Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/40EDDF7C8D3311EF862EB17C762E951A.roa
File: 40EDDF7C8D3311EF862EB17C762E951A.roa (raw, json)
Hash identifier: rxtuW+eG/GAb6KTl/PeUbCQfz5XJhtZTQC+JdM//oEU=
Subject key identifier: B1:36:97:84:7C:0C:10:F5:CB:BB:B1:40:23:62:45:FE:6C:B0:D4:1D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C6B2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/40EDDF7C8D3311EF862EB17C762E951A.roa
Signing time: Fri 18 Oct 2024 09:27:54 +0000
ROA not before: Fri 18 Oct 2024 09:27:51 +0000
ROA not after: Sat 23 Nov 2024 09:27:51 +0000
asID: 44559
IP address blocks: 45.199.214.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50866 (0xc6b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 18 09:27:51 2024 GMT
Not After : Nov 23 09:27:51 2024 GMT
Subject: CN=67122a1a-f315
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:52:f6:dc:96:5d:bb:60:86:b8:08:8f:9a:b5:
4d:9a:cc:a6:fe:e4:18:7c:d0:4d:aa:22:6c:01:b6:
cf:ec:84:f0:ce:4a:00:cf:43:64:8f:04:65:46:7a:
36:b0:ae:cc:58:ea:bc:b4:f9:84:88:7f:70:2d:a4:
1c:c6:2d:74:4b:73:11:80:5f:81:15:2c:b5:10:0c:
26:68:c4:ea:19:ac:75:48:79:fe:48:ec:ea:f4:12:
88:5f:47:db:bd:9f:0f:28:1a:1d:b7:0b:3e:19:fb:
d4:57:94:fe:da:2a:d5:66:3c:a7:ef:d0:b1:1a:c1:
94:e8:63:2b:4d:54:31:fd:99:93:2a:45:f5:23:0a:
ec:8a:05:65:41:12:f2:f4:e4:32:dd:42:12:6f:26:
f3:b2:45:bb:c4:89:c3:f1:c2:77:38:88:fe:fe:f0:
18:cb:d4:e1:b2:67:cf:0a:52:be:89:fb:f1:c6:c3:
a8:f7:f2:23:95:63:89:a4:1f:de:02:02:51:24:23:
7e:fc:4a:dc:54:f0:bc:f8:4d:32:bb:ed:99:b1:d1:
bb:fb:00:ef:d0:35:13:36:89:01:69:8b:e0:71:1c:
0d:97:ff:40:c3:8d:7f:d4:40:fb:75:65:82:f2:08:
18:73:a4:05:5a:fa:44:66:e0:4d:83:35:03:a1:c7:
36:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:36:97:84:7C:0C:10:F5:CB:BB:B1:40:23:62:45:FE:6C:B0:D4:1D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/40EDDF7C8D3311EF862EB17C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.214.0/23
Signature Algorithm: sha256WithRSAEncryption
88:28:69:71:91:9f:07:91:e9:16:8b:93:3d:43:75:4e:ab:dc:
18:92:4d:67:ad:8a:db:37:e8:d3:f7:d2:c5:95:e0:59:b6:49:
3c:37:bb:15:56:56:ed:5b:4a:b0:29:0f:59:a4:27:27:e0:38:
1f:3b:6a:c7:af:42:2d:59:84:97:c8:3c:79:fd:41:cc:90:b2:
fd:2d:92:8f:4d:98:8b:0e:d0:f9:71:ee:db:c8:60:25:08:39:
f6:74:3a:73:00:4e:c4:eb:15:29:87:7d:9f:b6:7d:b2:c1:b4:
f4:56:25:75:dc:8c:81:4b:95:1c:33:e3:ab:87:a5:3e:77:57:
9f:52:c0:72:27:c9:6c:68:72:6f:b5:b7:5f:b1:e2:ec:9e:9a:
03:00:9d:ad:8c:7d:e2:58:05:a3:ed:e9:ad:71:8d:d2:7b:35:
70:a9:49:34:32:28:4d:9e:11:a5:c5:22:b2:fb:06:83:47:a2:
c7:d3:b9:71:21:ff:68:07:db:db:d2:0a:45:53:f7:0b:e0:af:
96:11:5a:eb:85:40:40:00:9a:64:61:05:cc:f4:09:05:d0:a0:
1e:ba:9c:9d:b8:96:54:9a:45:f6:37:8e:f0:23:13:4c:da:d0:
f8:8b:83:78:e5:f8:98:55:49:aa:b0:23:5b:43:38:e0:6e:a1:
1a:9c:fb:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:27 2024 by rpki-client on console-ams.rpki-client.org