Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C23E0BFAA7DD11EF8FD3B3A0762E951A.roa
File: C23E0BFAA7DD11EF8FD3B3A0762E951A.roa (raw, json)
Hash identifier: bHvCDL/EsXW9b+4rRcfnuxtLnpq0ulqDPUi0+121MPU=
Subject key identifier: 5C:5D:91:C5:DC:F2:28:A8:1C:42:E1:23:F6:30:BF:95:4B:C7:F1:55
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D707
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C23E0BFAA7DD11EF8FD3B3A0762E951A.roa
Signing time: Thu 21 Nov 2024 07:53:56 +0000
ROA not before: Thu 21 Nov 2024 07:53:52 +0000
ROA not after: Wed 25 Dec 2024 07:53:52 +0000
asID: 401366
IP address blocks: 45.202.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55047 (0xd707)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 21 07:53:52 2024 GMT
Not After : Dec 25 07:53:52 2024 GMT
Subject: CN=673ee714-750a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e8:91:fa:fa:7a:ad:bc:b6:4e:5b:ed:46:1b:
17:bb:39:13:32:32:08:a7:9b:06:e1:78:05:50:e3:
69:b3:e0:0c:17:05:26:b3:ac:c4:79:85:de:fe:02:
26:fc:10:fc:30:0b:9f:58:69:69:fa:60:c0:2c:27:
ce:42:38:b0:7a:12:de:a5:77:c7:a6:ee:1a:19:a6:
4d:a4:55:2f:43:03:f6:c8:b5:aa:3e:e9:40:34:e4:
85:9a:db:57:78:11:36:5e:d0:cc:bf:0c:33:a4:f4:
66:6e:cc:9e:8f:01:a2:94:0e:2c:ab:fb:dc:cb:c6:
34:d7:95:a1:f4:55:bc:fc:62:f9:7d:90:b1:4c:f0:
fd:aa:d4:70:5f:9c:1d:c1:85:7b:a5:22:30:fc:ec:
d9:a1:72:48:4a:9e:84:68:41:76:9e:87:f0:b4:d1:
ed:09:aa:64:24:e1:d9:a3:df:4e:30:c6:f9:82:85:
5a:cf:89:67:4f:fb:54:e5:68:99:41:27:6a:f7:f0:
bf:82:2b:ec:33:b4:02:ae:81:21:64:b6:d9:49:68:
83:7d:70:85:62:f2:01:18:3c:3d:f5:bf:ae:e6:78:
d7:42:47:f3:a2:07:32:a2:eb:8a:f9:bf:2b:73:6e:
90:e5:cf:71:b2:4c:76:cf:62:af:58:23:03:78:35:
9a:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:5D:91:C5:DC:F2:28:A8:1C:42:E1:23:F6:30:BF:95:4B:C7:F1:55
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C23E0BFAA7DD11EF8FD3B3A0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.75.0/24
Signature Algorithm: sha256WithRSAEncryption
65:90:7d:dc:05:93:76:b2:3f:6b:ae:92:66:02:9e:e2:79:59:
51:17:fd:71:81:df:a3:a4:21:8a:cb:05:e6:55:c2:2b:b8:47:
45:40:74:ec:32:83:bd:68:f8:32:cb:ed:f5:d6:3d:81:74:67:
7a:71:e1:be:ec:56:ce:4a:e9:df:9f:9d:2f:c9:9e:7c:54:e9:
01:0b:76:80:a1:0c:ba:c2:1c:fa:b5:10:4f:3b:19:20:68:1f:
4b:61:c9:cf:9c:74:12:07:a7:54:71:42:ec:29:a3:59:33:9b:
eb:89:ed:fd:b6:d4:b1:c9:26:89:7f:3d:37:af:d3:b5:03:c7:
34:36:b4:18:bf:60:63:11:a7:8a:4b:78:80:38:15:65:a5:11:
57:94:11:94:5a:5b:67:7c:a0:83:26:c8:05:5d:34:38:96:6e:
63:bf:18:7a:93:24:04:1f:4a:9e:72:88:52:18:c0:ce:05:13:
d6:40:97:ee:b4:b6:90:df:bb:82:f2:c3:e2:02:ea:5e:47:47:
b7:68:85:e3:47:2b:16:3e:66:ee:44:e2:e4:b6:0d:f7:0b:6a:
b6:e5:b6:23:49:b7:e4:b5:e8:25:c9:c9:07:ce:50:52:fc:04:
29:40:b6:99:12:09:3a:2a:3b:33:28:38:dc:e1:f7:91:e4:cb:
fb:dc:26:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:46 2024 by rpki-client on console-fra.rpki-client.org