Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7C9CE334E04911EE95394FB2775412E6.roa
File: 7C9CE334E04911EE95394FB2775412E6.roa (raw, json)
Hash identifier: 6qxEIkk2Mpr/Rxk7NYMVLIueZYk+EBKLGp1lSXtXW44=
Subject key identifier: DF:01:18:9A:04:D3:25:28:CC:44:16:78:8B:4A:15:8A:30:B1:6E:AA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 7E1C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7C9CE334E04911EE95394FB2775412E6.roa
Signing time: Tue 12 Mar 2024 08:21:12 +0000
ROA not before: Tue 12 Mar 2024 08:21:09 +0000
ROA not after: Thu 30 May 2024 08:21:09 +0000
asID: 328608
IP address blocks: 45.199.185.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 03 May 2024 00:16:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32284 (0x7e1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 12 08:21:09 2024 GMT
Not After : May 30 08:21:09 2024 GMT
Subject: CN=65f01078-ae6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:77:f8:6e:08:d2:75:86:96:06:c2:ea:78:04:
43:62:1e:54:a7:b7:ca:bb:65:94:75:e9:59:2d:19:
cd:59:59:2e:1f:92:87:ed:6a:b9:06:a2:f7:8b:87:
73:b7:7d:be:64:0d:3d:8c:49:21:50:7c:6e:94:6b:
54:7e:96:73:ce:77:ad:81:51:16:72:e2:16:fd:9a:
bd:b9:0a:dd:f7:3b:22:2d:c3:28:77:65:a2:94:f2:
80:27:29:e9:2d:10:fc:1b:9c:b1:7c:53:2b:71:4b:
d1:2f:ee:42:44:92:9c:5b:f8:d2:fe:04:a2:bc:5b:
87:14:98:6f:09:d7:13:88:10:04:bb:cf:74:d9:60:
b9:b2:9e:35:5b:8b:dd:3c:da:5c:38:e1:89:07:3d:
6a:e0:27:be:eb:c8:9d:6b:6c:2b:cb:fa:d6:14:9c:
d0:e9:26:29:96:3d:f7:0e:89:1c:d0:cf:f0:eb:a7:
61:8e:59:1d:b6:3f:5a:1d:74:2c:b7:ed:be:39:4a:
fd:0d:f7:40:71:f3:e1:e8:3e:05:c4:33:4a:91:5c:
72:ec:0c:25:ef:18:e9:2f:e4:51:89:b5:74:eb:19:
cd:36:35:18:42:c5:ab:90:02:ae:1e:2b:96:6f:2c:
d8:4a:13:e6:53:e6:fc:bd:b9:5c:86:e0:7a:f5:4d:
96:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:01:18:9A:04:D3:25:28:CC:44:16:78:8B:4A:15:8A:30:B1:6E:AA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7C9CE334E04911EE95394FB2775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.185.0/24
Signature Algorithm: sha256WithRSAEncryption
00:6c:eb:93:a6:c5:3f:06:aa:08:bb:52:aa:4e:a6:d8:f7:fd:
ee:26:41:d0:cf:35:e2:86:53:6b:c8:b5:6a:ea:ae:fd:19:e8:
69:80:3f:ed:3b:42:47:2f:80:76:71:99:eb:e0:b4:bd:a6:16:
35:3a:76:b9:77:22:87:1b:7e:e3:b4:24:f8:46:d5:7c:94:a2:
46:64:c8:29:c1:aa:ce:ad:b6:84:f5:7f:31:c2:29:a3:0d:08:
74:ff:1b:4d:cd:86:3d:6a:c4:11:a7:fe:ae:71:ff:06:05:c9:
4c:5e:65:46:0d:9f:04:20:b3:b0:6b:8f:b2:38:1f:40:4a:9d:
7b:4c:ce:1e:72:7e:cf:8e:77:d4:ae:92:27:7f:dc:a2:45:3a:
59:3b:18:a9:52:46:b9:e3:ac:16:68:d5:3b:94:15:e2:e4:8c:
af:7a:51:66:62:60:99:44:9b:f9:bc:95:a8:3e:05:1d:9a:e2:
c0:8e:d1:66:0e:7d:53:c6:dc:2b:92:82:95:c8:ef:5b:cd:d8:
b4:40:42:6e:e2:4b:a0:96:d7:65:1f:b7:c9:56:8b:45:70:35:
b0:17:9a:b2:17:3c:ad:6c:be:df:a5:94:c3:35:13:de:d7:74:
5e:79:bd:f6:68:ff:50:09:26:98:d7:c7:81:f3:7f:71:e1:23:
88:14:7a:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 13:30:04 2024 by rpki-client on console-fra.rpki-client.org