Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/80828BD09C1811EFA4044267762E951A.roa
File: 80828BD09C1811EFA4044267762E951A.roa (raw, json)
Hash identifier: DIPSHeFevxvaCfks5Vf/nPPBM5+8sTUh+t3rJlxNRnY=
Subject key identifier: 7E:95:A5:8D:7D:D1:EF:EB:6B:44:4E:3C:40:09:0F:84:E7:B0:3F:12
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CF12
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/80828BD09C1811EFA4044267762E951A.roa
Signing time: Wed 06 Nov 2024 08:24:12 +0000
ROA not before: Wed 06 Nov 2024 08:24:08 +0000
ROA not after: Sun 08 Dec 2024 08:24:08 +0000
asID: 142032
IP address blocks: 45.207.192.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53010 (0xcf12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 6 08:24:08 2024 GMT
Not After : Dec 8 08:24:08 2024 GMT
Subject: CN=672b27ac-fa40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d4:2e:89:68:81:3f:46:07:f0:a9:05:cc:d3:
4a:14:17:76:eb:01:33:1e:7d:5f:1b:ba:c2:b8:fd:
99:77:8f:9b:c3:56:d7:97:ea:08:f5:de:4a:f0:3b:
cd:0e:8e:fb:6c:ed:a7:14:31:9f:65:02:ec:5b:49:
46:5a:f8:84:38:39:a7:6b:2d:8d:8e:5f:e9:52:c4:
d2:17:b5:3d:08:0b:ef:06:d7:19:a2:8b:91:c0:85:
13:82:06:ee:84:4c:a6:7d:af:36:a6:c8:0a:d8:2a:
30:d3:ba:91:7b:a8:46:4b:0f:f6:38:cb:07:64:dc:
ef:06:2c:79:37:cb:5b:e3:f8:43:19:21:60:5d:2c:
7a:e8:38:80:9a:ff:f8:7f:2b:9b:82:01:a3:e5:21:
7b:6b:5f:93:1b:fd:27:82:82:70:1b:fd:3f:24:62:
e0:fe:c9:8c:a0:0e:69:3a:77:02:c0:4d:a4:0f:b3:
aa:83:91:d7:bb:af:27:a9:75:60:f7:d2:3c:24:5c:
cb:df:40:32:f9:d5:b8:14:a7:c2:3c:2d:40:f1:07:
a9:2b:ca:b0:e3:51:0f:11:81:db:e0:a0:00:9b:f2:
f2:7f:8a:53:d9:4c:be:42:99:b1:be:cb:c2:a8:99:
8a:f7:df:77:5d:eb:73:e1:0f:4e:80:f2:3f:0d:ca:
23:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:95:A5:8D:7D:D1:EF:EB:6B:44:4E:3C:40:09:0F:84:E7:B0:3F:12
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/80828BD09C1811EFA4044267762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.192.0/19
Signature Algorithm: sha256WithRSAEncryption
1b:60:b8:ab:cc:29:a3:4e:67:4e:cb:88:d3:a3:49:d2:81:85:
ea:f1:69:f1:52:f3:27:57:1e:0c:68:64:96:17:06:f0:3f:93:
da:36:a3:41:93:41:61:25:06:88:d7:19:de:a6:5d:a4:a1:56:
6f:66:dc:3c:3c:6b:9f:53:41:b6:58:79:40:ba:4b:3a:bd:a6:
05:fe:28:9c:b8:a9:09:74:e9:d4:45:50:51:56:42:3e:c2:94:
a8:72:7a:fa:ab:c0:4d:f9:61:84:ec:20:1e:71:45:21:ec:f3:
77:42:19:5b:2f:7e:20:e9:3c:4c:b5:e6:64:d2:bb:c5:4e:d6:
96:73:b1:4c:00:8a:a5:de:cd:2d:0c:5c:a0:31:a9:3c:4c:d4:
b6:57:f8:e1:81:fe:f7:cc:ee:cf:8b:b1:ac:0b:a1:56:db:dc:
65:be:d9:c7:0d:22:05:aa:ee:5c:80:c4:85:75:fc:d1:2c:6f:
3d:a9:c8:30:bb:b7:fc:d3:c7:c2:97:b6:8a:41:03:df:fb:bc:
a4:6d:54:07:6d:55:32:3a:e0:47:7a:47:e6:07:8a:04:0e:ae:
ef:da:75:a7:b0:b4:99:7e:09:50:cf:31:93:fb:04:21:e6:54:
64:64:f3:53:e8:3f:0e:f5:5a:6b:bb:44:95:37:4c:ce:38:d6:
61:0b:c2:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:37 2024 by rpki-client on console-fra.rpki-client.org