Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/393FCCD892B311EF8F2FCDA3762E951A.roa
File: 393FCCD892B311EF8F2FCDA3762E951A.roa (raw, json)
Hash identifier: Itvvex5SX/9jjzF1NwWkSpF7bOVbdMnmGXhKysjdCoI=
Subject key identifier: 1D:82:5C:AC:86:E6:25:DF:65:15:62:7D:2A:89:63:33:70:21:5F:8F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C8DB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/393FCCD892B311EF8F2FCDA3762E951A.roa
Signing time: Fri 25 Oct 2024 09:26:33 +0000
ROA not before: Fri 25 Oct 2024 09:26:29 +0000
ROA not after: Wed 17 Sep 2025 09:26:29 +0000
asID: 64096
IP address blocks: 45.199.148.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51419 (0xc8db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 25 09:26:29 2024 GMT
Not After : Sep 17 09:26:29 2025 GMT
Subject: CN=671b6449-3a4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:81:c4:c5:b3:cf:18:8c:e1:63:4b:21:2c:f2:
30:22:16:de:82:a3:36:38:a8:c3:94:91:e9:69:95:
ae:b3:49:2e:21:55:31:9d:ff:d2:b1:d6:0c:68:3b:
a3:78:9b:e5:47:17:4d:40:31:91:8e:b0:b1:18:d5:
e5:7c:8d:dd:37:7d:b2:c2:b4:74:bb:f5:09:87:83:
40:3e:9e:8b:c1:44:5b:af:c4:bd:60:17:5b:b7:57:
ab:93:30:45:c1:b4:b8:f9:8f:e4:6b:07:f7:64:e6:
b1:b1:fc:4d:f5:b3:66:0b:10:23:ac:f2:96:1e:3d:
0b:90:0b:30:0e:5b:73:2a:88:86:53:9b:3c:d8:1b:
25:ba:79:90:ff:b5:f6:d4:64:5c:2a:7c:d9:69:64:
9b:75:20:8a:7f:34:44:84:40:69:f3:80:b7:b8:8d:
fa:7b:18:6d:35:3d:80:20:35:d4:e6:d4:48:9e:33:
50:2f:89:3d:eb:bd:d2:10:1d:a2:01:7b:c8:e7:e8:
67:2b:07:30:9c:e6:e9:b6:72:8c:c8:c8:60:51:b1:
53:45:d0:d3:67:4b:22:51:11:60:62:5e:f0:29:32:
f6:75:31:96:09:bf:b3:ea:c1:78:e5:76:d5:bb:6b:
93:85:dd:90:d1:e5:e1:fa:35:a9:a3:2c:e7:71:30:
03:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:82:5C:AC:86:E6:25:DF:65:15:62:7D:2A:89:63:33:70:21:5F:8F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/393FCCD892B311EF8F2FCDA3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.148.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:9a:92:f2:57:ac:28:7a:f1:dd:d8:64:e2:16:72:fe:94:f5:
a3:29:4e:da:c9:db:b1:ef:32:aa:6d:df:6a:37:1b:54:2e:30:
54:e8:9a:a0:3c:39:86:56:fd:1a:97:bd:1a:aa:d9:bb:e1:3c:
4a:9e:90:53:0c:f9:22:91:65:f3:dd:20:0f:ab:a9:1b:55:eb:
e6:f3:cc:b1:a8:fb:0d:04:cb:ca:22:a1:fc:ff:f7:b1:9a:10:
b4:60:a5:cc:ba:07:09:91:a7:d2:16:62:50:cf:36:65:0c:08:
2f:a2:8c:cb:1a:ed:e1:03:47:fe:71:ba:30:46:28:f2:df:a3:
91:83:fc:35:59:b3:d3:46:d7:9e:f3:b0:b0:db:39:cd:c8:c9:
09:a6:15:96:2b:ce:fe:76:f3:06:65:c5:43:e5:24:08:ab:ab:
2d:9f:fc:5c:fb:2d:aa:50:61:8f:7a:2d:dd:1f:f1:a2:ca:dc:
e9:1f:04:9c:df:c5:90:43:11:0b:89:80:f4:3c:e6:18:0a:25:
4f:4b:c7:02:38:13:95:34:5b:43:58:82:74:06:f3:4a:7e:70:
94:d7:eb:cf:06:f7:e4:35:4b:c5:58:06:47:39:5a:e1:27:37:
1d:69:6c:7d:83:94:24:24:06:f8:64:4d:e3:fa:41:b2:c8:d7:
31:a4:e6:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:25 2024 by rpki-client on console-fra.rpki-client.org