Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/65F5802AA0D611EFB9CCA9BB762E951A.roa
File: 65F5802AA0D611EFB9CCA9BB762E951A.roa (raw, json)
Hash identifier: VkEtVkZCfmpAwhdr2IfKAL0JnPr4bnFQj+/ibxzMVEE=
Subject key identifier: A5:BF:0A:12:82:76:10:EA:C5:86:7A:2F:BB:82:1D:45:F2:FD:F4:AB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D17D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/65F5802AA0D611EFB9CCA9BB762E951A.roa
Signing time: Tue 12 Nov 2024 09:13:36 +0000
ROA not before: Tue 12 Nov 2024 09:13:33 +0000
ROA not after: Wed 18 Dec 2024 09:13:33 +0000
asID: 8796
IP address blocks: 45.205.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53629 (0xd17d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 12 09:13:33 2024 GMT
Not After : Dec 18 09:13:33 2024 GMT
Subject: CN=67331c40-36cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:17:5b:a5:79:3d:8f:3c:ac:79:a3:c9:c2:b6:
4a:e0:0b:a5:a9:c0:c4:43:6b:f3:cd:c4:35:c5:81:
15:46:db:c2:56:84:65:95:c9:2e:0b:d5:6a:a8:49:
0d:c7:b5:ea:85:d6:a5:06:1c:53:7a:35:ae:d6:1c:
06:b1:5f:d2:ee:83:5d:19:60:62:c1:26:e4:33:8f:
9b:2f:48:05:c1:c1:18:14:8d:36:fc:25:24:bc:f8:
4a:31:7f:22:02:75:bc:29:e6:f3:f8:72:0c:ab:93:
80:ca:be:ca:1f:14:8f:82:f1:8e:85:e1:be:59:ae:
66:6b:1b:3c:0b:0c:ea:d6:e5:95:21:b2:c5:6e:83:
09:8f:97:0f:b7:d7:e4:27:e2:ec:1e:21:78:f5:e9:
b9:57:12:7d:8a:64:5a:da:8e:ca:a5:d4:16:e8:ad:
db:81:b7:6a:39:54:1a:ec:48:52:82:b6:99:c5:f6:
17:6b:9b:98:d5:c4:a2:a7:49:e8:2c:2c:68:71:57:
00:e2:48:57:c8:51:08:1b:2d:80:92:ac:b6:5b:33:
c7:7d:76:1e:a3:89:79:40:58:95:7c:fe:2c:3d:14:
50:b8:6e:6c:7b:67:a4:11:8b:87:85:da:a9:d3:e9:
5e:53:cc:d4:38:fa:92:dc:94:cd:37:0d:c5:09:2b:
9e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:BF:0A:12:82:76:10:EA:C5:86:7A:2F:BB:82:1D:45:F2:FD:F4:AB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/65F5802AA0D611EFB9CCA9BB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.16.0/20
Signature Algorithm: sha256WithRSAEncryption
01:00:91:5d:ed:6a:f7:13:45:a3:80:44:f1:e0:1e:db:f9:ce:
99:e6:2a:8e:96:3f:13:96:b0:d3:27:1d:4b:02:d1:a9:f0:cb:
50:16:83:1b:80:c6:60:85:59:20:a1:e1:43:c6:c0:e9:28:af:
ab:74:97:63:ce:b6:77:1e:e4:37:39:f3:ac:41:a5:5c:14:b2:
d4:fb:c5:4a:14:77:d6:92:b7:f7:0c:fe:5d:4e:e8:95:53:cb:
0f:31:48:83:3f:93:ae:5c:0b:e0:07:e9:81:41:d9:1e:7a:24:
a4:f6:48:bf:ce:e1:a3:ba:2c:a6:10:94:87:d5:93:1b:1b:58:
32:2e:90:b4:01:97:88:f6:8b:12:71:ea:b6:fc:60:5b:62:c7:
01:57:66:21:f0:7e:6e:27:b5:20:f1:b4:ce:55:c8:fe:26:59:
a3:f2:68:3e:bc:be:98:2a:fc:07:19:b4:77:83:1f:22:bb:af:
1f:1e:83:02:ce:d9:9d:d8:e9:7e:0a:63:58:d6:cf:6d:32:12:
22:e1:e0:7e:b3:6f:38:63:64:9c:59:32:26:35:b1:c8:96:bc:
07:13:a6:d8:3e:81:a0:f3:81:b4:17:45:8a:ff:91:d9:6f:0b:
79:3a:4e:7e:70:f8:c3:5b:22:20:6a:50:d6:33:1c:d5:4c:db:
bd:8f:22:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:32 2024 by rpki-client on console-fra.rpki-client.org