Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9D92D298726A11EFAB9CDD5A762E951A.roa
File: 9D92D298726A11EFAB9CDD5A762E951A.roa (raw, json)
Hash identifier: ftH+HnhV2sU2bwEHH4U6vMnyzowqiuPGdGmBcvmHQT4=
Subject key identifier: 81:16:1D:49:38:E9:0F:FD:61:3A:1D:0F:7D:80:A3:2B:DB:BA:C8:F5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B5A9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9D92D298726A11EFAB9CDD5A762E951A.roa
Signing time: Sat 14 Sep 2024 07:26:11 +0000
ROA not before: Sat 14 Sep 2024 07:26:08 +0000
ROA not after: Fri 08 Aug 2025 07:26:08 +0000
asID: 133199
IP address blocks: 45.207.34.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46505 (0xb5a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 14 07:26:08 2024 GMT
Not After : Aug 8 07:26:08 2025 GMT
Subject: CN=66e53a93-0f54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3d:9d:b6:c8:82:e0:80:4a:66:f4:e6:6c:4e:
5a:90:2b:64:55:13:80:0f:6f:b7:52:c9:91:c2:43:
92:71:20:99:83:8f:0f:68:19:66:06:e0:c8:42:78:
38:93:5d:d9:79:fe:b9:09:f0:ad:74:8b:ad:86:10:
28:1f:6a:0a:1c:73:30:84:97:3a:12:3a:e4:23:f8:
55:5d:19:77:4a:c7:40:ff:d6:c8:f7:1e:ac:96:1b:
a0:18:57:c6:71:4c:11:3e:ec:46:f1:0f:3e:83:1e:
1a:20:10:b6:74:d2:c4:31:51:99:0b:7f:11:b8:04:
14:85:e5:ed:5c:23:cf:b5:65:3c:b8:8c:85:10:30:
a0:05:ac:dd:27:30:c5:e6:8c:e3:2b:b8:1e:ed:c1:
5a:3d:10:37:6e:38:28:ef:c4:63:e0:20:2a:4e:a8:
80:70:cc:de:63:30:4c:35:7a:93:d5:ad:77:af:d7:
6f:f9:88:17:f6:52:2a:8d:f2:d7:dc:84:8e:24:02:
40:57:5f:12:ff:3a:45:6a:54:8c:0c:e0:eb:a3:9e:
47:c9:c4:36:a3:af:f6:70:67:13:55:4f:ef:3d:ec:
95:e1:b3:9b:e6:1c:65:08:20:90:d0:65:69:b6:8f:
90:77:7f:17:81:39:84:e7:98:09:63:74:b5:1d:71:
3d:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:16:1D:49:38:E9:0F:FD:61:3A:1D:0F:7D:80:A3:2B:DB:BA:C8:F5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9D92D298726A11EFAB9CDD5A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.34.0/23
Signature Algorithm: sha256WithRSAEncryption
93:19:a7:3c:a9:29:9a:9c:e7:bc:a3:4b:62:59:78:63:c7:bc:
d0:e1:01:c5:df:da:13:9f:52:0d:d0:31:ef:a5:20:4c:19:0a:
1a:97:18:04:fd:86:0e:76:06:37:3e:ad:9d:0d:81:e8:6e:bb:
a8:c1:ac:7a:47:07:42:ee:24:b6:a8:cb:d4:47:3d:84:33:7d:
4d:97:43:fe:6e:ed:4f:60:93:ad:b4:b9:a9:fa:2e:a2:45:90:
9a:31:63:62:ac:34:22:c1:91:36:18:a4:d5:fd:0c:e3:97:35:
b2:a7:9e:5d:dd:5a:77:37:4b:2d:56:9d:ef:96:6d:f2:19:9f:
fb:09:2d:e9:f2:99:66:07:57:10:84:d7:19:ae:a1:3e:03:89:
cc:3e:77:76:f2:91:c7:0e:90:30:c8:44:86:df:84:69:25:a3:
20:f1:62:76:f7:14:21:08:ec:9e:78:11:3a:96:9f:bb:b0:6b:
78:a4:da:d6:94:19:a9:8c:11:93:89:9a:e2:ea:30:d8:fe:c8:
90:29:88:49:ae:04:a7:ea:59:3b:66:dd:21:fe:8f:9d:48:ea:
18:30:04:5e:a1:96:63:4f:5e:e5:1a:f5:bc:34:32:e4:11:cd:
0c:32:66:49:11:80:f6:b2:85:3b:f7:9c:52:b3:05:64:63:64:
94:bb:14:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:40 2024 by rpki-client on console-fra.rpki-client.org