Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CF19D7807E3B11EFBFBE9CA1762E951A.roa
File: CF19D7807E3B11EFBFBE9CA1762E951A.roa (raw, json)
Hash identifier: SnfbaZpzIAc6iCtllcpoSTCt4uuTvcSjTq0tMxmneRc=
Subject key identifier: 8C:C7:11:B5:E5:E7:F6:7C:53:1E:4E:32:90:4A:F7:04:FB:AA:DB:5D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: BC67
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CF19D7807E3B11EFBFBE9CA1762E951A.roa
Signing time: Sun 29 Sep 2024 08:21:21 +0000
ROA not before: Sun 29 Sep 2024 08:21:18 +0000
ROA not after: Mon 30 Dec 2024 08:21:18 +0000
asID: 17561
IP address blocks: 45.201.236.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48231 (0xbc67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 29 08:21:18 2024 GMT
Not After : Dec 30 08:21:18 2024 GMT
Subject: CN=66f90e01-9ed5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:4a:85:80:3d:48:b4:13:89:6f:08:49:9b:fb:
11:8b:8a:71:19:03:18:e2:06:d1:a0:ec:92:82:19:
51:da:0c:3f:91:44:bd:ee:17:35:eb:a7:fc:df:79:
b6:3f:62:31:51:d0:ea:59:24:0e:80:64:91:b4:a3:
96:15:31:bb:e2:ee:c6:4b:7b:f7:84:89:12:1e:7f:
fa:92:d8:db:04:7e:dd:5d:b5:bc:4b:87:15:b0:1a:
d2:1e:9a:7e:8b:e6:49:51:c6:94:67:9a:ad:ff:ee:
85:5a:21:e5:00:52:da:cc:8c:00:26:96:8a:38:08:
b5:c8:cb:cc:43:f7:58:12:f2:2f:bf:b8:f5:95:3f:
96:3d:3e:35:c4:41:1f:ed:a6:af:8e:42:c7:d8:43:
21:65:bc:c1:e6:3b:26:df:75:2a:dd:0d:c4:7f:da:
26:3a:6e:8c:52:23:01:70:af:dd:d4:a7:21:d3:83:
8b:dd:8a:b7:9a:22:af:b3:bd:c5:45:94:91:7d:2f:
5b:d9:83:17:4f:c3:83:ef:8c:5b:78:10:1d:62:6e:
82:96:54:61:dc:46:df:03:ee:fd:97:af:83:b6:a8:
32:10:9c:cb:ea:c3:79:f2:a6:7e:2d:63:1a:fe:d2:
05:62:04:55:96:f3:5d:5c:da:ba:0a:ad:35:4c:14:
e1:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:C7:11:B5:E5:E7:F6:7C:53:1E:4E:32:90:4A:F7:04:FB:AA:DB:5D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CF19D7807E3B11EFBFBE9CA1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.236.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:f7:61:86:0d:5d:cd:20:3f:22:9b:08:82:82:a3:0c:e7:cf:
20:2e:42:f4:40:4c:27:ff:c3:d4:45:91:55:54:04:c5:75:95:
f3:6a:e0:8d:a4:99:8a:c6:9a:51:f1:88:13:52:59:a7:9d:f1:
6b:b0:ca:5b:81:48:90:85:0a:93:92:87:89:e2:fb:4b:c5:50:
29:a3:57:19:17:ba:f3:57:4e:0d:f1:7e:03:79:34:5b:0f:0f:
f1:0f:6c:0d:dc:f2:0c:49:51:2c:b5:9f:e2:fa:c6:bd:24:9a:
e0:be:6e:9a:5b:fe:be:66:54:fc:b0:e7:63:5c:e0:0a:e2:e6:
9a:3c:3a:4b:d6:24:ca:08:5c:f2:33:99:b8:dd:f0:84:a6:dc:
88:58:7a:20:2e:a9:77:73:bc:ea:a0:51:6e:43:15:e5:b7:8e:
b3:24:d9:73:06:b6:16:59:1b:25:ba:46:80:70:b5:76:c0:15:
40:43:74:99:34:9e:31:c8:ef:46:81:87:d3:53:4b:cb:c9:95:
71:92:5e:6b:ef:2a:0d:e5:ad:fe:89:76:af:9e:ac:f5:0d:be:
ea:0d:58:ff:fe:08:5a:d0:04:50:b9:e0:23:70:18:19:b9:f2:
9a:74:77:48:b5:c7:df:3b:9d:0f:1a:ee:c5:b0:84:a6:83:30:
34:22:35:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:48 2024 by rpki-client on console-fra.rpki-client.org