Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C1B76FC49A9411EFB497EE56762E951A.roa
File: C1B76FC49A9411EFB497EE56762E951A.roa (raw, json)
Hash identifier: 5alIQCFMwSYzy5Wk/DUhQqmh/C0ejhGJoTguWixfqnU=
Subject key identifier: 42:B6:09:15:CE:9C:0C:7F:B2:46:45:43:59:0D:19:03:4D:B8:2D:1C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CD66
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C1B76FC49A9411EFB497EE56762E951A.roa
Signing time: Mon 04 Nov 2024 10:08:37 +0000
ROA not before: Mon 04 Nov 2024 10:08:33 +0000
ROA not after: Mon 25 Nov 2024 10:08:33 +0000
asID: 44559
IP address blocks: 45.197.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52582 (0xcd66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 4 10:08:33 2024 GMT
Not After : Nov 25 10:08:33 2024 GMT
Subject: CN=67289d25-ba83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:85:cc:82:5e:a5:df:90:6b:90:c3:fa:de:6e:
23:15:3b:02:74:9b:54:19:bf:85:2c:ef:21:b7:b3:
cf:2a:87:e6:c0:ec:70:ea:c9:d9:7e:8a:03:f7:c0:
ca:ca:0b:9a:5d:fa:81:cc:37:db:95:ac:09:47:c2:
76:79:c6:8c:6f:48:92:c6:9c:57:4d:23:00:9f:f4:
01:f1:0f:99:17:cd:16:50:21:ac:63:a1:3f:92:f0:
85:95:dd:cc:e2:4b:a9:d8:81:a5:d8:62:69:12:ee:
b1:fe:46:58:bc:2b:34:37:22:93:75:6a:e9:72:18:
cf:4d:e7:43:43:ff:92:62:91:3f:67:86:2c:33:4c:
f0:2d:3f:70:4c:84:21:b2:e9:ad:0e:f6:05:5a:af:
e0:ed:6b:b9:71:a7:25:dd:74:8c:7e:25:40:ea:9b:
5d:90:84:d2:ca:05:da:65:c5:e8:a1:de:20:3f:e3:
32:50:20:90:80:f5:fe:9c:c1:36:15:af:05:e3:16:
ac:5c:52:f4:0e:05:fb:bc:d8:b4:37:c5:00:b3:87:
4a:a5:b8:a5:dd:e6:ea:7f:f0:16:08:0d:7f:43:ec:
2f:87:8a:3b:98:8a:0a:7d:1e:0c:4a:ec:5a:1d:21:
d9:ac:26:1a:1b:1d:c1:44:7c:a8:d2:bd:78:4b:82:
6d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:B6:09:15:CE:9C:0C:7F:B2:46:45:43:59:0D:19:03:4D:B8:2D:1C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C1B76FC49A9411EFB497EE56762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.132.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:d2:a1:c0:81:8f:20:1d:ee:9c:cc:f4:d4:88:43:43:38:0a:
85:83:97:6b:2b:83:be:d4:2a:bd:c1:91:4d:96:8c:70:36:b3:
c6:37:53:1b:0a:89:b7:97:eb:98:04:c5:f3:a0:a0:9f:75:8e:
2d:0e:c1:88:ad:04:31:f5:78:dc:c5:44:08:ec:a8:70:c3:11:
43:27:04:5d:73:e2:e1:02:2e:a1:06:ec:ec:10:24:6f:7e:a6:
0c:4d:b6:fe:e2:99:58:e7:60:37:14:b3:5c:81:23:35:5d:c4:
1f:57:0a:43:3a:94:e0:e3:c3:b9:f3:2c:a4:52:a0:64:9c:dc:
8c:23:da:17:4c:e9:dd:1b:11:d1:b9:8f:c2:29:5b:e1:d1:c5:
9f:15:9a:ca:64:69:04:b6:1f:ce:4e:79:c3:db:08:12:59:5b:
90:01:24:46:44:af:a8:4c:57:c7:c3:2f:33:fa:e0:88:55:a7:
18:fe:d1:44:4f:6b:8b:e1:9a:dd:c2:8f:4f:05:55:0f:7d:5e:
a3:eb:75:0a:aa:ee:69:53:b9:41:83:03:9e:79:bb:f5:2b:34:
43:4a:d9:c6:bf:e9:58:7e:ec:e4:e6:fb:30:60:89:d8:7e:85:
7c:43:77:de:1e:4b:b6:6c:de:f1:8b:a4:d3:4b:c5:61:70:73:
ee:fa:07:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:46 2024 by rpki-client on console-fra.rpki-client.org