Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/84EB2074A73511EFAAD54A78762E951A.roa
File: 84EB2074A73511EFAAD54A78762E951A.roa (raw, json)
Hash identifier: SMJrO6MMI4rCwqggwvIRnCTSCpxJPdxxAL3pVBQ1qcw=
Subject key identifier: 80:93:ED:8E:DC:AC:AE:D5:B7:29:F5:F1:C2:D2:E6:28:92:C6:E8:71
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D5EF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/84EB2074A73511EFAAD54A78762E951A.roa
Signing time: Wed 20 Nov 2024 11:49:38 +0000
ROA not before: Wed 20 Nov 2024 11:49:34 +0000
ROA not after: Mon 02 Dec 2024 11:49:34 +0000
asID: 39600
IP address blocks: 45.196.140.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54767 (0xd5ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 11:49:34 2024 GMT
Not After : Dec 2 11:49:34 2024 GMT
Subject: CN=673dccd2-ea3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fe:e8:76:59:c0:a1:bf:c3:77:9f:36:b1:cd:79:
cf:07:21:3f:b3:c0:15:ac:22:2c:67:0c:8b:98:95:
d7:a5:d3:94:20:53:0a:57:71:45:61:50:a1:ff:d2:
be:4b:c9:36:5f:7e:8e:1a:ff:48:ea:ac:e0:dc:13:
04:b7:a7:ad:77:6d:e1:d5:c6:97:0a:1c:bd:18:0f:
9d:b6:54:ca:95:db:8b:88:ef:62:6c:20:6d:41:58:
99:aa:bf:10:d9:ff:ce:4c:34:d1:35:7b:c8:d0:01:
4a:40:4c:3f:65:02:f6:36:8b:48:b4:c4:c3:e2:4b:
4c:37:ef:82:5e:91:8f:10:cd:c9:68:19:c3:6d:31:
d5:77:db:8e:29:78:7c:e5:de:4b:e7:29:2f:46:a7:
cf:3e:18:6e:6f:ba:f5:cc:a1:f6:55:49:d8:ab:17:
c3:f6:eb:e7:25:b6:87:f4:2f:aa:c3:a1:93:da:d5:
df:5b:b3:12:8e:87:9b:a0:90:87:54:40:1b:3c:b7:
8e:49:8c:97:35:4f:e2:87:60:03:ef:b6:df:58:bf:
58:06:29:bb:11:8a:68:8d:9a:14:c0:e2:db:7d:a4:
69:41:35:b4:8a:e5:11:68:f1:28:f2:10:41:f7:aa:
4a:4f:35:3d:76:61:db:47:0d:00:03:74:33:47:00:
7f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:93:ED:8E:DC:AC:AE:D5:B7:29:F5:F1:C2:D2:E6:28:92:C6:E8:71
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/84EB2074A73511EFAAD54A78762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.140.0/22
Signature Algorithm: sha256WithRSAEncryption
62:00:82:2d:80:3a:67:b2:4b:2f:52:8d:e8:67:fa:ea:22:5c:
a4:31:47:85:43:3f:58:b9:22:1f:c0:e9:b7:f6:73:4a:13:36:
13:26:8c:9f:53:72:e6:d6:d7:d2:3c:b9:8f:de:26:37:cd:48:
76:03:95:fd:39:bc:59:7a:22:e0:8d:21:da:3b:1f:e0:be:42:
17:0e:40:16:fc:e2:24:d3:a4:85:a5:40:89:0a:cd:26:5d:cd:
6a:28:90:7c:bd:c3:c4:a0:16:8c:0f:45:79:cb:b4:4c:09:2d:
50:9f:83:6b:03:68:eb:ba:27:5d:d8:a5:6a:36:1e:d8:44:7c:
9e:81:2e:2a:4d:25:0b:29:39:f3:89:64:2e:0c:63:a2:63:c5:
2b:ba:b6:12:b8:2d:97:64:fb:d0:e0:d7:04:44:d7:32:84:fa:
d6:7e:cb:28:2b:3c:cf:d0:49:6a:47:b3:5c:35:7e:8a:76:6a:
f9:cd:6e:4f:25:65:57:21:fe:bd:23:d8:ad:01:ce:02:76:c8:
6a:23:ca:9b:b9:f6:f7:92:b2:c8:2d:fe:7d:02:ef:61:31:e5:
70:8c:1d:a8:29:12:8a:69:a2:7e:36:28:fa:4e:2d:88:91:cc:
6f:b6:0f:5d:47:e7:3c:15:ec:ca:e0:26:9d:75:d0:1b:54:94:
f5:a4:d5:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:38 2024 by rpki-client on console-ams.rpki-client.org