Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/763F8102C16A11EE8E4692C6775412E6.roa
File: 763F8102C16A11EE8E4692C6775412E6.roa (raw, json)
Hash identifier: D9cBph1mYjCdbHFEtlxxnK+bXgGT6yO0/oJs6QiAMBE=
Subject key identifier: 7C:47:C1:0F:D0:40:10:74:F7:F8:7A:35:7A:D6:E6:60:5C:60:68:3C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 6C71
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/763F8102C16A11EE8E4692C6775412E6.roa
Signing time: Fri 02 Feb 2024 01:29:09 +0000
ROA not before: Fri 02 Feb 2024 01:29:06 +0000
ROA not after: Thu 08 Aug 2024 01:29:06 +0000
asID: 133199
IP address blocks: 45.207.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27761 (0x6c71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 2 01:29:06 2024 GMT
Not After : Aug 8 01:29:06 2024 GMT
Subject: CN=65bc4565-24bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f6:0d:95:91:ed:72:2a:dd:6d:cb:59:62:83:
ef:e4:94:d6:df:a9:a2:fd:b0:1c:58:35:8a:15:e6:
00:07:84:d4:2e:db:eb:be:83:68:d4:4b:e2:39:ef:
e8:75:86:88:0c:8f:ff:e1:1d:ff:d1:7d:a5:fd:da:
d3:50:1d:9e:04:e3:ab:f3:ff:41:bb:24:b2:b8:18:
ca:38:4a:ec:40:43:8f:d6:ef:1f:b5:3b:9a:47:d2:
cb:9f:51:b6:63:30:78:e6:ae:be:98:56:1a:89:27:
0b:b3:c0:d5:40:4e:5b:b6:21:9b:66:41:f9:a7:63:
37:96:0b:25:58:4b:de:cf:cb:05:fe:ab:70:ca:c4:
70:7a:eb:a1:ca:e0:2f:27:7d:e1:fe:f4:05:9d:5a:
e7:56:f2:14:a4:04:15:ad:c4:1e:7d:66:14:0a:9c:
ce:e0:42:9a:37:1d:6f:53:3a:8d:85:97:90:83:a6:
d7:7e:63:1b:c0:25:7a:9b:a4:f3:e4:b9:63:61:05:
38:7d:36:cc:54:c6:02:31:26:34:d2:51:de:10:be:
50:82:40:74:9c:18:62:f5:ac:ed:62:a3:61:39:37:
46:ca:05:12:5d:10:fa:17:82:2c:47:aa:e8:a1:d8:
1a:b9:43:84:ff:2e:f3:a3:5c:ca:59:c6:a9:da:64:
28:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:47:C1:0F:D0:40:10:74:F7:F8:7A:35:7A:D6:E6:60:5C:60:68:3C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/763F8102C16A11EE8E4692C6775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.61.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:2a:17:f2:84:8f:1b:d4:0c:fc:1b:53:ea:9b:3b:70:1f:88:
1c:49:f0:28:24:2c:cf:ce:a6:59:d8:ad:4e:e2:14:f2:59:df:
21:25:b6:68:8c:31:ce:60:24:55:b2:9a:a0:94:a7:e7:c3:81:
93:4e:16:20:60:12:47:17:9e:72:1e:28:a5:e1:ed:58:31:cf:
f5:22:c5:f5:ab:f8:41:10:31:da:ad:45:b7:c2:28:d1:4e:d3:
1a:6b:c3:fd:40:03:04:f6:a5:35:14:e3:c9:cb:e1:ba:9b:21:
2a:2c:89:20:a0:48:4f:7d:93:9d:da:1f:08:97:53:4b:d4:1f:
e4:5b:f3:46:f6:93:f3:c9:65:d1:38:92:3d:d7:26:e7:f7:67:
bc:6a:e7:44:bf:98:97:db:b6:4f:4f:27:af:7c:19:08:a7:bd:
df:4f:a4:c8:cc:52:70:c6:b7:d9:91:90:2a:4a:83:08:51:ef:
b0:e9:6f:50:5a:a0:ef:b2:87:5d:d3:6a:3e:48:58:7a:69:2a:
fc:28:e0:1e:26:90:1e:b9:2c:8f:91:bf:81:95:7f:eb:83:ba:
08:e9:7a:02:a7:32:92:95:2b:41:a6:15:be:99:ed:15:fc:02:
25:80:b9:7d:8f:31:1f:ae:59:33:38:1f:0b:5e:ae:4c:f7:08:
e4:e2:1c:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:54 2024 by rpki-client on console-ams.rpki-client.org