Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E783A750A74511EF99C9E35F762E951A.roa
File: E783A750A74511EF99C9E35F762E951A.roa (raw, json)
Hash identifier: CpLA5beTFyMj1fOUpgWwSseyHNf6BN9pzyl26ueK88g=
Subject key identifier: BF:82:68:0E:D3:F4:46:42:57:CC:2A:DF:6F:5B:5D:5E:B1:0D:9C:2D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D66F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E783A750A74511EF99C9E35F762E951A.roa
Signing time: Wed 20 Nov 2024 13:46:55 +0000
ROA not before: Wed 20 Nov 2024 13:46:51 +0000
ROA not after: Sat 30 Nov 2024 13:46:51 +0000
asID: 44559
IP address blocks: 45.199.232.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54895 (0xd66f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 13:46:51 2024 GMT
Not After : Nov 30 13:46:51 2024 GMT
Subject: CN=673de84f-0439
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:50:fd:f3:da:04:b0:a4:f9:2e:63:19:40:9a:
46:bf:49:61:0f:00:54:82:16:de:80:fe:3c:69:26:
e1:68:59:28:6e:07:31:a2:74:61:ab:ea:16:e0:f0:
3d:c2:b2:ad:25:7d:9c:eb:b8:a7:c4:5c:a0:40:6d:
06:80:80:af:70:ae:02:5d:3a:02:58:e9:01:35:3d:
8b:51:e2:93:bd:9e:a8:7f:2f:09:fb:a2:dc:1e:51:
b3:2a:1a:ba:ac:db:67:5a:28:10:a9:f4:94:75:b7:
3e:17:ca:22:91:cc:da:77:41:a0:d5:e3:9b:b1:ea:
42:c9:11:2a:78:90:06:67:d5:1a:85:5d:53:b4:4f:
b5:39:ec:93:ec:2e:f5:9e:2d:e3:7a:27:01:c8:5e:
16:52:fe:79:d2:6a:5e:7f:fc:cc:d9:dd:ed:94:70:
6a:b7:67:e3:a6:c2:cf:54:b9:8b:a0:c2:67:5c:34:
52:6c:b5:92:40:74:33:84:07:01:e0:88:71:f1:52:
cd:7f:c5:0f:9b:95:8c:f7:f3:2a:d5:e1:cb:95:3c:
cf:fe:7c:67:8a:f2:6f:32:5e:9c:7f:00:9c:e5:c8:
ba:15:e5:7f:32:0d:8d:63:3b:e3:91:22:f1:6d:51:
59:c7:eb:4b:df:dd:0a:8e:2f:8c:42:e8:3e:94:4b:
20:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:82:68:0E:D3:F4:46:42:57:CC:2A:DF:6F:5B:5D:5E:B1:0D:9C:2D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E783A750A74511EF99C9E35F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.232.0/21
Signature Algorithm: sha256WithRSAEncryption
a6:81:8b:3e:9d:e9:23:ee:aa:74:ab:b8:54:59:e8:f6:78:c9:
3d:1a:c3:e5:f6:26:64:4f:b6:8e:88:29:2a:ff:ff:c7:8c:30:
a0:32:1b:cb:a8:ff:4d:0a:0c:a0:06:f0:5f:cb:ef:84:35:44:
6b:40:73:7e:59:3e:3c:68:17:d2:ef:47:a8:bd:e7:83:c7:e0:
fc:03:92:d6:0d:6d:85:ff:9b:25:76:5a:81:38:4a:c8:ab:7e:
7f:ba:b9:06:1c:d7:8d:90:cc:04:11:0b:f5:fb:bf:63:ce:94:
bb:22:df:c4:7a:d0:22:0c:12:07:0b:ab:42:62:c1:a3:26:97:
d7:5c:c0:f6:89:04:91:7f:45:b9:f3:b4:e4:ef:bc:d3:ba:db:
16:e4:23:d0:f9:6b:09:27:f5:1d:ec:93:d4:93:ca:be:60:58:
18:94:40:ee:5f:00:ef:51:5a:62:0b:1b:78:da:f3:a7:d3:78:
8e:ff:c5:2a:f5:96:13:c2:21:c4:95:2e:2a:d4:8e:97:5a:d0:
24:38:d2:2e:aa:61:47:4b:e4:3b:ca:ef:89:e5:35:5a:25:3c:
82:d9:d8:cd:26:9d:e6:c1:43:70:a0:33:bc:2b:55:e1:76:96:
4c:bf:61:a7:da:14:1d:73:e4:50:05:ec:d8:2c:ac:6a:58:50:
ce:cf:8e:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:52 2024 by rpki-client on console-fra.rpki-client.org