Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AAA6D8CAE1CA11EEA42AF457775412E6.roa
File: AAA6D8CAE1CA11EEA42AF457775412E6.roa (raw, json)
Hash identifier: 2MzMQy8omCXXTGgyvgQWBfAUf1YXhzOWzZyk89L6sF8=
Subject key identifier: FE:83:72:85:CE:87:8B:D6:52:94:3C:87:85:E3:DE:84:66:19:79:88
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 7E4D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AAA6D8CAE1CA11EEA42AF457775412E6.roa
Signing time: Thu 14 Mar 2024 06:18:26 +0000
ROA not before: Thu 14 Mar 2024 06:18:20 +0000
ROA not after: Tue 11 Mar 2025 06:18:20 +0000
asID: 132839
IP address blocks: 45.207.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32333 (0x7e4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 14 06:18:20 2024 GMT
Not After : Mar 11 06:18:20 2025 GMT
Subject: CN=65f296b2-8c9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b3:91:90:e2:06:6c:ce:49:34:11:db:6f:f0:
40:b5:4b:ec:37:51:31:dc:ec:4f:15:02:30:88:c8:
9d:0d:8a:39:67:c9:0d:a4:56:fb:a6:b7:6d:6f:85:
d3:cc:f7:aa:2e:0d:3e:74:0b:f3:c0:2d:34:00:ef:
cf:34:79:90:85:b4:8c:17:0f:dd:28:56:b8:1e:f7:
18:76:3e:db:d8:2b:c9:f1:7c:6c:33:b4:b7:b3:6b:
db:17:2e:9b:ba:c8:05:56:93:03:10:72:a3:7a:23:
07:da:85:2c:35:94:ca:8f:f5:5b:2a:12:f8:b4:1e:
8d:64:5f:69:7d:78:89:e7:af:a1:87:42:f9:90:4f:
1d:a3:04:71:3b:e1:7d:d8:bd:13:88:db:e9:1f:9e:
45:5b:28:10:49:20:9b:c6:12:2c:b8:d8:c4:2e:6f:
78:4e:c4:81:07:bd:62:90:13:e4:4f:78:b4:7e:d1:
ae:6f:0f:fd:c6:53:a7:c2:f6:6c:11:0f:80:5e:33:
56:31:b7:a2:e1:89:dc:cc:50:fc:31:a7:6f:de:77:
ad:93:cf:0b:45:33:38:30:c7:82:f8:58:fe:63:b4:
58:fa:e3:01:1f:23:d1:a8:4d:2b:20:6a:af:f1:6a:
e8:67:96:fb:cb:33:4d:ec:b7:02:67:a7:51:5f:9a:
69:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:83:72:85:CE:87:8B:D6:52:94:3C:87:85:E3:DE:84:66:19:79:88
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AAA6D8CAE1CA11EEA42AF457775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.7.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:82:c7:d1:66:14:63:f3:b7:ee:81:2a:67:f1:18:79:fb:b5:
18:a7:6b:87:19:5c:c3:1d:52:a0:5b:f8:d1:bd:ac:cb:70:a7:
f4:f1:60:bb:0f:64:f2:25:8a:aa:ab:16:e3:20:5f:ac:1b:3e:
da:12:7d:7b:32:83:20:df:46:c8:79:43:06:6e:ec:d2:d0:fb:
4c:fb:e5:bd:87:01:f2:c5:bf:11:61:4b:77:31:58:4e:33:aa:
5e:2b:3e:f8:2a:09:bc:d3:f8:7b:32:e9:75:38:b5:f4:2c:30:
ff:e1:02:c2:29:d0:d7:67:1d:8f:27:24:98:c5:47:df:e2:2e:
bc:b2:57:ba:2a:77:d6:d3:76:36:6a:17:0c:9f:72:00:ba:4e:
11:f8:c6:47:72:36:3f:a7:91:f0:2e:2a:4c:ad:f7:a6:4e:79:
6c:59:6a:be:93:46:c9:bb:8d:16:cf:14:44:94:b1:bf:9a:fd:
5d:e1:dd:d7:78:56:7a:d9:06:75:75:ca:6c:86:c8:43:e8:73:
1c:2f:c0:ee:3c:59:32:b8:f3:59:0e:f1:2c:7d:5b:d5:c2:b2:
ea:e1:8f:b5:d5:5f:1f:41:62:98:d7:a4:f1:4d:58:eb:03:76:
ab:9a:fb:1b:41:c6:d7:b3:37:6b:b7:78:98:55:26:74:f4:cb:
e7:d0:49:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:44 2024 by rpki-client on console-ams.rpki-client.org