Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A643DAC273F511EF85C1D77F762E951A.roa
File: A643DAC273F511EF85C1D77F762E951A.roa (raw, json)
Hash identifier: Hen7TqdFdsHTQ9FCU8ebV7PAv416Bg3Uue4Ukn5gACQ=
Subject key identifier: 63:08:8B:98:11:46:82:AF:BC:0D:EF:84:72:76:27:4A:08:2F:1F:5D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B717
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A643DAC273F511EF85C1D77F762E951A.roa
Signing time: Mon 16 Sep 2024 06:33:57 +0000
ROA not before: Mon 16 Sep 2024 06:33:53 +0000
ROA not after: Fri 08 Aug 2025 06:33:53 +0000
asID: 133199
IP address blocks: 45.207.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46871 (0xb717)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 16 06:33:53 2024 GMT
Not After : Aug 8 06:33:53 2025 GMT
Subject: CN=66e7d154-6d9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:32:98:41:1e:b6:48:11:5b:21:24:a9:9b:e5:
7f:84:68:d4:9b:c7:14:13:da:90:b8:c6:08:92:72:
83:7a:99:d0:bb:83:5e:bb:83:12:c5:ed:50:f7:87:
75:ec:cd:64:08:28:4c:bd:af:ca:bc:90:55:6b:b2:
fa:4e:f9:cb:ab:d0:3f:12:2d:d8:cb:96:a9:dc:8d:
a0:95:5e:52:9d:78:3f:76:75:7a:01:02:07:a5:02:
36:4b:f4:31:6e:ad:7f:82:05:e2:bf:f6:a2:ff:5f:
fa:5c:2d:3a:d3:1b:a3:f2:55:bc:34:5b:35:12:9c:
4f:d3:75:91:0d:a8:94:24:b4:db:7e:b6:69:07:72:
b1:ee:76:37:45:ac:b4:f7:2d:93:63:2e:8f:75:36:
57:0e:c4:48:1d:25:16:8f:a4:24:16:b1:14:fa:2f:
e7:db:54:b5:d0:03:1e:21:5a:9b:e1:50:08:29:5a:
dc:67:f9:5f:e0:35:ef:d1:ce:46:5e:cb:b1:b8:68:
12:e8:6a:6e:0d:4c:b5:09:c1:1e:57:b4:63:62:0d:
ea:a8:f9:b3:18:e1:25:b8:a2:c6:60:c8:23:27:fe:
9d:5c:85:f4:f3:d0:08:6a:b2:df:e2:56:dd:0b:86:
6d:36:de:62:7a:39:83:f0:30:b2:dd:8c:e7:cd:25:
6b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:08:8B:98:11:46:82:AF:BC:0D:EF:84:72:76:27:4A:08:2F:1F:5D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A643DAC273F511EF85C1D77F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.47.0/24
Signature Algorithm: sha256WithRSAEncryption
41:77:79:6d:84:45:41:c6:17:27:cc:e4:ef:5c:8b:59:37:fc:
25:c4:db:03:80:f0:59:22:c0:7d:c1:96:0e:73:07:c9:7a:11:
7e:0d:e4:f9:0e:7e:89:f5:bc:b3:13:54:2a:ec:20:ce:3b:eb:
a3:dc:0a:f5:d3:38:6f:dc:f3:b6:1a:c9:f6:f7:22:66:07:98:
5c:69:c3:83:cb:6c:22:cc:86:a6:51:1e:50:10:19:82:87:8d:
f7:2b:b6:ee:9d:70:a3:23:3e:a1:3a:e3:12:21:9f:69:e0:c0:
41:b6:9a:c5:a4:ce:74:01:fd:52:d4:43:4e:66:29:a4:f0:19:
b2:be:b1:0a:a8:be:a0:b7:f4:10:20:d5:96:32:7c:e5:03:2a:
08:0f:f3:9a:18:60:cb:cd:24:ec:42:2c:6c:25:84:2d:87:71:
da:aa:f6:55:02:e3:4f:fe:1a:e0:4c:2e:d6:9b:14:e6:19:86:
9d:c8:c3:4a:0b:cf:20:d8:89:20:69:da:18:31:b3:52:dc:2b:
1f:c8:ca:69:44:5a:95:c1:c8:de:9a:d2:a1:b7:e1:b2:1d:81:
a4:7e:29:8c:e6:b7:a3:29:39:b3:f4:19:0a:c7:81:34:be:a6:
36:f5:b5:ea:db:ab:ce:3d:5c:d9:b8:99:9d:5e:3a:f0:66:5b:
6a:c4:99:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:43 2024 by rpki-client on console-ams.rpki-client.org