Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7E3135E2A44D11EFA07182B1762E951A.roa
File: 7E3135E2A44D11EFA07182B1762E951A.roa (raw, json)
Hash identifier: CSWYSsiP5xZoNyoFw7k3zp44l3GLldmmeqnCCvkIisg=
Subject key identifier: C7:F7:E6:95:CE:68:10:5E:D2:00:16:B7:25:39:54:74:5D:11:A9:80
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D3B8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7E3135E2A44D11EFA07182B1762E951A.roa
Signing time: Sat 16 Nov 2024 19:03:41 +0000
ROA not before: Sat 16 Nov 2024 19:03:34 +0000
ROA not after: Mon 25 Nov 2024 19:03:34 +0000
asID: 9009
IP address blocks: 45.192.136.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54200 (0xd3b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 16 19:03:34 2024 GMT
Not After : Nov 25 19:03:34 2024 GMT
Subject: CN=6738ec8d-baad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:31:ae:6c:3d:59:0c:99:b3:b5:14:70:41:72:
27:a3:10:85:ac:c5:cb:eb:85:8e:4f:09:17:a2:93:
a7:88:74:e8:fb:9d:4c:91:20:50:90:d1:55:19:b4:
77:f7:3e:d9:64:c4:e1:54:48:25:95:ff:d9:8d:a6:
89:f3:9b:66:01:fb:9c:fd:d5:a8:90:57:be:ce:33:
18:8a:ef:92:62:bd:52:2e:12:bc:f7:60:0a:bf:9b:
3b:de:2a:d7:17:47:7f:e9:15:6b:82:da:cd:13:0c:
d5:87:86:24:eb:6c:55:1b:0e:e7:ad:06:d2:8f:de:
71:e3:fc:24:5d:41:bd:a1:8f:ab:30:10:24:c2:6e:
f2:b5:3d:ba:9d:ba:5e:f6:e8:09:a1:40:18:85:75:
40:4d:2b:2b:35:c7:5b:53:5f:25:c7:0e:c9:1d:3b:
34:b9:04:b1:cf:8d:ef:d2:49:ee:39:09:59:a3:89:
e3:a4:f7:63:84:dc:89:b5:d7:68:46:d2:a5:53:bc:
82:6a:f3:a6:47:36:71:d9:df:87:11:b3:d3:36:96:
88:80:8f:24:53:47:d1:75:5e:ee:2d:ff:bb:4e:93:
d3:81:8a:81:13:4b:74:50:19:5a:1d:7d:e1:1b:9f:
08:3a:33:29:81:ff:51:e5:15:f2:cf:8e:42:5e:3d:
3d:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:F7:E6:95:CE:68:10:5E:D2:00:16:B7:25:39:54:74:5D:11:A9:80
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7E3135E2A44D11EFA07182B1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.136.0/22
Signature Algorithm: sha256WithRSAEncryption
30:6f:70:ee:d5:8b:99:0c:e9:42:fc:a2:07:3c:8e:3b:72:f3:
17:79:73:f7:07:07:7c:fb:56:b4:9d:2b:71:7f:0a:3a:81:32:
2a:3f:e0:54:e9:29:6c:d3:4d:a6:f9:ca:15:b2:ed:04:60:42:
8d:23:f3:64:9d:1b:e2:ad:ce:9b:1a:4f:e6:6c:ed:6d:a9:fd:
84:cf:de:72:10:d5:f7:0e:c3:62:41:b8:b5:47:03:7a:0a:48:
10:14:27:5b:ac:40:56:a1:0d:45:64:4b:cd:4f:4c:a4:8e:04:
04:6e:78:4a:c2:34:ce:d5:1b:54:8f:e6:94:10:3b:42:f4:c2:
51:14:c1:90:89:b8:3a:3d:0c:fd:b8:ec:55:44:50:61:3d:09:
24:8a:d4:bf:91:71:29:cf:cb:f0:a6:7b:bc:74:85:67:cc:fc:
12:37:ad:8e:8d:b7:6c:53:44:ce:ed:73:20:7e:7b:7f:00:6f:
81:78:b4:75:21:42:f2:db:23:30:54:30:1e:12:57:f6:60:24:
13:a5:08:31:91:00:48:3f:da:62:03:ba:2f:cb:e0:1e:43:e2:
24:86:6a:93:cf:a2:74:df:61:0e:44:28:1a:fe:23:f6:49:7d:
b3:e0:6d:7b:93:c0:28:8c:3b:7e:ec:1c:fc:fb:3e:4a:1f:eb:
04:3d:3e:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:37 2024 by rpki-client on console-ams.rpki-client.org