Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7620347874CA11EF958D65B3762E951A.roa
File: 7620347874CA11EF958D65B3762E951A.roa (raw, json)
Hash identifier: lnaf2VGf96Fs3lOuF2ZtzAuHTKkNjPwPJ6BYmvgw9Xo=
Subject key identifier: AE:70:E6:35:E3:81:E3:F3:51:3E:38:AD:22:9B:76:56:22:14:36:99
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B7B6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7620347874CA11EF958D65B3762E951A.roa
Signing time: Tue 17 Sep 2024 07:57:19 +0000
ROA not before: Tue 17 Sep 2024 07:57:15 +0000
ROA not after: Mon 15 Sep 2025 07:57:15 +0000
asID: 142629
IP address blocks: 45.202.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47030 (0xb7b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 17 07:57:15 2024 GMT
Not After : Sep 15 07:57:15 2025 GMT
Subject: CN=66e9365e-7d61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ea:a1:44:27:1e:a1:68:14:25:b1:c6:39:0b:
16:37:cf:9b:b4:c6:14:3c:47:c6:9e:b4:ed:3b:65:
51:0a:57:b8:61:aa:cb:0b:0a:84:8e:a0:cc:b4:69:
31:21:c9:05:6a:aa:00:c4:f8:28:35:13:22:6a:7e:
ed:3b:73:4e:e1:9c:0d:41:e2:89:98:8e:52:49:38:
1f:a7:57:49:e0:3a:f3:2a:d5:8a:cf:a4:87:78:ca:
07:b1:50:ed:9f:ab:e4:0a:89:8b:86:8d:90:91:57:
f0:1f:d7:a5:10:1a:b6:e0:d4:7f:a1:a0:8b:c7:da:
f5:86:73:7f:e1:1b:e1:a6:6d:7e:ee:b4:96:f8:92:
76:e6:02:af:f9:d7:2a:18:04:a1:1c:8e:c6:06:46:
c1:7e:74:47:6e:73:63:01:e8:98:e8:35:a2:ba:1d:
e7:d2:b4:78:21:9f:9b:54:ed:ce:63:ec:46:d2:13:
89:0b:27:d7:de:ea:c2:60:28:12:d7:d5:51:1e:32:
79:4e:20:0e:cf:94:e7:85:7f:18:3d:ea:e4:1e:30:
a3:42:12:31:6c:37:c0:7e:65:af:08:3d:a5:97:a2:
6e:7f:2d:69:1c:04:f4:53:06:a2:09:05:7b:6c:31:
1e:8a:69:2a:90:1f:aa:76:18:f1:b7:09:d5:a8:67:
9f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:70:E6:35:E3:81:E3:F3:51:3E:38:AD:22:9B:76:56:22:14:36:99
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7620347874CA11EF958D65B3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.71.0/24
Signature Algorithm: sha256WithRSAEncryption
19:a3:af:5b:a8:06:30:c4:c3:b2:ea:d0:d9:84:67:49:9b:e8:
4c:90:ad:81:64:58:b8:5e:c0:d2:c3:5b:32:76:e0:6f:91:68:
05:4d:09:f4:92:63:46:9f:97:c9:fb:9f:4c:16:b0:d5:dd:1b:
d6:2a:82:35:5d:60:f8:b9:c7:c0:03:31:70:6e:c6:f3:0d:d2:
66:2a:66:48:b9:3d:86:a7:ba:90:b6:37:e4:2b:5d:32:6a:66:
83:8c:45:e2:9d:4e:1f:9e:29:f5:bc:ed:6b:fb:f4:e2:a2:d8:
30:69:4e:ea:7d:db:87:76:8f:4b:98:7b:82:49:7e:b8:41:1b:
e5:3b:31:cc:80:2e:63:0e:41:45:9c:9e:4b:b6:57:d2:40:fa:
5c:5e:6d:2a:0f:15:e0:18:de:3d:0a:fb:f6:a4:7f:59:3a:6b:
6a:a8:87:13:31:40:95:a6:0d:d6:f2:0e:ac:10:70:0e:68:eb:
b6:6d:6b:e6:84:aa:71:61:51:f8:3b:41:3a:7e:c8:35:4f:fb:
32:07:46:88:02:a7:d5:cd:8b:49:ec:0a:f5:b6:db:5a:cc:ab:
ff:b1:aa:86:ae:fc:60:45:28:c9:5b:65:1f:d9:4a:46:cb:96:
2f:a2:15:de:fa:bb:ef:bb:a0:d6:96:56:56:96:5e:8a:95:44:
fd:d7:61:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:35 2024 by rpki-client on console-fra.rpki-client.org