Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73CE92F4719C11EF86A7D94C762E951A.roa
File: 73CE92F4719C11EF86A7D94C762E951A.roa (raw, json)
Hash identifier: fypWoOwxQcsf2pnCEr7C+fAS/d90iDXjjBlAjkLbqNA=
Subject key identifier: 43:CE:CB:1C:F6:87:F5:7B:F9:EA:85:AC:8B:40:56:4C:8C:82:9F:78
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B512
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73CE92F4719C11EF86A7D94C762E951A.roa
Signing time: Fri 13 Sep 2024 06:50:24 +0000
ROA not before: Fri 13 Sep 2024 06:50:21 +0000
ROA not after: Fri 08 Aug 2025 06:50:21 +0000
asID: 133199
IP address blocks: 45.207.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46354 (0xb512)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 13 06:50:21 2024 GMT
Not After : Aug 8 06:50:21 2025 GMT
Subject: CN=66e3e0b0-e058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:cd:9d:24:8b:5f:47:f4:0b:a2:5b:50:fc:41:
77:c7:88:f4:4f:62:72:86:1f:9b:68:9c:e2:bb:23:
80:2d:68:22:81:fd:92:f7:ff:4e:bb:c3:22:c8:32:
da:67:58:78:fe:71:33:5c:e7:78:a8:1c:45:50:83:
38:ad:33:38:24:da:af:bb:38:b8:0c:90:13:ad:73:
79:03:cc:da:10:1f:54:5b:51:bc:e2:d5:73:23:d6:
7e:ef:20:a8:a3:c6:59:a8:61:f4:3d:c4:68:94:c8:
75:06:86:a7:3a:3a:0e:98:e9:fc:e2:0e:ca:6b:4b:
c4:86:f0:bb:d3:c3:ef:c2:87:fb:72:9d:e2:45:b4:
a7:f2:6d:18:02:0c:5f:c0:cb:1d:2f:48:fd:13:c5:
cf:c2:2c:5b:6c:0c:4d:4f:fc:8f:a0:4b:fd:2e:7e:
7a:bc:4c:65:31:01:d5:43:e2:68:f4:ce:d6:32:e8:
62:f1:55:90:25:6a:1a:94:1b:72:57:c1:12:fd:48:
57:e2:e7:cb:4f:19:5c:47:41:8f:c0:3a:c2:7b:c7:
b2:ed:9d:4c:3d:52:01:62:25:07:4e:46:be:d8:6d:
a7:0d:cc:f0:55:07:85:35:cc:d0:50:14:44:43:81:
a7:fc:52:b2:76:5a:31:c8:a4:b3:03:3e:c2:07:0a:
07:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:CE:CB:1C:F6:87:F5:7B:F9:EA:85:AC:8B:40:56:4C:8C:82:9F:78
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73CE92F4719C11EF86A7D94C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.43.0/24
Signature Algorithm: sha256WithRSAEncryption
60:be:ed:b2:0c:a1:ae:05:26:5b:06:2e:7c:9a:85:0e:c1:36:
a9:bf:6c:0c:9b:24:5e:46:b0:1b:94:44:62:0a:73:7b:dd:2a:
f8:1e:74:43:98:b1:fb:a2:b8:7a:71:a4:df:e0:4d:b6:37:04:
1d:26:b2:6e:a3:bd:27:8d:eb:89:2b:69:af:2b:e4:e8:14:d4:
90:29:6a:2e:c0:7f:23:10:cf:75:d0:8b:5a:91:54:22:7b:cf:
c0:aa:05:1f:bd:89:70:f3:d0:7d:e5:c9:75:2e:dd:37:1d:f2:
92:94:03:75:02:39:15:24:85:1b:ea:eb:cd:8e:59:34:60:1b:
38:ae:55:79:d0:a8:4f:b8:f6:35:57:13:ca:23:92:c5:fb:b5:
5f:88:29:be:48:6b:30:b2:89:d0:26:67:8a:57:93:63:f6:f9:
ac:0e:e8:a1:d0:33:51:de:93:d3:52:b4:2a:0e:65:c8:e2:c2:
00:23:c8:85:4c:b6:6a:e0:b3:7b:2f:32:0d:c3:c0:a9:83:b8:
5e:79:f8:0e:95:7e:43:df:12:f9:35:5a:0a:85:81:99:01:d7:
82:97:49:a8:d5:c2:ac:dc:9a:30:7a:d2:23:35:31:84:8a:80:
54:e5:08:1f:ec:51:05:51:e1:f8:aa:c4:0b:08:d3:98:0a:95:
34:79:06:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:36 2024 by rpki-client on console-ams.rpki-client.org