Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7EBFA36A8F8811EF92748EB0762E951A.roa
File: 7EBFA36A8F8811EF92748EB0762E951A.roa (raw, json)
Hash identifier: uaJvSsM8qkN+Yny6A6ybnkTgpbJlTjMfc/pG95k9FvQ=
Subject key identifier: 72:C2:AC:BA:32:BB:8E:7C:2D:E7:9F:EA:A4:46:FF:8E:3A:86:9D:D5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C73B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7EBFA36A8F8811EF92748EB0762E951A.roa
Signing time: Mon 21 Oct 2024 08:43:08 +0000
ROA not before: Mon 21 Oct 2024 08:43:04 +0000
ROA not after: Sun 24 Nov 2024 08:43:04 +0000
asID: 152711
IP address blocks: 45.202.212.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51003 (0xc73b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 21 08:43:04 2024 GMT
Not After : Nov 24 08:43:04 2024 GMT
Subject: CN=6716141c-a680
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:90:c3:d2:4c:6a:3d:97:51:85:0d:13:af:a2:
80:44:92:7b:ce:c4:2b:39:60:78:92:af:01:83:f8:
e6:f6:b6:e2:80:d4:30:a7:2d:21:65:8f:52:7c:3c:
d2:58:aa:1c:26:48:5d:53:2c:51:4f:15:f0:76:90:
f3:a4:38:77:f6:41:c6:6d:f9:b8:13:a2:23:05:cd:
ef:9f:60:9e:71:45:ef:43:a1:d1:df:97:1a:a7:c2:
ac:2c:40:3f:b4:8a:85:06:76:ed:61:29:3c:57:bf:
5f:0a:2b:f9:42:70:5d:db:c4:14:d1:74:b8:b5:50:
c1:04:19:b8:50:49:18:a7:a2:96:7c:ec:89:0b:9f:
3b:7e:80:bc:6c:b4:09:98:e5:87:4e:15:ae:07:2d:
bf:44:2b:c2:8a:f4:3f:d5:0c:dd:95:1f:f6:0c:e3:
3e:54:46:8b:60:6b:e3:45:8b:13:b4:84:6f:af:f2:
41:a4:e7:da:ee:c3:8d:cc:55:3c:95:d2:b8:7e:41:
e9:9b:73:ed:cf:cc:d9:53:52:8e:b7:a8:42:11:b8:
07:8c:f7:da:d2:73:ed:5f:59:dd:80:3e:83:fd:a4:
f3:f8:e4:e7:a7:27:04:71:ff:e7:8d:ba:f5:ae:05:
50:e3:5d:d0:8c:1f:34:ba:f1:74:09:5a:7b:f3:b3:
b3:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:C2:AC:BA:32:BB:8E:7C:2D:E7:9F:EA:A4:46:FF:8E:3A:86:9D:D5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7EBFA36A8F8811EF92748EB0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.212.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:57:02:21:c9:68:7c:9e:43:25:f1:e5:8d:69:66:4d:49:1b:
ca:55:c2:12:bf:19:55:79:9c:d6:89:a9:93:c4:b5:d2:dd:8f:
5b:5f:73:81:93:d4:ea:80:9d:eb:d6:f1:6a:9c:95:eb:fe:8f:
29:5a:a8:bc:92:a2:93:09:e4:1b:75:90:de:cb:6e:a2:4e:03:
d8:4c:cd:0d:94:c4:14:82:eb:39:ba:91:53:25:7e:c6:36:37:
50:e5:22:02:a4:30:6d:65:93:dc:64:50:dc:f6:17:e8:d9:0d:
c0:fb:16:b2:84:d6:e2:69:7d:97:76:11:70:23:27:e0:77:2f:
c3:da:e0:98:b5:68:5c:2e:84:28:c3:45:05:13:e4:c9:22:33:
a4:11:10:6a:87:16:6c:35:e0:70:c7:18:b5:ac:a4:63:1c:15:
89:44:8c:e4:01:05:99:14:2a:89:04:4b:e7:57:4f:e4:da:4e:
ad:bf:34:51:bd:44:b9:27:0b:38:c9:e6:5e:2e:01:e1:cf:93:
fd:bc:d9:9d:4e:e9:75:7c:c1:af:6d:fc:55:49:14:dc:74:fa:
95:e6:12:31:dc:49:99:ce:71:a3:0c:68:80:cb:51:83:8a:9e:
e9:2d:5b:13:ac:6d:30:ea:fa:50:7d:04:16:0e:8a:4e:10:a8:
17:47:ac:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:36 2024 by rpki-client on console-fra.rpki-client.org