Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4BBFA3826A9111EF8338AE8A762E951A.roa
File: 4BBFA3826A9111EF8338AE8A762E951A.roa (raw, json)
Hash identifier: 7swtj2yeZ2t//3fQVhJExFgGT2qPxAJyPVoBFyj7kDI=
Subject key identifier: CC:13:EF:12:52:7E:E2:5D:A1:6B:7E:63:E9:08:55:9B:58:67:7C:EC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B1B9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4BBFA3826A9111EF8338AE8A762E951A.roa
Signing time: Wed 04 Sep 2024 07:42:55 +0000
ROA not before: Wed 04 Sep 2024 07:42:51 +0000
ROA not after: Fri 03 Oct 2025 07:42:51 +0000
asID: 45996
IP address blocks: 45.195.73.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45497 (0xb1b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 4 07:42:51 2024 GMT
Not After : Oct 3 07:42:51 2025 GMT
Subject: CN=66d80f7e-97b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:43:fb:55:59:82:ca:56:c9:c5:36:3c:a7:97:
6c:13:b3:13:ca:8e:8f:bd:2b:8f:47:79:52:a2:4e:
a4:df:da:3a:f3:bd:ed:f9:39:59:b5:35:ac:67:f1:
f1:3d:28:2f:7b:fb:df:3d:ea:84:c2:70:cd:22:90:
c6:b7:8e:74:52:d3:2a:ff:b5:c1:ff:16:0a:9e:58:
81:a7:77:5b:b8:0f:bf:ef:10:9b:4d:62:6d:46:f9:
ed:79:14:dd:ee:1e:09:e9:f4:08:61:c5:bb:a9:e1:
f2:49:c5:d7:40:a9:c9:e5:4b:32:61:89:c8:a8:cc:
59:5b:10:71:15:eb:ca:45:8b:09:2b:f4:87:b3:ae:
73:a9:5f:aa:2a:67:7a:42:18:22:0f:9d:a4:5b:60:
91:45:98:2d:24:7f:8e:cd:2b:b7:10:1d:cd:2d:3e:
18:ef:b7:a4:20:66:3c:fb:51:3c:cc:de:b5:a4:17:
04:64:17:b8:72:57:b4:48:bb:31:9d:b5:20:cb:5a:
5b:47:ca:ea:00:fb:a8:6f:3a:fd:93:26:69:3b:a7:
ef:84:05:8b:ce:99:46:08:78:a2:89:cd:3c:74:bb:
a2:02:8c:d2:73:44:d0:b2:11:77:50:7b:f9:de:10:
11:e4:48:70:7a:5d:7f:b4:04:0f:c5:9f:25:6b:2e:
ed:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:13:EF:12:52:7E:E2:5D:A1:6B:7E:63:E9:08:55:9B:58:67:7C:EC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4BBFA3826A9111EF8338AE8A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.73.0/24
Signature Algorithm: sha256WithRSAEncryption
23:de:8a:41:55:7b:be:d0:28:95:f9:23:a3:c1:e5:30:36:4c:
b0:e6:6b:8d:5b:b4:f8:b1:92:fd:4f:f1:13:c6:2d:66:82:35:
c4:c9:af:93:8d:78:65:51:b3:55:25:62:44:65:60:88:25:17:
fe:91:a4:90:c6:17:92:c5:79:5b:5d:c7:86:ed:8e:b4:ae:27:
a4:b7:cb:94:12:c8:3e:32:a4:0f:88:b2:ca:8f:b5:bb:af:f4:
fb:f2:dc:1b:11:d8:14:92:6b:0d:5d:78:d6:6e:c9:65:96:e6:
bf:60:df:ad:50:f5:84:3f:0d:c6:76:eb:af:46:55:1c:ae:2d:
2f:3d:3d:5c:d8:b7:29:c2:ba:ae:00:21:97:1e:58:1a:ec:f2:
f4:df:c5:a1:0e:cd:8b:9e:dd:07:60:35:c8:4f:1f:d8:ad:76:
40:6b:ee:cd:c0:0d:7b:92:91:f6:f1:fe:51:6b:cd:4a:71:a2:
16:2c:e1:e4:84:8b:88:86:62:e3:dc:21:e4:e4:bb:97:07:b8:
dd:44:ac:09:d1:dc:db:8d:70:33:18:c3:b5:e6:bd:2e:a5:87:
c2:04:77:94:6f:25:dd:24:c8:79:7e:a4:c8:f2:c6:51:d5:b7:
3b:b3:ea:c6:72:33:5a:14:e2:5c:ad:b3:8b:6a:66:c6:45:de:
70:d2:2b:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:28 2024 by rpki-client on console-fra.rpki-client.org