Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A63F02629B5B11EF941D71BC762E951A.roa
File: A63F02629B5B11EF941D71BC762E951A.roa (raw, json)
Hash identifier: 3AhAzSn0uZcWpD6qhKsoyajEdr778bY6mPr/2Dsyro4=
Subject key identifier: D0:B8:91:9E:5E:BD:19:B0:36:2E:05:B8:8C:6B:FC:45:33:66:7F:E8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CE4D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A63F02629B5B11EF941D71BC762E951A.roa
Signing time: Tue 05 Nov 2024 09:52:21 +0000
ROA not before: Tue 05 Nov 2024 09:52:17 +0000
ROA not after: Mon 13 Jan 2025 09:52:17 +0000
asID: 22773
IP address blocks: 45.199.156.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52813 (0xce4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 5 09:52:17 2024 GMT
Not After : Jan 13 09:52:17 2025 GMT
Subject: CN=6729ead4-4947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f9:1c:08:69:b8:cf:e7:a0:ab:ab:83:ff:db:
7a:76:19:ad:6f:c7:c2:2c:12:3d:26:11:88:46:fb:
dc:e4:b7:57:30:a0:5d:5b:30:cf:d5:c9:0e:dd:78:
ec:47:ed:66:cc:1c:a9:ba:a7:4b:47:97:c3:b1:6b:
5e:c7:b0:55:4e:b6:03:26:67:13:2d:eb:4d:5a:d1:
85:cb:3e:70:6b:99:89:a8:24:26:42:a9:7a:8f:e8:
23:4b:22:e2:aa:0b:20:e2:12:bb:37:67:ff:63:67:
ec:fa:2f:60:12:af:0c:55:e8:19:d7:55:91:36:93:
75:25:a4:e8:c3:21:57:90:a9:cf:48:1f:a9:a0:72:
a4:d9:ea:76:36:14:cc:94:e7:5f:61:24:b4:3f:47:
e0:4e:fe:c9:52:d7:40:f5:68:d8:0a:63:24:91:86:
be:b9:42:28:ee:6f:30:fe:a4:05:11:ba:c6:f8:5e:
56:51:63:a4:e0:a8:0f:38:0c:aa:f7:4f:39:08:81:
91:f0:d4:0f:72:70:93:54:bd:06:b2:8a:2d:2a:db:
3c:44:b2:75:2e:69:91:f7:f4:1d:6f:42:25:55:29:
39:a7:80:49:e8:19:2e:50:18:7a:10:7b:97:6e:2d:
98:a4:f2:3f:1f:37:fe:ea:ad:19:38:14:5c:76:43:
7b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:B8:91:9E:5E:BD:19:B0:36:2E:05:B8:8C:6B:FC:45:33:66:7F:E8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A63F02629B5B11EF941D71BC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.156.0/23
Signature Algorithm: sha256WithRSAEncryption
a4:c5:d1:bc:da:e4:9a:29:f7:fa:f5:33:82:96:03:7a:5a:c1:
10:d3:64:d9:78:b7:a4:21:94:31:b9:c6:57:19:75:40:eb:46:
6a:ca:a8:43:53:05:cd:24:d6:cf:14:13:20:f8:27:4f:64:a0:
cc:19:bd:44:d6:1a:c3:c2:62:31:50:12:93:5a:99:d6:c1:5d:
1e:4c:ec:a3:27:de:47:9c:bd:a4:b4:5a:07:2b:ba:b6:f0:f4:
bd:c5:50:54:ba:d7:27:30:35:be:28:d6:9c:a1:80:20:a7:52:
e9:07:fe:4e:15:23:a4:0e:fa:86:07:e5:09:b2:ea:eb:16:8b:
d8:3b:94:cc:b5:94:e3:89:dd:7d:35:25:0c:c5:f9:e3:d9:60:
72:5b:43:2c:55:32:0a:fa:33:7a:e4:71:66:c8:45:a0:7d:f8:
bf:16:7a:3f:09:06:02:82:a5:cf:af:3d:10:4b:16:66:d7:ce:
cc:86:7a:25:3b:61:43:70:34:c2:93:94:64:a4:87:a6:9e:90:
53:81:f3:60:99:e7:50:45:6f:07:7a:88:50:3a:15:a1:5a:c3:
80:93:42:d2:c1:db:f0:9b:ee:f0:d0:63:8d:2b:59:2e:61:f9:
f2:c1:7b:17:d6:ed:db:49:3a:47:2a:71:33:2a:6a:42:65:6a:
ef:fc:58:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:43 2024 by rpki-client on console-ams.rpki-client.org