ba:d5:2a:09:cf:ce:ce:
89:c2:b8:43:92:ad:4c:2a:e9:d3:45:ec:a0:de:a6:
ef:ff:b2:4f:4b:91:a2:43:8a:1c:cf:f7:25:26:b8:
c0:bd:5b:1e:3d:01:60:c0:b8:96:42:10:f4:1c:70:
62:99:43:b8:bd:59:95:cb:38:0a:15:fc:50:b3:f2:
60:55:d4:b6:4b:94:4b:09:bf:cc:e4:b2:0d:0c:ad:
a9:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:7B:9F:BF:18:F8:36:AE:CF:30:B7:AC:29:F3:B5:AE:53:B7:23:2E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/25C502D4A44911EFB943FA95762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.146.0/24
Signature Algorithm: sha256WithRSAEncryption
27:00:f6:ac:4c:69:f2:41:c0:2d:86:9c:a4:ae:63:ed:67:e3:
f3:f7:c4:b3:0e:f2:2b:58:6e:ca:c6:25:62:b6:dd:42:b5:24:
90:49:48:8d:a0:56:dc:1b:e7:9a:23:93:7f:f4:04:90:84:89:
69:9e:d8:54:32:42:1c:4c:37:4f:0b:aa:1e:91:d6:2f:ff:f2:
a2:41:04:77:e1:07:1e:1f:07:82:4f:ed:54:9a:eb:81:9e:8e:
4d:88:9c:45:bd:89:8e:bf:5a:11:dc:ad:c9:2c:7e:6c:d6:67:
3b:83:29:08:bd:dc:36:1e:12:0d:c2:3d:e9:7f:0b:4b:8b:d4:
34:25:a4:1b:dd:53:0d:99:0a:f5:7a:f3:10:02:f7:1f:e4:99:
f2:10:35:89:86:df:e7:0d:e2:a4:67:dc:8b:71:ff:b6:a7:4d:
1f:68:76:eb:fc:f5:56:c7:09:2f:5b:79:7c:9a:5d:80:3b:08:
8e:c5:25:ec:19:31:0d:cb:b6:23:09:47:c8:2a:63:2b:37:b2:
43:68:59:e2:1b:79:b8:25:69:07:67:61:8b:f8:75:47:4b:df:
23:65:f6:a8:06:1d:3c:84:fc:bb:34:bf:e8:ea:c2:6d:a5:02:
70:31:cf:4f:04:e8:a1:52:6c:67:65:64:85:9a:d6:3e:46:b2:
42:91:19:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:23 2024 by rpki-client on console-ams.rpki-client.org