Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AD62924EFAC411EE9C3F5730017001B1.roa
File: AD62924EFAC411EE9C3F5730017001B1.roa (raw, json)
Hash identifier: MBDgMnbBCvidtqxj9TNDJy0CdpSMjGGrYit9UivZ9XY=
Subject key identifier: 85:6E:96:92:1E:E9:0E:28:EE:D3:66:18:25:7E:81:CD:3A:E2:9E:91
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 825C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AD62924EFAC411EE9C3F5730017001B1.roa
Signing time: Mon 15 Apr 2024 01:08:33 +0000
ROA not before: Mon 15 Apr 2024 01:08:27 +0000
ROA not after: Tue 23 Apr 2024 01:08:27 +0000
asID: 21859
IP address blocks: 45.199.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33372 (0x825c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 15 01:08:27 2024 GMT
Not After : Apr 23 01:08:27 2024 GMT
Subject: CN=661c7e10-fec5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:31:32:c1:32:dc:2a:c5:b3:b2:f3:26:ee:30:
63:4a:66:d5:53:60:5d:da:5c:fc:28:d6:d2:79:95:
73:4e:88:b8:48:3a:2c:8d:93:ff:f2:86:54:ae:5e:
cf:1b:de:01:22:50:a1:b1:e2:99:93:86:09:0d:f4:
c1:41:53:00:6c:d1:d2:ea:b7:8b:27:f7:56:2f:66:
23:b7:7a:98:77:b1:bc:ad:d4:7f:46:27:99:85:43:
5d:e7:51:ca:0f:35:88:71:c0:76:b3:0f:a0:29:65:
17:b6:af:12:8b:96:49:fc:f3:b3:c7:94:8b:a0:8e:
0c:f3:bb:a2:aa:23:60:86:33:d1:09:4d:d0:24:aa:
fc:15:c5:6c:cf:51:b1:16:c9:91:16:b9:af:9f:85:
37:10:a5:98:5b:ef:a0:e3:41:2f:ca:61:46:86:e5:
9e:bb:4f:9d:85:35:2c:63:28:a8:87:05:66:e3:a1:
73:97:21:78:4e:10:12:4c:ab:fc:5f:4e:57:a7:a7:
07:08:80:45:f6:83:01:3e:95:2f:8a:d2:73:76:38:
69:40:fa:5e:45:ac:01:4b:07:50:43:53:d0:5b:68:
cc:59:28:6d:71:ef:e4:50:05:03:bc:ca:fc:b0:59:
41:2e:27:c7:86:d4:ab:9a:b0:0e:2c:5d:30:53:8e:
8e:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:6E:96:92:1E:E9:0E:28:EE:D3:66:18:25:7E:81:CD:3A:E2:9E:91
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AD62924EFAC411EE9C3F5730017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.186.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:c3:4a:4c:87:6c:e5:db:68:f9:af:2a:44:be:8f:78:42:f9:
da:a8:f9:45:c4:f3:62:dd:ec:8b:27:8c:0f:f0:71:d0:76:0d:
a4:33:46:68:e7:06:e3:87:af:e4:88:e3:54:1e:e6:7b:b8:61:
3e:e8:12:ba:5d:67:b5:13:70:8e:55:be:1a:ea:95:71:a3:d9:
04:6f:a7:43:26:eb:69:3b:15:d5:c1:87:30:1f:8f:72:51:67:
58:a6:56:36:86:b4:ba:3d:f4:d4:0b:ba:b8:77:9a:82:ca:71:
0d:13:9c:a3:a5:a4:20:c9:05:47:59:f2:34:f3:ef:b4:d4:80:
62:e6:17:21:11:fc:a4:2b:b6:0b:cd:06:e1:a0:4b:71:73:57:
f1:c4:9b:ed:92:75:73:9b:d8:5c:98:5f:0c:25:b3:2a:19:9a:
07:e1:6b:28:90:48:94:f8:7d:d6:8a:6f:16:d5:de:30:06:2b:
f5:44:81:bd:f9:4e:e3:40:c4:81:53:e0:16:d8:41:ac:a9:fc:
ce:16:c9:45:96:82:15:97:7e:4f:21:f6:0b:f0:34:c9:c8:1c:
13:19:b3:5d:96:f2:c6:14:74:36:ff:f3:f9:f0:67:14:2b:09:
2f:13:e3:af:ad:3b:1c:2d:b5:66:c5:7f:b4:3b:b3:f8:42:e7:
9e:fb:83:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:32 2024 by rpki-client on console-fra.rpki-client.org