Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3ED7E3E726811EF81CFEF51762E951A.roa
File: E3ED7E3E726811EF81CFEF51762E951A.roa (raw, json)
Hash identifier: d02A8tOIuNYF0C/FSmGRGW+ZIu0ZVyi3veU7xhivICc=
Subject key identifier: 16:EB:A5:BB:2F:E7:BB:92:22:6D:2A:63:0B:0A:92:87:9B:22:87:06
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B58F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3ED7E3E726811EF81CFEF51762E951A.roa
Signing time: Sat 14 Sep 2024 07:13:50 +0000
ROA not before: Sat 14 Sep 2024 07:13:46 +0000
ROA not after: Fri 08 Aug 2025 07:13:46 +0000
asID: 133861
IP address blocks: 45.207.44.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46479 (0xb58f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 14 07:13:46 2024 GMT
Not After : Aug 8 07:13:46 2025 GMT
Subject: CN=66e537ae-9ddd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b5:8a:8f:0e:3a:f7:49:2e:c4:d9:e6:a1:2b:
7e:83:c7:35:93:30:6a:f3:63:ad:8a:ea:7d:d6:43:
29:1a:83:53:65:bc:65:c2:8a:0f:c9:23:29:58:06:
18:10:66:f1:39:e3:b6:3d:9d:71:fa:fe:30:53:b1:
a3:8a:6e:16:f6:16:3d:e9:58:c7:52:68:63:96:c3:
31:42:6b:d8:15:19:94:2d:fe:f1:4b:72:f8:57:2f:
fe:86:9c:b5:3b:ac:4a:ef:0b:73:fe:fb:b9:49:7e:
68:99:2e:b2:37:74:21:ef:d4:63:7e:e1:ee:36:d5:
4f:b5:73:3e:6e:ce:e6:7c:80:c9:d2:5f:20:62:5d:
a7:35:f1:cc:b6:06:41:89:d3:06:37:18:1a:57:6e:
86:32:15:fe:b4:a0:33:9f:7e:56:e7:3f:a9:e0:de:
23:f8:23:a9:fd:6a:d8:15:de:1e:0d:fb:3a:cf:aa:
63:b4:68:a0:67:b1:85:9b:9b:e4:7d:ee:51:e0:ab:
95:18:8d:1d:11:24:b7:30:0f:6e:c9:dd:09:cf:8c:
bb:ce:eb:13:5b:00:5e:7d:40:74:83:70:8b:00:84:
e5:50:57:e4:4d:7a:46:07:3e:b4:7c:aa:8c:47:9b:
e9:16:c2:53:fd:66:ad:ac:d1:ca:bb:69:1e:53:90:
54:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:EB:A5:BB:2F:E7:BB:92:22:6D:2A:63:0B:0A:92:87:9B:22:87:06
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3ED7E3E726811EF81CFEF51762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.44.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:d4:c7:fa:af:47:e3:bb:00:65:38:72:e7:9d:bc:9a:b7:a9:
f0:16:0d:37:60:f7:21:32:64:03:ef:56:6b:09:8c:b5:03:23:
59:eb:79:71:4e:2c:da:5c:9f:25:d1:f1:f7:0d:d9:08:ec:a6:
d0:bd:66:11:18:cd:5e:43:69:28:05:73:92:7c:dc:17:80:32:
23:c4:0d:7d:11:fa:0a:9a:a2:a4:86:3b:19:31:fe:2a:5e:a3:
9c:ec:53:91:7b:7a:d7:87:9c:f5:53:7a:f1:4f:43:57:33:b8:
94:a9:c0:d5:3a:ef:02:f1:2a:e0:82:c7:d8:da:bd:ae:72:80:
3e:1c:b4:9a:e0:ad:63:39:99:23:21:14:9b:dc:5a:7f:74:8f:
a1:60:71:01:99:a9:28:d3:06:43:a8:6e:c4:25:ab:f6:87:5f:
97:5b:bd:51:2c:ff:c1:54:84:4e:e5:b9:b9:86:66:b4:7e:79:
e5:9f:dc:50:5c:b0:b3:dd:b4:f6:6e:98:53:c0:c6:4a:5e:4e:
ac:56:60:82:71:01:04:07:2a:21:29:5a:51:a8:e4:56:34:20:
00:d6:70:fe:c4:53:10:6b:69:c5:1b:ce:fd:34:1a:ed:e8:f0:
8c:a7:02:aa:82:94:c8:a3:3e:3c:ad:ac:a1:76:ec:71:dd:6f:
05:e2:c0:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:51 2024 by rpki-client on console-fra.rpki-client.org