Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/278A4CE4726911EF8F0E4452762E951A.roa
File: 278A4CE4726911EF8F0E4452762E951A.roa (raw, json)
Hash identifier: mRml5lY+HbH3AzRo9HkpE302/HCYZujTpF7SIEdps8Y=
Subject key identifier: 96:E9:06:62:01:11:8C:61:53:F7:45:01:6D:82:06:26:0A:D7:36:F8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B593
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/278A4CE4726911EF8F0E4452762E951A.roa
Signing time: Sat 14 Sep 2024 07:15:43 +0000
ROA not before: Sat 14 Sep 2024 07:15:40 +0000
ROA not after: Fri 08 Aug 2025 07:15:40 +0000
asID: 133861
IP address blocks: 45.207.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46483 (0xb593)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 14 07:15:40 2024 GMT
Not After : Aug 8 07:15:40 2025 GMT
Subject: CN=66e5381f-a5f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:55:04:ea:85:49:be:a6:a5:76:d5:a6:b1:1b:
c4:22:5b:bb:ca:53:dd:e9:e5:86:00:9f:04:d2:c1:
63:ba:85:a8:54:f4:02:25:2f:42:b9:88:5d:a9:75:
31:55:48:7a:26:b2:f0:fb:3a:1a:42:9c:00:c8:d8:
c0:95:08:cb:84:46:97:ad:ea:f3:04:b6:ca:b6:1d:
b6:74:6a:62:13:76:60:bf:28:75:5a:1e:99:0b:31:
89:b6:be:88:d5:91:91:ee:f9:25:c6:d0:ed:8e:4e:
0b:49:44:e2:45:78:a4:4f:09:54:c7:fc:e6:c5:73:
73:a9:48:13:26:99:60:b1:f6:4a:5b:86:43:08:79:
38:a4:c0:cc:9c:95:83:62:3a:43:e8:06:ce:06:e0:
fb:6f:67:22:d3:5d:ad:94:16:db:c8:17:96:5a:84:
14:4b:ae:44:f5:3d:92:c1:15:7a:0f:ac:7e:30:c4:
20:8a:76:b1:00:0d:76:ec:9d:32:6c:45:ce:18:22:
0f:dc:a9:eb:05:34:92:a5:61:cc:96:40:ac:50:d9:
fb:da:20:72:34:be:bc:7f:8d:1a:34:ef:6e:dc:cb:
08:d9:a8:9f:e6:78:06:a4:8f:d2:be:32:76:fd:21:
17:93:29:ef:4d:51:d5:44:c9:7a:81:e1:2c:6f:68:
ad:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:E9:06:62:01:11:8C:61:53:F7:45:01:6D:82:06:26:0A:D7:36:F8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/278A4CE4726911EF8F0E4452762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.43.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:33:11:9f:d2:4f:72:d1:9a:6d:8f:5d:9c:38:9b:d5:f3:11:
76:35:d5:50:c1:17:5d:9c:05:4e:03:bf:6b:94:23:68:34:04:
0f:1e:c5:c2:af:4c:f6:76:25:cb:bb:22:f9:87:0a:03:53:7e:
7a:ea:e1:ee:6e:32:8d:1e:4a:dd:55:4e:44:8d:7b:b3:11:3b:
cc:ae:e2:34:6a:fb:5b:cf:d7:eb:4f:ed:fa:b2:d5:b9:0f:7d:
7d:d0:66:1c:0f:6a:f8:f1:03:5c:27:05:93:a2:b3:18:1a:b8:
71:c4:7f:ae:0e:bf:24:1e:c6:4b:91:98:07:f4:c0:60:5a:ff:
4d:68:66:43:82:91:94:1d:e8:7a:78:ec:75:2b:d0:97:8c:84:
99:8b:b4:0d:52:84:c2:76:49:39:c6:db:8a:d7:ef:99:de:17:
f9:b5:9b:3b:d1:ec:89:95:7d:65:d0:2c:d6:eb:7d:51:3d:11:
2c:ac:11:14:3c:62:57:9c:a9:03:96:25:39:80:e9:fc:43:c9:
a5:1b:73:d9:a2:30:18:c5:2d:c6:68:30:7f:5e:a8:c8:ba:e7:
d9:33:c1:e0:27:68:20:28:48:79:b3:70:93:31:7c:f5:9c:3a:
48:ea:63:75:c4:7d:39:a3:cb:7b:86:b6:1c:fc:96:a5:a2:0c:
f2:9d:5c:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:23 2024 by rpki-client on console-ams.rpki-client.org