Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BAB3E98EA74E11EF929D4B98762E951A.roa
File: BAB3E98EA74E11EF929D4B98762E951A.roa (raw, json)
Hash identifier: 1opJO/Z5UdBRfk2PbUnvkzMRPp0+xQMNMOeG/5mofPM=
Subject key identifier: E4:5A:C8:BE:AC:21:92:F3:A5:A8:71:50:A7:81:45:6B:A2:AA:C7:F0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D6D4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BAB3E98EA74E11EF929D4B98762E951A.roa
Signing time: Wed 20 Nov 2024 14:50:05 +0000
ROA not before: Wed 20 Nov 2024 14:50:02 +0000
ROA not after: Sat 30 Nov 2024 14:50:02 +0000
asID: 202656
IP address blocks: 45.199.242.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54996 (0xd6d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 14:50:02 2024 GMT
Not After : Nov 30 14:50:02 2024 GMT
Subject: CN=673df71d-6388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4a:9a:36:9d:ce:02:1b:72:06:a0:2f:95:6f:
39:58:12:92:f5:be:f8:99:45:ac:e5:61:dc:2f:d1:
0e:12:77:ae:af:2f:84:70:38:ed:a7:a6:19:09:f7:
ff:0a:02:29:34:63:00:e2:8d:c1:cf:3e:bc:5b:fe:
3a:75:74:7a:22:0a:cd:0d:0a:36:77:a6:bd:a3:b8:
d4:ad:f4:dc:f7:c3:0d:58:23:91:5f:f8:bc:86:5d:
90:8f:bd:e4:53:57:6f:03:da:47:b7:e8:05:37:cc:
87:5f:85:8d:2d:f5:05:c6:81:5d:9a:68:c0:e4:75:
1e:88:1f:a4:90:69:31:da:ec:d9:c0:aa:c3:a5:6f:
7f:7f:7e:1e:3c:c5:90:2e:b5:9c:eb:50:bb:b3:8c:
23:3c:5f:3a:50:d7:ce:ac:a6:1d:51:03:5d:b4:65:
7f:59:b8:1c:8d:33:1f:c8:b0:d9:07:14:ed:51:20:
b2:db:1b:4e:54:ca:8f:90:57:73:74:fe:5b:12:ab:
45:70:32:08:46:a6:07:a6:48:5e:df:fd:f6:bc:1f:
2d:5d:77:91:37:6d:d8:86:78:be:75:6b:e2:a1:db:
fc:2e:ec:21:4b:72:16:a4:dc:cd:73:24:30:b8:a8:
d3:8e:76:27:bb:7c:7f:58:9d:8b:f4:e1:83:29:75:
d0:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:5A:C8:BE:AC:21:92:F3:A5:A8:71:50:A7:81:45:6B:A2:AA:C7:F0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BAB3E98EA74E11EF929D4B98762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.242.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:fa:f1:37:8e:7c:02:41:a1:6f:dc:1b:88:40:57:42:fc:0f:
5b:4b:49:0d:40:64:16:09:d0:36:b0:e3:40:45:83:96:c0:b7:
0b:6f:c9:c5:64:90:1c:d3:61:c2:ff:34:ed:fd:9e:ba:c8:5d:
9d:00:24:9d:73:1c:02:ff:9b:8a:bb:00:c2:32:45:17:41:b7:
02:87:7d:9a:e2:98:6d:ed:fd:ab:5b:23:ec:ab:dd:26:82:90:
36:4e:d5:78:d3:f8:38:84:4e:83:12:97:6a:c1:a4:0c:fe:cd:
d2:03:9e:0e:dc:9c:7a:f6:5c:8d:f2:e2:5e:2d:8e:4c:4a:33:
b8:3a:15:b4:c7:87:5a:dd:37:80:b6:2b:25:c6:f0:b9:8e:98:
57:4e:17:5b:42:f8:cb:93:8d:82:87:a6:5d:e1:1a:a2:b9:0c:
21:6f:11:f3:5f:14:05:f3:96:79:0c:88:db:24:82:06:57:f9:
1b:2f:cb:f4:af:b2:ec:06:20:d7:9e:0e:e6:0f:dc:8e:85:fc:
0d:a3:b1:a4:a6:44:0e:5b:a7:53:d8:82:06:c3:5a:57:8d:a8:
97:26:b3:ed:e9:38:71:45:0b:d7:f8:a9:56:72:bf:37:c7:51:
17:46:f8:d0:97:be:18:dc:07:7b:61:eb:46:1a:db:b5:18:e2:
2d:2d:bd:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:45 2024 by rpki-client on console-fra.rpki-client.org