Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/76756CF8A2EE11EE98AB8777D25BE465.roa
File: 76756CF8A2EE11EE98AB8777D25BE465.roa (raw, json)
Hash identifier: 0NUjOsx4Djs4z/ZrDp6V3SrOc4fnAUeYoUZ4wUflbZs=
Subject key identifier: AA:6C:DF:87:FA:76:C4:33:B8:A0:FD:F5:28:D3:77:F0:B3:9F:61:C1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 5924
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/76756CF8A2EE11EE98AB8777D25BE465.roa
Signing time: Mon 25 Dec 2023 06:25:57 +0000
ROA not before: Mon 25 Dec 2023 06:25:53 +0000
ROA not after: Wed 02 Oct 2024 06:25:53 +0000
asID: 393294
IP address blocks: 45.199.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22820 (0x5924)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Dec 25 06:25:53 2023 GMT
Not After : Oct 2 06:25:53 2024 GMT
Subject: CN=65892075-599b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7e:b3:3f:30:92:23:7c:e4:b2:72:9c:65:f0:
c8:87:f3:6d:1d:10:39:b5:24:cc:6f:2a:8e:59:62:
cd:e2:2e:aa:11:de:31:d7:13:f8:78:52:6b:22:de:
17:1b:ce:1e:98:57:1c:ec:9d:13:01:8a:b5:30:b9:
d8:19:da:df:c9:61:64:e0:67:00:28:50:1d:33:49:
2f:0c:a8:61:c8:f6:a1:b4:75:01:fe:8e:51:0e:fe:
72:8c:22:e1:57:e1:dd:58:04:9c:24:40:c7:40:8b:
12:cd:ca:b5:f4:ba:6f:2e:2d:dd:3c:e1:e7:9a:7f:
b7:be:e4:75:47:73:bb:a6:ad:c1:99:9a:70:ff:0d:
b0:4e:f8:e7:67:a7:d3:16:64:60:ef:31:ef:3b:c3:
1d:10:26:31:ce:e1:c2:2e:0c:d3:cf:75:12:57:28:
cd:0e:de:9a:72:48:48:83:ea:fa:f3:63:c8:17:a4:
4c:7e:cd:71:40:10:f6:5a:33:af:0a:01:4e:d6:77:
b6:42:70:cf:34:d2:13:a0:9b:ec:f4:d8:c6:65:b6:
b3:57:88:ed:7e:c4:ab:54:d9:67:0c:35:ed:d5:63:
af:a8:ae:19:bf:ba:75:44:dd:aa:50:d3:e7:1c:6a:
5c:dc:a3:b3:b6:a2:9f:b0:ac:e5:89:ae:7c:04:14:
6d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:6C:DF:87:FA:76:C4:33:B8:A0:FD:F5:28:D3:77:F0:B3:9F:61:C1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/76756CF8A2EE11EE98AB8777D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.162.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:1a:d1:74:42:2d:31:cf:9c:73:5c:d5:83:08:1c:6a:fc:3b:
76:dc:3d:52:09:33:03:00:e0:26:f3:22:f5:ea:3d:cf:65:11:
39:92:7d:a2:06:14:5e:f8:f9:b0:b5:55:71:72:b9:96:c3:79:
8c:5a:3e:dd:9d:84:ba:e2:48:9a:14:61:b1:10:58:a1:a8:c2:
1c:d3:97:c1:97:78:c6:1d:cd:72:af:a6:0c:e1:84:ef:10:69:
8b:32:cb:c4:cb:b5:c7:b4:5c:02:43:3b:1f:a6:51:86:ca:97:
64:63:e7:38:f1:10:66:00:4f:6c:16:22:64:f1:36:29:ed:93:
89:05:7b:26:d1:90:05:1d:c2:e9:cb:12:f5:63:e9:91:a2:bd:
21:94:44:fd:0b:2e:a5:03:f4:5d:89:df:29:fe:be:8f:20:2d:
34:64:34:c3:1d:b8:fc:83:80:01:af:9c:b9:1b:f4:18:4e:cb:
5d:69:60:f5:ae:c1:52:be:3c:38:ab:d4:56:72:49:2e:a7:ab:
90:cd:41:9a:89:52:7c:c9:87:3d:56:a1:0f:fa:34:18:99:03:
c8:39:95:82:30:a7:96:2a:1c:e6:26:1a:1f:11:f5:5e:dc:53:
4d:02:cf:03:11:06:3b:78:19:9c:60:b9:82:63:e7:73:1b:33:
99:bd:8c:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:11 2024 by rpki-client on console-fra.rpki-client.org