Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/62206E0E8D3211EF99F84F78762E951A.roa
File: 62206E0E8D3211EF99F84F78762E951A.roa (raw, json)
Hash identifier: SbQdxuf4Gp/kOZxGwK2GCgI80IZJfQBwCZ7fBjSgy2Q=
Subject key identifier: 5A:96:E6:EB:A2:CA:55:8A:58:32:3E:15:84:37:DE:8E:20:B8:68:F6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C6A6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/62206E0E8D3211EF99F84F78762E951A.roa
Signing time: Fri 18 Oct 2024 09:21:41 +0000
ROA not before: Fri 18 Oct 2024 09:21:37 +0000
ROA not after: Sat 23 Nov 2024 09:21:37 +0000
asID: 44559
IP address blocks: 45.199.232.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50854 (0xc6a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 18 09:21:37 2024 GMT
Not After : Nov 23 09:21:37 2024 GMT
Subject: CN=671228a5-9c58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c5:48:18:3d:be:55:bc:34:09:6e:50:56:31:
9d:33:58:66:57:af:69:3b:7a:5b:b9:69:67:83:e6:
06:4e:9c:92:42:ef:a1:73:06:2c:17:af:aa:b2:da:
65:43:ce:db:6e:0a:1e:a7:35:56:09:f2:68:e0:f1:
e1:d7:4d:ee:b4:d7:ec:e2:86:9b:b1:da:8e:f5:ca:
9e:98:e0:ad:5c:01:58:5e:36:23:75:b3:2e:d6:15:
90:38:72:3d:49:40:c3:49:9f:0a:16:9d:67:e6:c9:
bf:8d:58:e6:2a:da:32:52:8a:c8:a9:56:e4:7e:52:
dd:cb:55:58:12:f8:50:06:89:5d:4c:c5:d3:c4:11:
6a:02:46:bc:fd:e9:de:db:b8:f7:36:ef:e6:cc:dd:
43:db:f1:ae:81:87:cc:be:55:45:25:4a:f1:88:c5:
cb:89:0d:2c:e8:b3:b3:ec:38:57:d2:89:0e:17:5d:
77:85:41:ff:28:d8:f3:7b:b0:f7:ff:00:f7:9e:87:
cf:d9:7c:39:5e:b7:0f:d7:0f:b2:1c:36:03:d8:18:
cc:9f:3d:05:ac:44:bd:db:98:28:e1:76:56:8e:51:
49:cf:6e:99:2c:5e:6d:85:3d:e4:88:db:32:46:e3:
e7:49:69:4a:00:be:e6:de:0b:63:1d:a9:46:f4:0b:
1c:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:96:E6:EB:A2:CA:55:8A:58:32:3E:15:84:37:DE:8E:20:B8:68:F6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/62206E0E8D3211EF99F84F78762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.232.0/21
Signature Algorithm: sha256WithRSAEncryption
7e:1a:37:36:1d:7b:69:5b:e5:71:c9:2b:23:e2:55:2c:5c:96:
79:9e:8d:8c:73:18:51:88:f5:04:45:46:82:cf:98:e4:31:0c:
a4:9e:f0:d0:0d:e1:33:a6:13:cb:85:f0:9f:76:14:20:a4:0d:
d9:8d:ae:71:15:23:20:62:45:7f:10:ca:f6:31:c0:77:fd:ca:
aa:7e:07:d9:12:89:a7:29:c6:cc:a8:73:3c:cb:b9:5a:05:c8:
81:0b:2b:0c:3d:c1:20:84:53:74:9e:60:77:51:7e:85:18:53:
72:26:9f:fa:76:d1:3c:f3:c2:9b:7d:a3:b2:6b:62:b3:56:b3:
54:f2:0e:bc:c7:fb:d6:6c:48:39:f6:00:34:50:c0:92:8f:07:
70:93:09:ae:3d:09:d4:79:c4:6f:82:22:89:0a:ef:c6:82:8c:
f9:e7:8f:59:0c:bf:ef:aa:34:ca:d5:85:72:b6:09:47:e1:3b:
a9:94:2d:4a:66:9e:0f:96:e4:64:90:de:80:5e:70:1f:ae:80:
13:c6:5a:43:4d:f9:42:85:59:10:01:07:af:3e:0f:4f:b6:7f:
15:08:a1:b8:15:5f:ac:25:a8:3f:b0:41:9e:a0:7f:a3:d2:1d:
f3:53:6f:eb:22:3a:84:e2:29:42:c7:b1:91:b2:1f:64:1d:f7:
d7:1c:48:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:31 2024 by rpki-client on console-fra.rpki-client.org