Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7D75EDAE735211EFBA7BCC4D762E951A.roa
File: 7D75EDAE735211EFBA7BCC4D762E951A.roa (raw, json)
Hash identifier: drHYGT1Pu6u4Gh1MtOPCKLppO31YvMmdEbc+gF29JeM=
Subject key identifier: DC:D1:B6:A3:A8:BA:0A:D7:86:90:A6:85:24:21:FE:6B:F0:64:B5:17
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B676
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7D75EDAE735211EFBA7BCC4D762E951A.roa
Signing time: Sun 15 Sep 2024 11:06:00 +0000
ROA not before: Sun 15 Sep 2024 11:05:57 +0000
ROA not after: Fri 08 Aug 2025 11:05:57 +0000
asID: 133199
IP address blocks: 45.207.36.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46710 (0xb676)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 15 11:05:57 2024 GMT
Not After : Aug 8 11:05:57 2025 GMT
Subject: CN=66e6bf98-8b34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:73:b8:e4:15:b7:e6:d8:72:e5:40:e6:23:9f:
6c:de:ea:88:95:d8:93:63:b2:f0:d0:f5:d3:10:27:
64:32:d1:15:b9:e5:64:18:ca:e8:dc:95:0e:2d:6c:
c4:9c:47:9d:2f:11:27:13:e5:1a:67:d3:73:a8:08:
54:fa:64:24:e7:6a:ad:50:d9:67:5a:34:40:34:17:
d2:ed:40:23:a4:90:8a:f9:e1:b0:1d:7e:85:c3:9b:
34:3d:31:31:70:d4:1f:12:80:51:9b:91:5b:3f:2c:
e8:9b:3b:8d:8e:b6:14:08:76:56:32:25:60:c4:6f:
bc:6c:ed:87:ac:f9:90:38:ab:10:fe:c4:3a:aa:d2:
41:ac:90:f9:2a:86:69:58:7b:b0:f0:1a:4c:9c:92:
6e:4e:0c:0d:33:2e:e9:89:95:68:38:b3:4c:1b:36:
f4:e4:66:6e:df:90:3e:87:eb:4d:35:56:73:6b:cf:
2a:7a:91:c0:8d:73:2f:e8:9e:ce:37:18:53:84:25:
6e:af:83:14:d2:5a:64:9d:98:8a:3f:56:0b:35:1e:
91:c8:ee:8e:38:d1:2b:10:94:12:1d:fc:93:ac:2e:
17:61:1a:ca:91:c1:3e:98:87:84:c7:96:e2:e4:6c:
5f:8c:39:48:6d:59:97:3b:3d:4d:0e:e5:39:8b:13:
9a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:D1:B6:A3:A8:BA:0A:D7:86:90:A6:85:24:21:FE:6B:F0:64:B5:17
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7D75EDAE735211EFBA7BCC4D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.36.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:b8:53:d2:15:17:17:1e:c9:e3:c9:77:15:13:aa:18:98:fa:
39:4f:f5:54:a6:07:9e:61:9f:05:a2:e4:c0:ad:48:7e:11:fe:
0f:39:29:c6:20:64:c4:47:4d:13:c6:f5:c5:9a:65:a9:3c:4f:
0d:00:69:1a:32:4b:19:0e:af:53:02:a5:8e:29:51:1c:c8:72:
d9:fc:3a:15:8b:18:fd:26:15:78:a4:49:15:82:d4:8d:b2:d5:
2f:4a:e4:17:c4:58:f9:c4:c4:3c:79:73:96:81:25:c6:f8:92:
07:c6:58:0c:8e:5e:ae:3a:73:2d:2b:a7:8f:ef:44:08:01:6d:
a8:4f:b0:a5:57:e1:f2:d3:1a:af:0d:45:94:71:04:d8:57:2e:
79:6d:27:76:43:41:75:af:20:76:1e:f0:c4:4f:69:85:cc:13:
3b:b8:a3:e0:38:f3:b5:bf:ac:4e:af:b6:f4:a2:76:47:4c:5b:
6a:20:c5:aa:f7:8e:86:37:8e:42:e0:01:ac:9c:80:47:b1:28:
14:cc:5d:4e:a5:89:5b:2a:9f:b8:23:2c:7f:46:61:4b:a8:d7:
57:76:e1:70:24:2a:07:62:c8:08:fd:3e:43:fc:63:b7:e8:5a:
bd:2d:79:8a:02:72:fc:c8:c5:08:88:8a:8f:bf:81:9f:89:80:
76:84:67:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:37 2024 by rpki-client on console-ams.rpki-client.org