Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C47B25CA5DCC11EF97F28A7F762E951A.roa
File: C47B25CA5DCC11EF97F28A7F762E951A.roa (raw, json)
Hash identifier: U0JsowvzAIlbtSiaqItSt3bdY4AnVt5XhZAMYufN/7M=
Subject key identifier: DC:D1:0A:51:66:30:3E:16:A7:CF:4B:B2:33:81:96:7C:E3:FB:32:91
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: A85F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C47B25CA5DCC11EF97F28A7F762E951A.roa
Signing time: Mon 19 Aug 2024 01:45:52 +0000
ROA not before: Mon 19 Aug 2024 01:45:49 +0000
ROA not after: Thu 31 Dec 2026 01:45:49 +0000
asID: 17561
IP address blocks: 45.206.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43103 (0xa85f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 19 01:45:49 2024 GMT
Not After : Dec 31 01:45:49 2026 GMT
Subject: CN=66c2a3d0-e2ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1f:81:0d:e1:ea:ea:69:c3:99:2d:11:35:0f:
c4:97:b9:46:ac:a9:3b:06:e5:5a:ec:fd:96:32:16:
b8:3e:23:e5:38:a1:17:da:0e:ef:56:b1:42:b2:d4:
07:69:64:57:17:12:be:23:6e:5a:cd:ee:97:8c:e9:
26:b3:51:4f:7d:f7:4a:ba:cc:1c:4f:00:59:86:09:
53:f3:56:51:62:47:d7:87:15:70:68:f1:b4:1a:73:
2d:a7:55:0d:8e:4a:f4:84:90:28:65:6b:f0:83:f5:
f4:03:65:07:6e:1d:fd:9b:b1:45:ea:a3:00:a0:b6:
40:b4:5d:7c:da:fb:44:46:7d:bb:76:83:73:24:fb:
af:39:9c:0a:ff:ef:a4:ff:84:83:7c:cf:06:83:1f:
00:7d:a2:6c:89:47:16:9e:7d:ba:33:f4:17:ee:15:
e2:51:8d:d4:e8:fc:15:84:fb:a7:2d:32:67:50:09:
38:9b:39:18:2c:6a:a0:fe:f5:5d:b9:0e:52:64:00:
a6:f6:ed:7b:f1:e6:0a:e6:de:91:b5:f2:ea:e1:af:
91:f2:8f:37:de:cb:65:d7:aa:c1:90:30:18:81:90:
da:ea:d2:cf:2e:29:74:c9:cc:61:e0:1c:dc:c4:e4:
6d:f4:d7:ab:13:97:30:18:27:23:dc:88:39:3f:17:
77:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:D1:0A:51:66:30:3E:16:A7:CF:4B:B2:33:81:96:7C:E3:FB:32:91
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C47B25CA5DCC11EF97F28A7F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.2.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:0e:1b:96:2b:2c:bc:40:cf:77:3a:b1:a3:31:d0:01:b8:9e:
10:fe:8b:a7:a3:59:ba:3e:30:69:a0:50:d7:d9:60:ea:44:7a:
24:d0:45:5c:bb:20:6b:b3:d9:58:cf:20:50:57:b8:b2:07:f9:
b1:f8:aa:e8:ca:ef:0b:a9:d3:47:4d:a3:1d:09:ff:2d:84:33:
ee:c9:07:60:9c:18:52:e3:d7:9f:b2:2f:0b:ba:b6:87:30:03:
cf:1b:df:89:91:9d:21:9a:f6:7b:92:76:6a:a6:b3:79:47:18:
96:2b:44:af:e6:f4:f9:2b:bd:91:07:b7:c4:a1:5f:ce:70:4c:
b0:be:6c:9a:83:42:34:9c:56:30:71:be:62:6d:21:a5:2e:5f:
09:92:de:2b:c9:e3:0e:4d:60:9a:b1:23:b6:92:e0:a2:b3:2f:
a7:8a:69:ff:45:cd:64:93:d5:5a:47:bb:f9:54:d5:8f:57:f1:
70:1e:b1:91:84:ca:61:9e:ed:e3:7c:a5:f9:cf:a7:ce:70:44:
a6:70:a5:0e:88:6a:fe:30:f8:ec:71:b9:80:f4:a5:46:96:a7:
e5:38:a7:0c:76:49:b4:63:5e:8a:62:35:78:0f:0c:93:25:e4:
4a:83:d0:d9:b8:8e:8b:b3:96:52:6f:6d:18:10:bc:56:6f:25:
85:2d:18:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:48 2024 by rpki-client on console-ams.rpki-client.org