Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3A0E6CD0A73C11EF929027A2762E951A.roa
File: 3A0E6CD0A73C11EF929027A2762E951A.roa (raw, json)
Hash identifier: DhpWRFeOPQkSzv3VWgDpUgNB7/Iovt2JzrbYdR/xOmQ=
Subject key identifier: 2E:F5:17:D0:7F:E4:45:62:D1:2C:18:2F:92:BD:6B:B2:E0:0F:81:EA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D619
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3A0E6CD0A73C11EF929027A2762E951A.roa
Signing time: Wed 20 Nov 2024 12:37:39 +0000
ROA not before: Wed 20 Nov 2024 12:37:35 +0000
ROA not after: Sat 30 Nov 2024 12:37:35 +0000
asID: 136778
IP address blocks: 45.204.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54809 (0xd619)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 12:37:35 2024 GMT
Not After : Nov 30 12:37:35 2024 GMT
Subject: CN=673dd812-6b63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:0c:22:70:1d:90:e9:6a:fb:9a:92:47:6e:14:
c5:20:48:2a:6e:63:76:84:84:6e:a4:96:01:18:55:
ac:6e:20:bf:8f:f4:26:57:dd:d0:70:1f:53:83:f6:
7a:95:eb:fa:b8:ba:25:74:59:51:3d:62:2e:a1:de:
4b:18:be:77:4e:19:04:9f:b5:09:ea:32:fe:fb:2f:
83:cb:8a:99:0e:cb:bf:81:df:fa:7f:05:7d:b7:a9:
9a:25:c6:4a:b9:0b:1b:fc:bc:61:4a:9b:83:a7:4e:
77:8a:5f:7d:51:cb:a1:d1:bf:fa:dc:0c:09:c1:1f:
88:59:58:44:7c:db:3e:64:19:50:76:76:85:51:49:
0c:77:f1:fd:b9:49:2e:3b:9e:43:5b:17:d8:aa:c3:
30:1d:70:33:11:5b:8b:43:3e:30:d8:78:89:fc:15:
a0:34:58:85:8e:8e:8c:d6:94:88:61:a1:00:6a:2c:
c5:a5:e5:ad:4e:cb:7f:78:3e:58:26:a0:de:c9:c2:
6e:22:24:04:3a:6c:7e:63:df:09:f9:7e:f7:a4:15:
2d:53:56:6c:de:5c:c6:04:a3:ce:0a:08:b4:ad:4b:
62:c0:0c:01:67:84:e6:70:f0:98:f4:7e:10:52:45:
b9:82:24:1e:29:e6:d4:56:32:da:3b:07:9d:5c:48:
7c:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:F5:17:D0:7F:E4:45:62:D1:2C:18:2F:92:BD:6B:B2:E0:0F:81:EA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3A0E6CD0A73C11EF929027A2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.82.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:c0:2d:4f:60:b0:ce:ca:a7:d1:22:2b:99:de:fd:90:d5:1b:
22:dd:80:41:19:87:36:ee:b3:e5:36:ca:76:c2:80:dc:09:2e:
d5:67:e3:11:0b:f0:77:d4:ee:fa:bc:32:a4:e9:7b:21:6d:dd:
27:8f:0e:8b:dd:e9:66:ca:06:68:36:ff:6b:4d:be:1c:4f:62:
31:8b:bc:75:cf:e1:0e:97:a8:e5:81:ed:27:4c:7f:cd:a4:af:
2f:ea:c6:9f:db:3c:ce:58:f8:2c:75:3f:30:38:fd:dc:03:92:
99:07:c7:c8:8b:66:a7:96:53:1a:71:63:01:e7:c9:6d:d9:cf:
70:60:bd:9e:39:0a:82:09:b9:59:26:41:4c:b1:41:07:f7:9d:
29:cc:12:f2:ac:07:da:73:cd:32:e9:62:0c:a2:21:5e:a6:a9:
f8:ce:26:3e:ed:e5:9c:20:a8:60:25:17:91:79:17:cc:2d:b1:
5c:ef:e3:86:15:82:bb:23:14:7b:5e:bc:b0:55:18:d1:5b:87:
68:49:22:eb:de:76:de:d2:4f:f4:86:a4:78:dc:ce:5a:df:17:
cc:9e:e0:3e:70:e9:55:8a:fd:65:59:d6:71:ba:95:50:9a:d2:
8b:97:80:86:75:86:c6:a7:19:96:e4:cc:7a:98:bf:d7:7c:b7:
a2:af:1c:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:25 2024 by rpki-client on console-fra.rpki-client.org