Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9620EF42719B11EFAB071F48762E951A.roa
File: 9620EF42719B11EFAB071F48762E951A.roa (raw, json)
Hash identifier: Qm7ht3z1d5wuhvWH5eL7zDb1lTjEeAPmW5SQ1wad4hQ=
Subject key identifier: 8D:6D:D2:C9:A2:B8:BC:1F:5C:43:17:40:8B:A9:43:30:AA:86:26:BF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B506
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9620EF42719B11EFAB071F48762E951A.roa
Signing time: Fri 13 Sep 2024 06:44:12 +0000
ROA not before: Fri 13 Sep 2024 06:44:09 +0000
ROA not after: Fri 08 Aug 2025 06:44:09 +0000
asID: 133199
IP address blocks: 45.207.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46342 (0xb506)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 13 06:44:09 2024 GMT
Not After : Aug 8 06:44:09 2025 GMT
Subject: CN=66e3df3c-1472
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:7d:68:81:41:14:5d:4a:29:d3:d2:e3:62:7c:
62:9d:e1:29:55:06:33:bf:54:ae:e1:7b:88:23:7e:
d1:07:ee:a5:3d:0d:17:1f:05:c6:2b:ea:f3:c9:1e:
88:76:eb:79:95:10:40:86:4b:07:fd:35:4a:56:05:
54:a9:a6:2c:83:75:4f:a8:b6:1b:52:31:6b:fd:99:
47:79:b2:d1:77:8b:3c:b3:94:ad:94:95:3b:0a:70:
3a:30:7e:29:b4:1b:35:12:3e:8e:72:0c:36:ee:60:
7a:d3:62:76:12:18:0c:49:2d:cc:0e:26:7a:67:27:
4f:c5:a1:c8:b1:5e:f6:57:3f:0e:4f:39:e7:f2:c1:
ef:f0:fb:05:24:b9:5b:c6:08:57:00:67:bd:28:b2:
25:46:24:aa:c6:27:80:c9:16:43:a0:5b:39:0d:d6:
76:27:d4:c7:55:8b:49:7f:c3:62:bd:47:3b:2a:2f:
a5:21:fe:3f:f9:9d:8f:31:47:76:ba:dd:ed:d7:0e:
af:33:63:bc:4f:f9:a0:9a:92:c1:76:b0:14:3f:47:
82:7b:4e:d9:a9:b9:70:f1:cc:a4:7f:71:95:cb:75:
ee:68:ed:9e:55:f2:25:b8:b6:56:83:99:9d:ce:ff:
be:62:52:d5:76:ec:04:a1:2b:78:de:aa:3e:cb:12:
6c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:6D:D2:C9:A2:B8:BC:1F:5C:43:17:40:8B:A9:43:30:AA:86:26:BF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9620EF42719B11EFAB071F48762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.47.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:ce:3f:ef:aa:9c:9b:28:79:e9:72:28:94:80:77:6c:48:6e:
45:a1:8f:bf:e7:9a:dd:5a:14:88:dd:84:48:26:1a:25:64:b0:
65:d1:be:bb:ef:be:d3:0e:af:c3:6d:09:7f:89:60:c2:c4:03:
8b:06:d3:a3:38:d6:8e:d0:c4:8c:c3:aa:4d:cf:91:c0:24:11:
44:a0:ce:2a:c2:ce:9e:48:90:21:5b:43:da:cb:d6:cd:f3:6b:
1c:95:47:93:33:04:7e:3b:ab:62:6f:e7:22:16:dc:e7:07:b3:
82:5c:a3:6c:56:3f:b8:81:91:c4:11:35:1a:6c:0e:a1:dd:0e:
98:40:85:0f:7c:7a:d1:1d:d0:33:c2:13:66:45:1b:18:e6:7b:
99:48:72:d7:66:b2:c3:5a:c0:83:11:3b:87:06:7f:08:8b:43:
85:e8:c6:2d:90:78:0d:a7:8d:f9:5d:95:f3:6d:5e:0f:6b:1b:
da:0b:01:e9:a4:4a:d5:6b:26:df:c9:a4:1d:c9:70:d8:83:b1:
ad:1e:46:dd:90:e7:db:a7:7b:7f:c0:2b:d1:08:41:be:c7:94:
ed:77:4c:5b:6d:91:c3:16:d1:b0:e7:04:60:d4:e3:ac:43:5d:
a7:b2:da:0a:92:aa:d0:54:48:96:7d:1a:51:ac:77:e2:74:7e:
de:9f:f6:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:39 2024 by rpki-client on console-fra.rpki-client.org