Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A5EBD430976311EFA0498FB2762E951A.roa
File: A5EBD430976311EFA0498FB2762E951A.roa (raw, json)
Hash identifier: 3xzUaTybXqkSaAFazDrkzSILR08XUDZB3Xb7Yy7Bv6Y=
Subject key identifier: E7:2B:B8:25:7E:C3:F3:F8:3A:EC:C6:28:F5:C1:CB:18:05:97:FF:C2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CAEE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A5EBD430976311EFA0498FB2762E951A.roa
Signing time: Thu 31 Oct 2024 08:39:31 +0000
ROA not before: Thu 31 Oct 2024 08:39:27 +0000
ROA not after: Wed 04 Dec 2024 08:39:27 +0000
asID: 147176
IP address blocks: 45.201.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51950 (0xcaee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 31 08:39:27 2024 GMT
Not After : Dec 4 08:39:27 2024 GMT
Subject: CN=67234243-bd59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:fa:28:c2:fd:2d:fd:b4:6a:e1:ab:ed:f0:8c:
55:9b:ec:4f:dc:92:41:16:38:2c:5d:1b:eb:09:6c:
ed:de:a0:b2:b9:4a:75:34:a6:be:58:7a:65:e2:b6:
78:d6:e4:95:71:e0:4d:6a:62:4c:64:be:4e:b4:63:
85:cd:96:9e:f0:0b:70:f8:f5:75:8f:0a:9b:eb:b8:
39:be:85:d5:b0:99:13:fb:ec:2c:bc:eb:86:1a:f8:
38:7c:44:38:2a:e4:b3:35:15:57:84:2c:40:c9:cc:
76:ec:60:08:6f:46:96:20:83:23:87:d9:dc:f3:c4:
9b:43:9e:3a:6c:9c:19:4b:a8:20:28:62:89:1b:dc:
aa:94:f0:f0:2b:61:c3:1e:8a:9f:e3:88:43:ea:c4:
53:19:a1:52:3e:fb:c4:b9:62:7d:d8:98:e6:81:a5:
62:e0:81:c2:c7:6e:4e:91:9f:2d:39:89:55:71:e4:
f0:1d:a1:d8:dc:eb:b0:92:3c:95:27:3d:bd:96:1d:
95:f8:b7:7f:1f:33:b3:1a:ec:ed:7a:93:32:01:87:
b4:17:fe:fd:82:30:31:32:93:04:1c:d9:aa:99:91:
1e:93:aa:71:22:d4:ec:98:b0:74:ee:2b:f0:a6:67:
bb:57:66:a7:fb:c2:aa:c7:87:7b:8b:94:e0:2c:39:
8e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:2B:B8:25:7E:C3:F3:F8:3A:EC:C6:28:F5:C1:CB:18:05:97:FF:C2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A5EBD430976311EFA0498FB2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.27.0/24
Signature Algorithm: sha256WithRSAEncryption
46:0e:d8:51:a5:4b:b7:14:8c:2e:9c:dd:99:01:20:d9:c2:2b:
08:65:22:c3:23:b5:85:3a:21:56:68:8b:59:0e:63:88:eb:db:
76:ae:12:19:40:6f:4b:34:67:bf:9d:a1:ca:78:a7:91:2b:1e:
e4:fc:b7:df:53:3a:23:46:1b:a1:5f:4f:fc:48:f7:18:a8:d5:
40:39:b8:99:f1:50:68:e9:b6:31:ec:a9:02:e0:4e:1a:29:37:
62:0f:7a:4f:64:7b:03:1e:d1:2c:db:ca:b0:16:72:28:21:c0:
bd:c9:4e:ed:4a:f6:89:12:0b:60:dd:2d:28:9d:94:1b:ac:7b:
b9:51:b8:65:b8:06:30:80:b2:f8:f7:b1:66:6d:af:19:55:e1:
2c:c7:f4:c5:2a:3e:3d:ec:e8:ce:4a:af:26:93:f8:e7:25:f6:
01:9c:c2:fe:04:9b:b3:0c:71:02:41:24:1a:c2:df:79:65:bd:
2a:fd:c3:ad:3b:e4:5e:4f:53:15:3c:3c:8f:4b:6c:53:26:0c:
6a:4a:8f:15:bf:13:ab:a3:bc:df:37:10:9b:80:30:81:3d:99:
d1:d3:1f:17:b9:b2:fa:9a:a7:9d:40:76:37:40:82:e6:50:58:
32:66:12:ab:91:70:05:cc:54:63:0f:4b:41:79:62:b7:02:55:
12:88:4e:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:43 2024 by rpki-client on console-ams.rpki-client.org