Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A3836186951011EFA62E2E8B762E951A.roa
File: A3836186951011EFA62E2E8B762E951A.roa (raw, json)
Hash identifier: EKo77rExHSSkXetdtgR2bN6kX6m2S/v4eaieLaX3E04=
Subject key identifier: BB:D0:46:DC:F1:3C:B8:18:2F:B2:9D:BF:0B:F8:2D:13:5C:D3:26:D4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C92E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A3836186951011EFA62E2E8B762E951A.roa
Signing time: Mon 28 Oct 2024 09:40:17 +0000
ROA not before: Mon 28 Oct 2024 09:40:13 +0000
ROA not after: Fri 29 Nov 2024 09:40:13 +0000
asID: 149440
IP address blocks: 45.195.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51502 (0xc92e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 28 09:40:13 2024 GMT
Not After : Nov 29 09:40:13 2024 GMT
Subject: CN=671f5c01-2c6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:47:8e:96:ec:5d:66:c9:8b:37:f7:bb:a4:91:
9b:d6:39:43:36:39:01:29:51:4c:f9:66:08:6e:57:
98:54:f7:43:d6:1e:a6:32:3d:50:af:16:ab:52:7e:
2f:09:49:d6:e5:63:33:bc:61:03:9a:02:f9:09:0d:
8c:60:29:5c:fe:73:07:d9:19:57:e3:19:bf:cd:18:
dc:e2:b1:35:8f:4f:6f:a9:d3:d2:42:14:60:1f:12:
48:3a:d9:80:71:55:d0:28:65:92:98:86:9f:d3:01:
a8:22:fd:02:1e:46:cd:0b:fb:c3:b9:55:93:3a:37:
3d:6d:48:b4:5e:08:9b:2d:d3:36:f9:e5:64:0b:31:
81:1a:6c:7e:b6:5b:80:58:49:70:e0:25:90:89:0e:
e2:2e:12:f6:cd:56:43:ae:87:72:a8:f3:9e:44:83:
50:8b:24:27:0a:64:5f:12:ef:9d:68:a4:8e:0c:d2:
ca:e4:0a:c6:b1:b7:fa:9b:e4:c3:f9:b4:69:00:69:
f6:47:e5:d5:1f:44:97:e0:72:41:a9:5b:ac:14:14:
b2:47:1e:46:a4:87:2f:18:e5:e1:d3:4e:fc:46:55:
b2:e1:a1:65:fc:5b:9e:f9:c8:fb:8b:74:b5:0c:2f:
96:8b:83:ad:76:48:41:f0:92:8f:c7:db:99:fc:fb:
e8:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:D0:46:DC:F1:3C:B8:18:2F:B2:9D:BF:0B:F8:2D:13:5C:D3:26:D4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A3836186951011EFA62E2E8B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.76.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:82:65:ee:43:d8:bf:d5:98:7a:59:c0:de:8f:cc:64:7c:f9:
9c:ad:04:a8:51:68:21:be:00:11:ec:e0:bc:a3:e9:cd:1e:68:
84:46:36:91:43:17:c9:1a:4d:87:7a:a7:43:97:9d:73:9f:e2:
77:bc:24:b5:f3:bd:e2:0e:ac:ae:75:cc:58:be:54:8b:d9:5c:
8a:ec:7c:45:9a:36:53:a7:0b:58:70:46:ba:fd:c1:50:3e:86:
1a:ba:46:d6:c1:dd:d9:88:07:9d:7f:29:bd:24:dd:3e:0c:83:
f7:65:8b:b6:9f:0f:ae:17:f7:f0:1c:97:82:86:7b:d2:2a:ef:
c7:0f:67:07:5f:49:1d:81:98:1a:ce:d5:40:3a:7a:a6:89:1f:
77:89:8f:27:a8:8b:69:a9:d6:5c:eb:21:66:a1:1e:bc:98:0e:
37:bf:89:8a:d5:69:77:18:f7:d0:77:8f:b6:1d:8f:8f:af:b4:
85:4f:21:48:43:d6:34:f5:8a:49:b6:4d:79:cb:18:88:11:7f:
f3:8d:7c:c4:04:7d:21:f7:21:8e:20:47:e1:2d:be:ee:1e:26:
b4:c4:8c:c6:2d:f6:de:5e:91:9f:5d:17:f2:60:23:2b:24:ec:
59:44:db:0e:7e:c3:e0:72:cb:d0:21:97:69:36:c4:6f:03:6c:
56:7c:8d:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:41 2024 by rpki-client on console-fra.rpki-client.org