Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5ADA68C4A74B11EF92603D83762E951A.roa
File: 5ADA68C4A74B11EF92603D83762E951A.roa (raw, json)
Hash identifier: zk5vlT3ommtRTMuQLtWO0/98waeayI5EDdDqBCSovYI=
Subject key identifier: 60:FD:78:08:FA:94:4E:8F:9C:CD:D7:A9:AB:F9:A1:F1:72:8B:8D:3E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D6AE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5ADA68C4A74B11EF92603D83762E951A.roa
Signing time: Wed 20 Nov 2024 14:25:56 +0000
ROA not before: Wed 20 Nov 2024 14:25:52 +0000
ROA not after: Sat 30 Nov 2024 14:25:52 +0000
asID: 202656
IP address blocks: 45.199.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54958 (0xd6ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 14:25:52 2024 GMT
Not After : Nov 30 14:25:52 2024 GMT
Subject: CN=673df174-f883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:fe:6f:41:de:36:2e:23:0a:00:56:19:c3:41:
d3:0d:9d:e6:d4:f6:88:32:e5:97:31:0f:37:66:16:
f3:31:23:4f:7e:af:34:16:9d:5f:78:af:aa:27:b5:
93:e6:69:1d:ee:b3:24:27:31:46:3c:74:36:26:91:
b4:d0:21:ca:02:81:af:0a:3a:9e:a9:80:58:62:64:
15:57:1f:ce:c1:53:e3:15:8f:ee:d0:4a:b5:16:ca:
51:b9:86:e7:48:80:71:0f:aa:7e:f2:52:62:be:6d:
a6:79:22:fe:64:a1:6f:eb:c6:33:ba:b7:f1:76:8d:
04:a2:0c:e9:88:47:2a:50:4c:41:7d:95:ba:f8:4e:
e3:c0:0c:87:20:db:38:4b:80:2c:76:08:75:f2:61:
3d:a4:0a:83:c9:a6:c3:98:8b:05:76:d5:6c:41:b9:
3a:33:ae:81:05:57:69:5b:41:a3:96:2f:24:a0:4d:
7c:16:35:42:f7:a3:f9:48:64:5b:e6:d0:01:1a:dc:
a1:75:99:1c:23:7a:69:00:e1:81:c9:b9:c5:f0:72:
a6:d4:79:b8:b9:38:be:69:93:6f:4a:7d:a5:ce:ee:
2c:8b:cd:40:a0:5f:71:cc:67:10:15:59:4d:8e:50:
1a:81:97:af:da:9a:47:a7:7f:e1:b6:9c:ef:1b:88:
bd:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:FD:78:08:FA:94:4E:8F:9C:CD:D7:A9:AB:F9:A1:F1:72:8B:8D:3E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5ADA68C4A74B11EF92603D83762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.201.0/24
Signature Algorithm: sha256WithRSAEncryption
26:76:4a:45:7d:e7:5f:2f:b9:f1:1e:74:fd:29:35:c5:32:af:
b2:e6:a6:09:43:40:78:15:19:a7:14:0e:d8:72:c7:7d:23:56:
86:0a:b2:b2:f7:eb:13:71:21:b4:65:f6:47:06:c8:d0:a4:bf:
c9:25:f4:44:c6:22:9b:60:0a:f8:40:a8:cb:27:0e:d7:b7:12:
14:b2:84:c8:d2:4f:a4:66:d4:f1:97:66:46:94:dc:4d:8f:83:
93:ed:79:df:f0:0c:87:aa:11:4f:b2:11:48:73:b2:24:3d:b8:
db:f6:1c:32:a1:28:9d:f5:eb:66:c4:5d:98:56:e5:c8:cc:4f:
de:c2:93:b9:e9:f0:3c:cf:7e:29:56:2b:dc:b9:53:2e:60:81:
de:b3:dc:36:ac:4e:50:05:da:ea:49:98:ae:c0:f1:e6:9d:f7:
14:d1:17:68:c4:95:05:88:6b:67:75:25:00:45:be:9d:95:92:
92:7d:0e:88:f8:45:d2:ee:1d:f6:9c:66:c6:3b:e3:b5:1a:f4:
39:ad:f8:5b:3c:cf:a6:38:d2:b8:9a:21:9b:eb:c8:40:35:5e:
c8:26:3f:bb:af:dc:b0:5f:b9:b8:e9:97:d1:0e:ee:0a:29:83:
23:b0:74:f3:e8:27:52:d3:a4:a0:03:b3:e4:a4:f5:5d:72:c9:
6c:2a:1c:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:32 2024 by rpki-client on console-ams.rpki-client.org