Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B5C28330A45C11EF893DB790762E951A.roa
File: B5C28330A45C11EF893DB790762E951A.roa (raw, json)
Hash identifier: 0gu8FYVD1vXGWA+EM9Nzz1KtjOWQ20Yu7JfUDyBeXnQ=
Subject key identifier: B6:CF:7E:88:07:60:27:EC:66:4E:92:BC:F8:F5:9F:DF:AC:3F:CF:65
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D434
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B5C28330A45C11EF893DB790762E951A.roa
Signing time: Sat 16 Nov 2024 20:52:37 +0000
ROA not before: Sat 16 Nov 2024 20:52:33 +0000
ROA not after: Thu 28 Nov 2024 20:52:33 +0000
asID: 133847
IP address blocks: 45.200.84.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54324 (0xd434)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 16 20:52:33 2024 GMT
Not After : Nov 28 20:52:33 2024 GMT
Subject: CN=67390614-3b0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ac:99:7f:5d:50:c6:ff:cb:37:17:89:3b:9a:
01:ae:f8:6a:0a:10:01:0b:a3:7a:21:b1:6c:3d:b4:
98:80:c0:d4:81:db:2d:4f:70:e5:80:57:a3:0b:3d:
fd:e4:d0:7e:d3:2f:6f:4c:20:bd:3e:bc:47:cc:97:
7a:8a:c8:66:d0:25:13:d8:04:13:40:fc:ab:2f:ba:
0d:a9:15:8a:d0:a2:5b:a3:a1:b7:19:a7:de:d7:1e:
5c:8f:46:ef:22:f7:bb:69:1e:43:62:69:24:78:3a:
0a:cc:f5:97:0b:fe:25:81:0f:7e:b1:41:62:26:a6:
b9:db:ae:02:aa:31:ee:ad:97:26:55:2f:c7:03:a5:
16:35:d4:6a:1b:bd:c0:6d:48:31:2a:dc:09:8e:c0:
77:0d:aa:98:91:e5:27:b7:da:5b:97:80:f9:c4:7b:
6a:4a:04:f1:9e:54:f2:df:7e:78:d0:32:58:fd:4f:
71:6c:32:48:c1:67:7d:98:3d:00:f1:06:df:32:4e:
0c:5d:37:a6:cb:cb:be:1f:94:77:7e:d0:4c:f9:a7:
8a:03:25:86:aa:69:5a:1a:11:cf:7f:f7:3c:ab:f2:
38:38:5c:af:4c:fd:08:1e:c1:98:77:60:91:53:49:
30:c6:84:2f:aa:b5:5e:6f:d2:bb:06:ff:3f:ac:1b:
c8:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:CF:7E:88:07:60:27:EC:66:4E:92:BC:F8:F5:9F:DF:AC:3F:CF:65
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B5C28330A45C11EF893DB790762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.84.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:77:f8:6f:18:57:c4:eb:8a:7a:2f:b4:07:60:ae:f2:7c:43:
e7:2e:e9:51:1c:78:24:9e:0f:11:fb:a5:38:8b:5e:cf:f8:61:
8a:cc:6f:eb:2d:63:ce:b1:a0:14:4a:d9:0e:8d:63:87:77:59:
80:bd:d7:79:ee:99:01:50:72:d6:59:41:33:ae:a3:a7:78:c5:
36:5d:f5:27:3c:40:a1:1a:3f:45:0b:85:a8:12:64:f6:d4:7b:
04:44:9c:4d:7c:6f:ec:c5:11:27:67:5f:b2:11:5c:e7:77:4d:
14:72:4c:30:c9:b6:ff:0c:a0:19:c4:0a:da:3b:1c:a3:65:0b:
bd:dd:22:27:e0:98:20:4c:50:c7:2d:b7:c5:81:ad:b9:2d:f9:
48:3a:48:a7:d0:0f:f9:47:a6:cd:89:27:c1:b9:99:a9:b9:cd:
05:5f:f9:bb:ac:fd:88:e1:5b:b1:d6:84:77:e9:85:2b:e2:0b:
82:e4:48:6d:19:41:0d:c0:36:d2:cc:37:74:1c:55:24:51:fd:
57:3f:2a:49:4b:30:f7:63:90:9b:a3:4c:98:23:0f:b4:65:80:
ef:15:5d:ca:43:57:33:0c:65:f1:2c:63:42:44:e8:59:7b:a3:
2b:2d:53:72:d9:d2:22:8f:bd:a7:51:40:f3:be:66:c5:7c:78:
27:1c:fe:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 11:35:55 2024 by rpki-client on console-fra.rpki-client.org