Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BC7508B4A43F11EFB1CD615E762E951A.roa
File: BC7508B4A43F11EFB1CD615E762E951A.roa (raw, json)
Hash identifier: BW6lKCM/gjJ2Dx0//xao0sdRJzct5iv6e3AOhhL4D5Y=
Subject key identifier: 55:A1:A7:B3:62:64:CA:2B:3A:AF:6A:57:F5:C9:28:67:76:B0:F3:D2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D35A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BC7508B4A43F11EFB1CD615E762E951A.roa
Signing time: Sat 16 Nov 2024 17:25:12 +0000
ROA not before: Sat 16 Nov 2024 17:25:08 +0000
ROA not after: Sat 21 Dec 2024 17:25:08 +0000
asID: 140869
IP address blocks: 45.203.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54106 (0xd35a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 16 17:25:08 2024 GMT
Not After : Dec 21 17:25:08 2024 GMT
Subject: CN=6738d578-92e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a2:bd:8d:9f:3e:94:95:ed:af:82:b9:62:cf:
73:65:08:c4:25:36:bc:2c:7d:e6:26:d1:09:eb:76:
bd:45:0c:3c:bf:a8:7c:81:e5:a1:3c:c7:99:9d:4f:
71:11:bb:09:ad:56:9e:6d:66:4b:6d:0c:fe:18:44:
a4:35:39:68:55:af:30:44:bc:22:9e:37:e8:03:bb:
fe:16:e5:3d:5a:a9:a7:6f:92:81:05:19:24:3d:77:
2e:26:fc:28:ec:29:51:34:21:f8:73:08:e2:a2:55:
b0:c8:41:f1:ec:1d:35:14:22:9e:d2:3d:6d:de:ce:
51:90:21:94:dd:8e:b3:9c:35:de:d6:05:82:ad:90:
01:79:82:8d:29:8f:e5:41:d5:c6:0b:b3:1f:b9:47:
4d:00:27:57:a9:4b:3b:d7:05:19:3f:e4:45:b6:7b:
90:ba:a7:cc:3c:e1:c0:7d:b4:b9:f6:1b:a2:23:0f:
23:97:28:94:38:d7:9c:8c:bb:df:2e:59:71:dd:2e:
a3:cd:bf:8b:77:e9:91:70:c8:88:65:8d:66:61:57:
83:de:ab:22:08:0a:12:08:a2:83:47:24:f2:25:b1:
33:14:09:b0:1f:51:46:d5:6a:2b:49:da:de:ca:f5:
ed:e0:c9:65:a6:00:0c:f6:aa:73:c8:1c:3e:70:a3:
18:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:A1:A7:B3:62:64:CA:2B:3A:AF:6A:57:F5:C9:28:67:76:B0:F3:D2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BC7508B4A43F11EFB1CD615E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.203.220.0/24
Signature Algorithm: sha256WithRSAEncryption
94:31:9f:64:99:33:e5:c1:2e:aa:09:5a:2f:87:b4:f1:92:e2:
83:d1:5c:27:8b:a8:c2:df:2d:ea:a2:1c:e5:d3:df:77:51:2f:
09:a0:f2:6c:ae:39:2b:d1:81:66:37:3d:9f:22:b8:2f:f8:d4:
63:7b:10:84:0b:74:35:51:f5:4c:9d:67:22:67:4b:0b:9b:f2:
7d:32:e7:df:27:54:00:ae:0b:5b:ce:40:19:42:d3:f9:45:f8:
57:b9:b7:a8:c0:15:e7:78:a1:c8:10:ae:f1:7f:7c:8b:90:17:
14:48:a0:ff:70:b0:0c:84:a7:ff:34:e2:a9:9f:63:0e:30:4a:
e6:e7:ef:2c:72:99:4a:c4:28:23:ae:76:20:51:e1:51:c4:25:
da:00:ea:4d:01:e5:03:49:48:49:33:2d:a0:8a:62:75:9a:69:
81:51:7a:24:41:35:51:f8:fa:f7:84:5d:ee:98:6b:89:e4:d6:
d2:4b:ca:56:41:b6:53:43:45:23:a3:cb:58:7c:60:97:1e:61:
e5:e1:e4:8b:1d:43:f3:d0:d2:17:36:b4:4a:07:e1:cd:70:f4:
12:a7:07:27:29:bb:2a:3d:ce:de:18:16:e2:09:88:15:0f:b1:
29:11:da:02:15:5a:e9:62:07:8e:c4:23:96:12:57:0a:3f:1a:
a2:53:6f:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:47 2024 by rpki-client on console-ams.rpki-client.org