Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C553B9FE47E111EF9A0DE49B762E951A.roa
File: C553B9FE47E111EF9A0DE49B762E951A.roa (raw, json)
Hash identifier: QvzSnfZUCQ61v2ILu5DFcKwaG23Z3JteycrEHbUd9OQ=
Subject key identifier: 4A:C8:6A:D4:44:1F:ED:08:D7:86:EC:12:42:55:C8:DF:58:0B:19:6F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9E21
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C553B9FE47E111EF9A0DE49B762E951A.roa
Signing time: Mon 22 Jul 2024 04:20:48 +0000
ROA not before: Mon 22 Jul 2024 04:20:44 +0000
ROA not after: Tue 26 Aug 2025 04:20:44 +0000
asID: 140883
IP address blocks: 45.195.150.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40481 (0x9e21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 22 04:20:44 2024 GMT
Not After : Aug 26 04:20:44 2025 GMT
Subject: CN=669dde1f-59f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0a:9b:56:a8:4e:e7:89:e0:d2:57:d5:1f:a8:
aa:14:6b:09:d0:5d:3f:66:60:3d:15:09:e1:99:6c:
a9:00:12:0e:19:f8:4b:82:ae:41:8f:be:fb:18:40:
3b:e2:7e:05:4a:38:42:8c:73:98:f7:3b:d6:f0:e2:
07:03:b9:67:0d:da:45:c8:f7:bd:b0:f3:9b:35:ba:
e8:2e:6c:ad:17:b7:37:20:03:31:d9:14:25:46:d0:
ba:76:c9:2b:a7:ab:2d:5a:55:30:f1:d4:c0:f0:7f:
08:a5:87:90:8a:b9:bf:f2:17:2a:73:2f:3c:3c:91:
0a:f6:89:d2:8c:3a:53:c7:80:38:fe:19:04:ed:06:
d8:ea:cc:44:9c:29:48:bd:01:5d:ef:bf:9c:8c:dd:
05:1d:13:9a:87:96:e0:b1:fc:1e:de:94:6d:30:5d:
ce:b6:a5:54:8e:ce:d6:b9:e3:9b:98:28:0f:5f:ac:
f0:98:b5:68:c0:34:be:a3:3c:7c:50:01:b3:db:ff:
d4:20:6f:e6:06:11:bf:aa:12:ed:9e:38:e0:75:6c:
01:a1:4f:98:b2:09:c5:2b:14:64:27:a0:ef:3b:d5:
76:eb:aa:a0:6d:9a:0e:0f:c2:73:4f:48:f8:77:58:
e8:31:c4:3c:ba:ab:82:04:17:8a:d2:8d:1a:2d:2e:
48:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:C8:6A:D4:44:1F:ED:08:D7:86:EC:12:42:55:C8:DF:58:0B:19:6F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C553B9FE47E111EF9A0DE49B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.150.0/24
Signature Algorithm: sha256WithRSAEncryption
11:3b:e4:1d:a8:f4:7c:eb:6d:91:6c:2c:05:a4:b9:34:97:31:
5a:fc:ab:e8:f1:09:09:61:ff:58:6e:93:7a:d0:b8:6e:0e:c3:
5d:50:ea:53:a5:f1:0f:5f:c6:f1:96:66:83:83:c7:06:4a:ad:
a2:b7:8a:de:9b:e1:78:c2:48:e3:77:1b:02:9f:93:70:db:46:
1c:fc:60:72:75:b1:9c:b7:c4:7c:1d:9d:2d:47:7c:98:ea:eb:
76:9c:bf:c6:1b:fd:98:6a:76:82:07:5d:ad:ac:a7:ff:f4:ad:
af:a0:86:2c:eb:6d:7b:df:06:51:2b:8c:91:bb:f6:7c:41:41:
cd:ff:a2:a7:c3:84:4a:fb:23:51:56:57:7e:0f:51:57:54:05:
57:d0:7d:ec:da:f1:66:3a:75:c5:dd:79:7d:3d:49:23:fa:9b:
97:6e:c4:8c:23:be:54:c9:42:82:06:00:51:25:3c:a5:e4:df:
60:a1:e1:45:21:36:15:f7:51:0d:ef:80:55:49:d5:93:9b:ef:
37:ca:5d:98:bd:39:07:f2:8e:3a:73:c2:2c:a9:8c:01:13:6e:
a6:4e:81:82:79:0d:e2:46:c4:01:08:72:bd:48:ff:85:af:bf:
d6:e3:3d:f5:19:fc:76:12:f1:2e:7b:bf:c2:b0:91:c6:5a:75:
e3:4b:eb:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:49 2024 by rpki-client on console-ams.rpki-client.org