Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/37326FAC735211EFB6B1824D762E951A.roa
File: 37326FAC735211EFB6B1824D762E951A.roa (raw, json)
Hash identifier: BLYwKCehm+SUkN7aXiv62Y07UYgFGQBmhxF/zNqRBLY=
Subject key identifier: EB:E5:5A:60:90:6D:5C:C0:7E:4C:EA:00:47:96:94:E4:AE:C9:50:11
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B672
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/37326FAC735211EFB6B1824D762E951A.roa
Signing time: Sun 15 Sep 2024 11:04:02 +0000
ROA not before: Sun 15 Sep 2024 11:03:59 +0000
ROA not after: Fri 08 Aug 2025 11:03:59 +0000
asID: 133861
IP address blocks: 45.207.48.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46706 (0xb672)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 15 11:03:59 2024 GMT
Not After : Aug 8 11:03:59 2025 GMT
Subject: CN=66e6bf22-edab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e3:57:f9:5d:7d:8b:a8:f4:85:4b:72:98:14:
32:89:22:ca:2b:46:6f:f3:dc:8e:91:cd:b4:11:ff:
9a:3f:e7:9f:b7:cf:f0:f7:c3:5b:f9:7a:28:dd:b5:
aa:83:83:14:ea:e5:b3:20:78:0a:1e:ef:de:a7:4b:
18:29:6b:c5:a2:50:46:7d:00:08:a4:e4:b0:ec:84:
3d:09:ed:77:e6:51:aa:0e:80:a8:07:df:fb:a8:e8:
ea:ab:e9:0e:44:5d:ea:22:06:a5:b3:97:eb:e1:ef:
b3:e3:5c:04:17:3f:1d:51:5d:82:70:5d:fb:b6:c0:
e3:e5:a9:6d:48:84:64:2d:83:a2:1e:95:70:08:5c:
cb:bc:b9:1d:f9:22:2d:45:ec:2d:19:ea:11:42:5c:
a1:f9:4e:37:82:78:3b:59:cc:da:a5:83:52:58:f4:
2a:f3:91:68:94:df:86:bd:ea:64:1e:72:f7:db:e4:
d2:d4:21:24:39:84:a3:d9:d4:dd:c3:7c:44:b2:f6:
5b:2c:31:5a:00:e3:7b:ca:0e:12:a6:7a:4b:d0:3a:
3d:74:35:7b:07:4d:4a:a4:36:c0:e6:3f:f4:a6:f5:
f9:a7:46:8b:29:21:58:8f:00:83:f7:a9:53:02:12:
50:03:3b:7c:bf:f3:14:9e:f7:3d:dd:8a:4d:51:1d:
28:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:E5:5A:60:90:6D:5C:C0:7E:4C:EA:00:47:96:94:E4:AE:C9:50:11
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/37326FAC735211EFB6B1824D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.48.0/21
Signature Algorithm: sha256WithRSAEncryption
22:39:6a:73:bd:ca:ce:9e:a7:ed:25:36:8f:fc:cb:6f:d5:42:
a4:ab:2c:06:cd:c8:bf:f7:42:92:e0:ee:8d:7f:39:e7:a3:45:
4a:e9:f3:85:1f:c4:ce:93:ca:f8:35:32:15:ca:c4:ab:20:6a:
85:05:03:58:8a:91:2c:1f:41:a1:34:57:83:00:38:68:1b:2b:
fa:66:90:d3:c9:84:b9:66:c9:b2:3e:a8:72:33:94:2c:ce:ef:
22:2e:df:13:13:af:9e:dc:30:ef:e9:70:fa:15:14:f7:06:24:
ec:82:14:7b:4e:5c:69:a9:cb:82:9b:6a:8f:d2:cd:9e:34:19:
4a:38:2d:c3:96:97:5d:40:77:3e:0e:00:ac:dc:63:9b:14:81:
57:63:e1:c9:6b:c6:d4:cf:64:98:41:69:c6:71:71:13:ab:40:
59:d6:16:96:42:bc:09:f4:33:30:cc:cb:de:fd:27:2c:78:a9:
c0:67:2d:a0:69:40:95:90:bc:b1:46:0b:db:ca:33:8a:ad:22:
b6:23:5f:54:83:42:f3:28:74:fc:be:86:8d:8c:42:db:4d:23:
f4:d4:9d:30:fe:27:15:5f:aa:16:c6:a1:79:fb:f8:56:24:78:
9b:6e:6c:eb:3c:45:6f:65:87:e8:9c:fb:7a:01:c2:de:27:c5:
81:b3:59:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:24 2024 by rpki-client on console-fra.rpki-client.org