Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E2CD18B2781611EFBAC0B96A762E951A.roa
File: E2CD18B2781611EFBAC0B96A762E951A.roa (raw, json)
Hash identifier: uk8f7bMOGJ1TS3WqKtYYncxJDjmKI1fdJkpqWU354sU=
Subject key identifier: 2D:6D:54:B7:3D:38:2F:65:C5:75:17:B7:33:43:49:4D:18:52:9B:68
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B9EC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E2CD18B2781611EFBAC0B96A762E951A.roa
Signing time: Sat 21 Sep 2024 12:41:56 +0000
ROA not before: Sat 21 Sep 2024 12:41:53 +0000
ROA not after: Thu 29 May 2025 12:41:53 +0000
asID: 137535
IP address blocks: 45.194.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47596 (0xb9ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 21 12:41:53 2024 GMT
Not After : May 29 12:41:53 2025 GMT
Subject: CN=66eebf14-631d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1c:84:25:fc:15:c7:db:a9:e1:ba:13:fa:66:
ee:0c:d3:a6:ab:d8:12:8f:1f:8a:ed:80:b1:16:88:
2b:1c:ee:cd:aa:b0:86:48:ea:b4:9f:22:5a:6c:ad:
e1:d1:a3:27:21:b5:69:43:43:bc:4a:cb:56:52:0f:
94:16:0e:17:5b:b6:e8:a9:df:50:82:25:03:99:4f:
99:a6:de:a2:8d:2c:2e:7c:2c:62:dc:8c:15:65:43:
86:0d:50:5d:0a:94:65:05:1f:0c:7b:7c:37:31:8a:
95:60:7e:ee:02:b6:c0:ae:dc:d4:cc:73:9d:d9:77:
88:2e:cd:b9:b0:76:9a:fc:4d:b0:0e:32:85:68:db:
2f:35:a0:59:bd:b5:47:83:33:70:07:ff:5a:3e:e0:
b5:c4:10:4a:d4:27:0c:c3:f0:dd:38:8e:e5:86:5e:
f1:8b:81:46:c8:e2:cb:22:fb:d2:8b:35:23:37:ba:
74:f9:8c:52:62:09:93:c2:73:43:d2:3c:56:69:41:
15:4b:f6:ab:0b:9c:e2:7f:62:7b:11:10:ce:cf:db:
ab:4d:52:49:ca:1d:14:0a:ec:66:47:23:db:f9:91:
ff:8f:a6:92:e4:9d:a7:9e:3e:9c:50:8f:7e:c8:2b:
f1:37:53:a5:b4:35:64:9b:38:e6:ae:10:44:ec:ce:
3a:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:6D:54:B7:3D:38:2F:65:C5:75:17:B7:33:43:49:4D:18:52:9B:68
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E2CD18B2781611EFBAC0B96A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.21.0/24
Signature Algorithm: sha256WithRSAEncryption
79:b1:ee:f3:f6:31:67:b2:09:aa:d1:28:3c:dd:06:bc:35:f1:
e0:ea:60:0d:be:bf:55:42:61:67:89:ed:e4:63:88:6d:86:14:
e7:59:91:ac:bf:f8:c2:42:0e:bb:22:c7:0f:65:ca:6a:e6:eb:
ee:87:e2:af:62:bd:bc:6e:2f:53:9e:0d:d6:6b:2d:88:63:56:
48:fa:e3:3a:d1:ee:31:ab:4a:15:e7:5d:5c:63:50:c1:32:1d:
8e:3d:79:d6:da:cb:8d:08:fa:b6:6f:1a:76:b9:5d:8a:cd:6b:
d5:d1:08:a9:0e:49:2b:a6:2b:87:e7:6c:2f:a9:42:49:1b:a3:
c3:27:93:4f:8f:e9:fc:93:4a:46:76:76:da:9d:04:45:80:70:
4d:da:02:b5:f1:3b:8a:fe:80:5c:cc:e8:1b:4a:6f:a3:b8:04:
ba:de:4a:c7:59:9b:3d:ef:9e:06:66:e4:83:97:89:a8:d0:dc:
4f:37:ea:40:09:59:65:95:30:43:34:b1:a0:3f:40:30:c2:6b:
a9:42:33:be:1c:4f:e3:50:c5:a5:a5:aa:c3:0e:c2:52:9a:0f:
37:39:f3:25:22:4e:40:98:c6:ff:bf:be:0e:6f:7d:aa:7b:41:
55:f6:0d:f4:fa:0e:5e:79:42:e7:72:0d:b5:0a:ac:95:8e:a8:
df:d3:c0:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:53 2024 by rpki-client on console-ams.rpki-client.org