Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A1231E10612E11EF839D7E94762E951A.roa
File: A1231E10612E11EF839D7E94762E951A.roa (raw, json)
Hash identifier: Cq9s0SLFiQd73bEe0eEC81ptqMvgGkGrGIy1BE3EKtA=
Subject key identifier: D3:7A:5E:44:7F:33:B5:AD:A8:EF:12:B8:14:A1:E1:60:FB:9D:9B:CC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: ACE4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A1231E10612E11EF839D7E94762E951A.roa
Signing time: Fri 23 Aug 2024 09:03:57 +0000
ROA not before: Fri 23 Aug 2024 09:03:54 +0000
ROA not after: Sat 14 Jun 2025 09:03:54 +0000
asID: 21859
IP address blocks: 45.207.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44260 (0xace4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 23 09:03:54 2024 GMT
Not After : Jun 14 09:03:54 2025 GMT
Subject: CN=66c8507d-bfd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5b:36:62:0e:8d:f0:dd:96:a0:4a:5c:95:9e:
d7:6f:98:35:d5:ae:3f:50:9b:e9:c9:6c:c4:c0:e8:
4d:b8:82:5d:99:cb:dd:d1:91:60:1a:6d:7f:05:dc:
96:42:2e:19:75:86:67:fb:c6:de:be:be:68:7f:3f:
9b:07:ac:76:e7:51:5b:b7:0f:29:65:ac:0c:c9:3a:
7c:16:e4:3d:0e:24:b0:43:e5:39:ab:9e:96:05:b9:
60:73:e6:31:55:cf:52:83:97:ad:63:57:9d:07:57:
3d:bb:47:89:2d:08:d0:e8:bf:bf:7b:ff:2c:fb:1b:
62:63:57:86:5c:87:d3:26:dd:b1:70:8e:cc:8e:79:
64:76:14:46:f3:b7:ce:95:e8:be:2b:53:a1:58:3a:
4b:25:76:d0:91:13:d5:39:44:52:09:9a:a6:6a:9d:
c0:1d:98:6f:33:db:07:97:c5:07:ca:c4:29:8b:bf:
db:d5:14:5b:de:fc:74:16:ab:ea:3b:65:3b:3f:5a:
dc:d3:2a:84:89:86:33:e9:6d:a5:fe:6e:06:bd:5a:
28:9f:c7:fa:ff:d9:a5:a7:f1:94:3d:fe:9a:b2:d1:
3a:9e:d6:79:4c:6d:26:47:85:7f:72:57:1d:a0:3e:
71:65:6b:cc:a5:52:f6:c2:93:d6:c2:aa:2e:61:ce:
f7:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:7A:5E:44:7F:33:B5:AD:A8:EF:12:B8:14:A1:E1:60:FB:9D:9B:CC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A1231E10612E11EF839D7E94762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.168.0/24
Signature Algorithm: sha256WithRSAEncryption
57:d6:ef:31:40:ae:0c:b3:8f:76:3c:c8:ad:5a:bb:a4:4c:7f:
a8:80:ea:77:76:98:d3:ac:0a:fe:04:85:16:85:7c:15:18:d4:
1a:3f:b7:b4:85:4c:1d:e0:a3:18:c3:ab:00:02:9b:c9:ca:bc:
5c:60:4e:9f:f0:d2:b4:b8:00:3a:fd:e2:cd:7b:c8:e3:70:5e:
ff:8b:82:45:87:7a:d9:c2:7e:d5:58:57:25:1f:37:e6:f2:aa:
c2:65:c5:8a:a8:cf:b6:d1:88:ff:ad:c3:78:6e:21:eb:c2:ec:
de:8d:7a:c7:d9:32:16:eb:47:39:98:5e:2a:ee:17:96:b9:cb:
e9:a6:9e:d5:73:2b:68:5a:d2:3e:34:76:d6:6b:f2:6a:6d:ca:
9f:aa:6f:c0:03:d5:d6:c1:a8:9f:8c:32:1a:b4:79:fe:6c:d5:
3f:f9:4c:78:c2:aa:cd:b2:68:b9:7d:fc:90:68:21:dd:ea:8f:
e3:5c:20:b7:89:90:50:1d:c3:be:b3:52:c3:ab:70:79:6c:ca:
36:07:58:ed:44:88:fe:12:d3:03:21:f5:e6:99:cd:68:d1:33:
41:f1:8a:6a:ec:fe:09:77:07:8b:7b:e5:6d:cf:d5:2b:9f:f5:
62:6a:c1:5d:c0:f0:8d:3d:92:01:c7:ed:e3:5b:52:8f:60:6f:
ec:93:d5:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:41 2024 by rpki-client on console-fra.rpki-client.org