Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A783BD6C9AB011EF8BBB8183762E951A.roa
File: A783BD6C9AB011EF8BBB8183762E951A.roa (raw, json)
Hash identifier: XFdd897XBFR7s/nKpal2YUjOm33gxldTQJooFAeHRnw=
Subject key identifier: BE:D8:63:FF:62:F0:10:C3:EC:A8:5A:73:C0:39:14:1C:A7:45:A1:77
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CDC2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A783BD6C9AB011EF8BBB8183762E951A.roa
Signing time: Mon 04 Nov 2024 13:28:19 +0000
ROA not before: Mon 04 Nov 2024 13:28:15 +0000
ROA not after: Tue 03 Dec 2024 13:28:15 +0000
asID: 141883
IP address blocks: 45.200.20.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52674 (0xcdc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 4 13:28:15 2024 GMT
Not After : Dec 3 13:28:15 2024 GMT
Subject: CN=6728cbf3-da6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b7:ff:5d:5e:0a:dc:00:9a:fe:8d:07:e7:9c:
25:51:4e:e0:95:4a:44:6b:4e:d8:9d:66:fd:ea:db:
fb:a4:3f:89:ae:6d:bf:4b:83:94:bf:85:c7:49:84:
31:7d:94:76:a3:6d:9a:fd:9d:75:d1:25:6d:05:cf:
64:07:7b:18:cc:ea:15:a2:ae:d0:4c:ba:e6:59:c7:
21:74:2e:2a:7c:69:cc:46:22:d0:4e:5c:2f:0c:61:
5e:73:7d:68:52:cc:4f:85:9f:40:73:f9:78:cb:93:
6b:98:01:4f:f2:2f:b0:54:79:09:71:ad:91:4a:98:
c9:6f:d0:4f:89:d1:a2:48:a7:a6:6d:b9:e0:0c:26:
5a:70:e8:29:45:26:29:fb:f7:00:f5:7b:29:e0:b9:
5b:d7:25:f6:7a:ba:ac:78:a3:21:24:d4:5f:f9:98:
3b:72:43:fd:64:71:c1:88:c9:47:dc:2e:ae:27:92:
85:98:d2:03:ca:7c:1c:7d:6e:0d:b0:4e:83:99:fb:
c0:b6:97:fe:be:86:3c:a6:a6:9a:db:d6:03:e0:81:
06:8a:5d:98:1f:4d:98:6e:ab:4b:b1:57:d2:c5:18:
bb:13:55:cf:3f:2e:10:93:c6:0f:26:81:9f:58:82:
a0:fd:3a:bb:f5:00:05:14:3f:8e:d8:70:9d:b4:ea:
a7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:D8:63:FF:62:F0:10:C3:EC:A8:5A:73:C0:39:14:1C:A7:45:A1:77
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A783BD6C9AB011EF8BBB8183762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.20.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:15:85:b1:55:1a:03:4c:c8:f0:9e:69:29:31:39:2c:59:60:
58:59:7a:ed:8a:58:1c:e0:2e:df:99:5d:0e:5c:f0:6b:91:a1:
cd:eb:fa:d9:22:51:ef:45:c2:5c:51:8f:fc:c2:c7:e0:46:9d:
8d:10:96:9d:a6:15:41:66:5c:10:54:a4:43:7e:51:dc:09:28:
55:12:fe:99:26:50:c2:5b:3e:0c:01:f5:8d:66:32:63:5b:71:
43:cb:be:98:ff:e7:45:fd:2f:a5:36:a0:6d:96:d8:8c:fe:30:
8a:3d:41:33:9b:11:bf:00:4e:d5:e1:ca:77:77:3f:53:26:2e:
48:ca:ab:d1:31:e9:05:07:21:0d:a1:ea:5b:4e:d5:c4:30:46:
cb:ea:4d:45:20:ef:34:78:25:f1:55:bd:35:ec:f4:5e:f7:79:
fd:62:cf:8a:c4:76:d0:c8:91:ee:56:03:63:22:f8:3a:31:1f:
f1:48:b6:90:41:2d:ce:ab:94:70:b5:dd:05:ef:06:e8:39:ad:
b8:08:7d:86:bd:3b:a5:b6:9b:29:67:83:87:fc:58:2d:b5:3b:
6d:b3:1d:57:82:c4:e3:17:3f:73:c7:8f:16:aa:87:d8:da:0d:
32:6b:84:97:62:a1:ad:0d:d7:61:fc:6b:c9:1c:50:7f:7f:fa:
9c:89:6a:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:42 2024 by rpki-client on console-fra.rpki-client.org