Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A276435A726811EF9E5E394E762E951A.roa
File: A276435A726811EF9E5E394E762E951A.roa (raw, json)
Hash identifier: eqa17DNqRApVbJ8gRYzi8VqRmBwfnr/p4YtrR08k3Yk=
Subject key identifier: 43:49:30:DD:23:81:7C:7A:93:1D:D1:B9:66:E1:F9:0B:ED:FB:BD:A7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B58B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A276435A726811EF9E5E394E762E951A.roa
Signing time: Sat 14 Sep 2024 07:12:00 +0000
ROA not before: Sat 14 Sep 2024 07:11:57 +0000
ROA not after: Fri 08 Aug 2025 07:11:57 +0000
asID: 133199
IP address blocks: 45.207.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46475 (0xb58b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 14 07:11:57 2024 GMT
Not After : Aug 8 07:11:57 2025 GMT
Subject: CN=66e53740-0e79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:bd:9b:59:17:77:04:3e:02:da:7c:9d:eb:02:
20:fb:23:b5:74:75:6a:a1:ca:41:11:25:06:41:2f:
78:31:f0:34:a4:c8:83:a6:5f:59:fc:f5:f1:03:fd:
62:23:f4:25:2d:ab:39:f0:fc:f9:cb:9b:75:fe:24:
8f:43:df:d0:87:20:62:fc:b1:c7:42:70:9a:28:45:
c0:d1:9b:fe:b8:48:6b:19:06:de:b9:30:40:df:a7:
3b:dd:d4:37:3d:e6:06:d7:6f:1b:82:ad:9c:01:60:
b3:dc:88:35:c3:8a:75:60:6a:e7:02:c7:3f:85:cf:
0b:fa:4a:6c:20:3f:eb:57:fd:e9:ac:fc:7f:aa:82:
0e:a8:a7:52:62:53:ed:7b:e1:77:3e:29:c9:39:34:
f3:b8:6e:44:5f:a4:7d:8a:b3:cf:1a:8d:48:57:6f:
44:65:49:b9:70:fb:56:2b:21:45:a4:db:9c:dd:6c:
2a:7c:5b:51:0e:50:dc:80:46:24:63:f8:3d:28:db:
b4:e7:af:bc:39:b0:33:b2:cc:cb:51:52:8d:9e:b3:
7b:18:e8:44:e4:5a:b1:d1:c4:14:07:dd:fe:31:e3:
44:39:75:ea:47:ff:41:fe:9a:5c:c3:84:1e:56:ae:
68:a0:c6:79:6d:07:a5:77:61:f4:eb:c1:7b:a3:56:
7e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:49:30:DD:23:81:7C:7A:93:1D:D1:B9:66:E1:F9:0B:ED:FB:BD:A7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A276435A726811EF9E5E394E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.45.0/24
Signature Algorithm: sha256WithRSAEncryption
52:18:d5:21:95:f4:d2:e0:70:67:39:0a:18:b4:ca:2c:ca:2a:
6e:30:73:d9:f9:68:19:bf:7e:5f:26:86:c6:f7:2e:78:b9:be:
a1:39:1b:16:99:bb:81:9f:12:cd:10:8f:68:88:15:5c:cb:35:
ec:c7:8d:0d:f6:65:06:43:56:a5:e1:ca:0d:19:65:31:ce:72:
cb:bf:b5:32:5a:67:be:c1:f9:c6:f3:2a:6e:77:c8:dd:64:07:
1d:7a:1e:70:e9:a0:9a:b7:bf:ad:46:e5:a2:83:89:ac:ec:a5:
f4:f0:42:c6:47:06:7a:01:11:6e:b2:72:89:de:a7:b7:0b:e6:
93:02:0c:76:e7:83:7e:df:48:1c:c6:c9:ae:63:ad:1f:39:c5:
5d:9a:36:12:8e:c6:88:67:f9:07:63:13:a2:73:ed:3f:65:a5:
ef:82:84:bd:8c:ab:d5:79:07:16:c4:55:55:4b:c6:4d:f6:ff:
df:19:36:8c:da:2a:f1:a2:93:39:ff:9c:cc:fb:ad:72:d8:5f:
9b:e2:42:f1:ad:90:7c:fb:2b:89:d4:23:e8:59:30:82:e8:44:
02:55:53:92:bc:fb:5c:11:a3:98:88:4f:d6:39:de:a6:e6:c2:
df:60:20:f4:fe:62:26:58:bc:65:24:3f:e3:25:e5:44:94:29:
12:93:fd:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:41 2024 by rpki-client on console-fra.rpki-client.org