Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2C9B552874C311EF84863286762E951A.roa
File: 2C9B552874C311EF84863286762E951A.roa (raw, json)
Hash identifier: p/S/4YwbMOftDBbMp9/tNtxstuUvHPdEuf+0wkfxhPU=
Subject key identifier: 60:92:A1:E3:07:31:A1:65:50:12:1F:64:4D:EE:B8:73:9E:3A:9C:99
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B778
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2C9B552874C311EF84863286762E951A.roa
Signing time: Tue 17 Sep 2024 07:05:09 +0000
ROA not before: Tue 17 Sep 2024 07:05:05 +0000
ROA not after: Fri 08 Aug 2025 07:05:05 +0000
asID: 133861
IP address blocks: 45.207.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46968 (0xb778)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 17 07:05:05 2024 GMT
Not After : Aug 8 07:05:05 2025 GMT
Subject: CN=66e92a25-5a3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5e:2d:5d:c1:e9:cd:b9:ec:34:ca:22:d4:d2:
00:71:16:4e:5e:23:68:9c:aa:63:41:85:a9:57:17:
af:0c:af:1c:48:e9:8d:2b:02:9e:db:05:72:63:5e:
16:03:47:69:89:4d:07:6d:09:83:23:b0:c3:b8:be:
5a:5c:60:07:be:6b:f9:7e:53:de:51:6f:80:52:03:
5d:93:5a:cd:4b:5c:1a:4c:ba:a0:db:1a:28:c8:c3:
2f:bd:60:6b:c4:f6:3a:2c:dd:77:94:4d:6f:ea:78:
52:24:1c:2a:2f:4f:38:0d:f3:f4:c9:f8:f8:95:0b:
44:53:98:25:0f:c2:2a:29:dc:f8:86:ae:19:9e:82:
c6:8b:4c:eb:ca:b1:34:30:35:09:c9:e0:20:ed:df:
c0:df:52:bb:4f:e7:0c:ef:43:74:31:46:e9:1d:e1:
db:8c:09:ef:f1:6d:f5:23:ae:35:90:1c:e7:ad:8b:
56:14:df:0c:e2:05:8b:df:23:09:6b:23:3d:66:38:
70:11:ac:eb:55:67:ed:37:5e:1b:13:22:ff:a1:9d:
2a:24:5e:05:14:6f:17:57:54:10:b5:9b:cd:88:0e:
f2:ea:fe:d4:28:c5:e1:20:bf:ca:66:dd:1e:c5:81:
f0:eb:23:40:e2:9a:eb:74:d8:17:53:fe:69:fa:c7:
f4:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:92:A1:E3:07:31:A1:65:50:12:1F:64:4D:EE:B8:73:9E:3A:9C:99
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2C9B552874C311EF84863286762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.45.0/24
Signature Algorithm: sha256WithRSAEncryption
81:a4:1f:b2:dc:65:b3:66:90:4b:a5:ec:50:01:b9:18:e5:88:
12:3f:ab:2a:43:84:71:29:44:36:93:c1:05:26:75:18:98:0e:
12:9b:d7:79:e4:7c:b2:6c:cc:90:99:94:91:d6:eb:82:07:be:
77:f9:7d:4e:0e:cb:43:04:21:17:8d:8d:8e:8b:8b:95:0d:d7:
bb:09:7c:e1:69:b0:0d:11:b3:0c:58:82:23:df:5d:4f:1a:63:
ca:d6:7b:f7:60:b1:4b:cd:0d:17:93:7d:80:63:b3:c5:6a:45:
90:36:dd:45:50:d6:65:32:37:95:6c:86:c8:91:46:a8:3d:26:
c0:c5:9c:ba:bb:84:5b:ef:e4:c4:db:0e:58:2a:3e:bf:0e:05:
be:63:92:fb:14:32:b0:84:0f:f8:10:8e:d4:3b:b3:96:a9:58:
8a:df:f4:63:78:bf:56:a1:dc:1b:c4:d1:54:ac:44:c2:af:06:
6c:d9:d6:2b:25:bb:f3:ca:d8:49:b3:60:42:75:0f:31:ae:bf:
9e:62:f1:90:1e:f2:9c:d9:77:ac:87:90:35:04:b4:62:8e:35:
3a:96:61:5d:9b:95:0e:90:41:29:44:36:59:2c:53:d5:ba:2f:
e1:d3:65:0e:f0:af:d7:9e:ac:df:5b:e0:59:76:0c:3a:b2:80:
29:08:93:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:24 2024 by rpki-client on console-ams.rpki-client.org