Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/790C1F12983311EF9F137D51762E951A.roa
File: 790C1F12983311EF9F137D51762E951A.roa (raw, json)
Hash identifier: lSw+JIUqUL3pHCjEGAFV8Zom1ztGRLORsmVzFfsnQKk=
Subject key identifier: 8C:73:BE:03:6C:9F:CD:A0:00:6A:B1:CC:B4:DA:86:18:38:9F:06:B6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CB73
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/790C1F12983311EF9F137D51762E951A.roa
Signing time: Fri 01 Nov 2024 09:27:11 +0000
ROA not before: Fri 01 Nov 2024 09:27:08 +0000
ROA not after: Sun 01 Dec 2024 09:27:08 +0000
asID: 398823
IP address blocks: 45.205.240.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52083 (0xcb73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 1 09:27:08 2024 GMT
Not After : Dec 1 09:27:08 2024 GMT
Subject: CN=67249eef-72d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1a:96:c7:08:e9:e4:c3:9c:c0:fd:53:ae:d5:
05:3a:08:c0:e1:31:41:13:4b:bb:70:73:8e:b2:47:
4a:7b:e8:7e:2b:10:73:e2:04:46:e0:fe:f0:45:53:
6e:24:f1:66:b0:8c:a6:a1:12:4a:33:ef:22:43:9c:
e4:bc:4a:9a:81:d7:b1:7e:c0:4c:60:79:75:fb:19:
92:2a:cf:ae:ad:d7:5e:4a:06:40:82:0a:86:e7:0e:
fd:f5:c6:d1:92:47:7b:9b:15:20:29:34:3a:96:0a:
8d:b8:3f:fc:22:21:b0:4b:6a:b9:90:c3:9c:06:a3:
1a:9f:33:a4:0d:11:40:bc:96:55:0a:67:eb:ad:6f:
1b:c4:ce:cd:45:bb:d9:16:3e:76:02:8e:cb:86:8c:
50:12:78:87:76:3c:6e:53:39:12:e6:58:ed:fe:b1:
5b:c6:9e:dd:87:f5:9e:37:74:81:64:73:ac:22:23:
9b:6e:34:f4:71:dd:46:b7:a9:ec:4c:21:26:82:c0:
db:30:6f:3e:7c:54:e2:7e:70:b3:8a:d3:54:83:29:
14:a3:e0:3a:1f:71:ab:d0:53:09:c7:fe:34:f7:f0:
37:de:32:1f:2e:74:60:9a:88:af:ea:34:04:5e:46:
1e:71:d4:e9:25:ba:a5:b6:70:c7:62:1d:04:56:3c:
26:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:73:BE:03:6C:9F:CD:A0:00:6A:B1:CC:B4:DA:86:18:38:9F:06:B6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/790C1F12983311EF9F137D51762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.240.0/20
Signature Algorithm: sha256WithRSAEncryption
92:17:29:fe:b9:83:d6:07:c2:39:4b:05:4d:60:c3:02:63:22:
95:41:9b:f9:b8:53:71:96:15:0f:92:45:c6:90:b3:41:04:7f:
2b:26:eb:0c:f0:51:51:c8:3a:48:c9:0e:e1:3d:96:ad:da:48:
27:66:c1:94:12:58:9c:3a:ff:f5:3b:bc:ad:82:3e:ed:51:69:
b0:a7:6f:b8:7d:0a:30:e1:bb:3c:52:46:3c:46:72:35:80:06:
a5:5e:d1:8a:a5:86:6d:61:f2:fa:7b:43:8e:cc:e7:83:1f:49:
02:40:10:c2:d0:64:e6:46:ca:28:20:7a:2e:65:2a:ce:41:34:
86:3d:c0:de:a1:56:1f:cf:26:70:ac:72:7d:56:b0:5a:58:70:
3c:c4:19:9a:dc:e9:26:5a:4a:e9:36:1b:52:72:22:c0:11:b6:
c0:c4:50:1f:dc:b3:7d:a9:0a:82:22:f2:98:86:dd:37:09:b7:
85:06:1c:bd:0f:6e:6c:87:5e:0e:01:28:e2:40:ac:95:d5:fb:
26:6a:86:1b:97:9f:e3:dc:c0:53:49:c9:3d:e2:b9:3d:f0:f2:
83:93:76:95:22:34:c0:92:71:82:0e:b3:b4:3c:e1:fc:df:9d:
7e:30:7a:cb:8d:a0:ca:59:08:cf:25:c3:79:9d:81:c4:3f:cc:
5b:72:18:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:37 2024 by rpki-client on console-ams.rpki-client.org