Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/661855FC9AA811EF83430A50762E951A.roa
File: 661855FC9AA811EF83430A50762E951A.roa (raw, json)
Hash identifier: 3B7ev47u8RZ8XOBm3Fois+sTTb57m6PM8ooclXSKcjc=
Subject key identifier: 8F:47:36:0C:F2:BC:C6:77:A9:04:33:5C:82:F7:BD:F0:EE:76:29:E5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CD70
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/661855FC9AA811EF83430A50762E951A.roa
Signing time: Mon 04 Nov 2024 12:29:13 +0000
ROA not before: Mon 04 Nov 2024 12:29:09 +0000
ROA not after: Tue 03 Dec 2024 12:29:09 +0000
asID: 54801
IP address blocks: 45.207.240.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52592 (0xcd70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 4 12:29:09 2024 GMT
Not After : Dec 3 12:29:09 2024 GMT
Subject: CN=6728be19-1fc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:67:7a:f8:37:d2:58:f3:09:35:cd:09:7b:6d:
79:79:88:0b:ae:9d:83:e4:16:4e:36:4b:d3:a2:43:
4a:da:8a:9d:ad:94:00:67:2c:58:cb:2d:e6:b9:24:
49:e4:09:21:e6:06:f6:49:b1:21:e4:5d:e8:e1:f2:
83:12:f3:b1:ac:1f:b8:9d:05:69:d8:91:67:a3:d3:
72:f6:c5:34:76:cf:36:f4:b3:64:bc:22:08:60:1c:
b8:84:9e:0e:a6:4e:64:6b:a8:6b:9f:07:72:f7:a9:
0a:41:3a:fc:5b:91:9c:8c:fc:80:58:87:1e:5b:e9:
bf:a2:4c:05:9e:da:55:1e:13:a4:b4:36:14:90:2a:
52:44:41:5b:79:40:70:df:0a:ea:ec:66:f8:df:11:
bd:fd:f9:89:5a:c8:de:b4:14:6f:d2:43:20:cf:92:
85:ac:03:99:28:d9:ec:f7:21:9f:51:cb:b1:f0:28:
a0:51:44:f1:6d:1b:14:62:6a:7d:b4:f5:2a:6f:43:
78:96:dc:22:d2:98:80:72:86:d5:2a:21:0f:c3:4c:
de:f2:8a:c5:a2:9b:72:67:df:cf:fb:69:d3:03:e8:
92:04:7d:73:cd:94:38:ae:67:99:31:49:6a:b6:33:
76:b6:19:e2:fb:f3:65:1f:04:8d:b7:6f:86:14:43:
a8:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:47:36:0C:F2:BC:C6:77:A9:04:33:5C:82:F7:BD:F0:EE:76:29:E5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/661855FC9AA811EF83430A50762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.240.0/20
Signature Algorithm: sha256WithRSAEncryption
1d:bc:8b:e3:e2:c9:6b:3c:ea:a3:6f:a2:23:a6:cc:41:8e:6d:
ca:9a:1a:4e:d9:e8:b6:d8:4b:06:55:b5:b3:8c:19:f2:a8:9a:
36:1e:1b:dc:6f:f7:10:6d:74:d8:7f:82:ed:24:91:28:10:61:
90:e5:55:b8:57:ed:fc:97:74:5f:4f:d7:52:c0:11:1b:26:41:
16:2e:8f:4f:b4:7a:50:9d:6a:ef:c7:73:e4:2a:b8:62:1d:87:
6d:e1:39:9a:d9:d8:4b:ae:da:3c:c8:fa:f6:1b:9d:d8:73:f9:
d9:64:c2:a2:40:9d:5d:06:db:90:75:a2:65:45:70:4b:b8:28:
90:4e:e6:85:7a:61:62:ad:19:97:ea:1c:67:85:a2:e9:5b:23:
6a:4e:c4:72:83:78:97:86:28:26:4c:64:e1:1d:da:98:97:d7:
07:f2:eb:8f:07:44:e4:e8:c6:db:d7:d8:51:f0:69:e9:73:a4:
a9:17:5c:65:2c:cc:03:c0:e7:c7:76:91:9d:40:97:13:91:38:
63:58:f2:1a:1b:c1:e5:65:6b:11:7e:04:ec:65:24:b8:cc:3b:
ff:9b:cf:44:97:51:4d:f0:f9:4d:19:3f:d4:52:69:23:8a:8f:
33:fb:17:51:29:74:92:d0:a6:1d:5d:41:f7:8e:dd:99:bd:13:
64:87:e1:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:32 2024 by rpki-client on console-fra.rpki-client.org