Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ED8C1F30AD5B11EFA45358BB762E951A.roa
File: ED8C1F30AD5B11EFA45358BB762E951A.roa (raw, json)
Hash identifier: EMhO018Ic1TL7W6lFYbncV419nvCmi7JA/tNKB7jPdk=
Subject key identifier: DC:D4:96:6F:D3:7F:10:03:B9:6C:84:36:F9:D7:16:D8:4B:0D:EB:49
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: DC53
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ED8C1F30AD5B11EFA45358BB762E951A.roa
Signing time: Thu 28 Nov 2024 07:39:41 +0000
ROA not before: Thu 28 Nov 2024 07:39:37 +0000
ROA not after: Tue 11 Feb 2025 07:39:37 +0000
asID: 9009
IP address blocks: 45.192.148.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Dec 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56403 (0xdc53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 28 07:39:37 2024 GMT
Not After : Feb 11 07:39:37 2025 GMT
Subject: CN=67481e3d-30d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:81:cc:6a:d9:6f:52:94:b5:99:8c:84:02:7a:
72:84:f9:3e:e7:19:1e:31:60:17:99:36:f1:25:fa:
70:1e:17:85:c1:72:63:34:44:ca:f5:a9:91:e7:13:
fd:5c:64:f1:12:ff:34:13:bf:9a:4d:78:ad:5b:a1:
71:9a:2d:eb:8e:20:c4:f0:6e:a7:83:ae:bc:6d:1b:
1e:5b:ba:56:b0:45:ba:30:78:0d:64:2d:71:3a:be:
1a:04:4a:e2:87:aa:fe:53:6d:41:61:d9:8d:53:e5:
55:1c:dc:99:1f:89:89:53:f9:28:e8:f9:eb:99:32:
a1:24:da:1f:c4:ae:a2:0f:c8:10:fe:53:31:e9:ae:
12:1b:10:3a:cb:85:c1:d5:23:16:e8:f7:20:56:66:
21:19:6f:8c:21:38:c0:a7:f2:8e:55:a5:d9:9c:02:
5d:ca:c0:c9:6c:a4:fe:e8:46:7f:14:5b:25:83:4d:
b1:46:c1:ec:e9:5f:09:c9:e8:96:80:5d:2c:99:60:
91:5e:7c:80:20:de:62:5a:09:41:77:fa:52:df:b9:
b6:7a:01:cb:78:cf:ab:38:4f:f6:5c:6a:c7:01:f0:
85:ed:eb:f4:40:c1:22:6a:e5:63:2e:0c:af:75:92:
1c:86:c6:ab:67:2e:ac:6f:8b:db:62:91:2b:6c:a9:
f9:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:D4:96:6F:D3:7F:10:03:B9:6C:84:36:F9:D7:16:D8:4B:0D:EB:49
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ED8C1F30AD5B11EFA45358BB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.148.0/22
Signature Algorithm: sha256WithRSAEncryption
b6:35:fb:75:b3:36:05:18:e1:8e:61:92:37:c1:9a:fb:fc:d3:
a7:e4:19:70:78:cc:8d:f5:8d:00:1a:5e:6e:fd:79:6c:b2:17:
2e:30:f8:99:4f:fb:bd:fb:21:93:9d:32:a2:f1:a3:7f:4b:93:
8c:18:2d:f1:4f:e3:4c:a7:d6:fc:5f:23:72:f1:27:11:e4:8a:
0b:c1:23:ef:12:b0:aa:ca:9e:fe:23:43:5d:6c:10:44:98:c9:
29:3e:de:98:41:50:60:4e:0c:4e:29:90:22:f7:94:68:94:48:
23:d5:22:04:93:aa:31:ba:f5:65:3a:94:98:b9:6d:a0:7c:73:
f3:8a:e3:7f:17:13:24:35:59:be:ee:86:18:46:47:46:9c:d3:
bb:86:da:0c:74:67:3e:0b:9f:b4:11:e4:d4:d5:3a:84:ac:8c:
be:c0:aa:7d:65:19:86:9a:41:34:7e:af:4d:36:85:75:0b:ad:
c6:71:fe:a1:8e:53:cf:f4:fa:a0:b2:d7:5e:d8:a7:d6:06:2f:
46:dd:ef:6d:ed:08:45:1a:0d:33:ef:91:e9:c8:8c:f1:6f:22:
4d:8e:eb:b5:5b:32:43:1b:9b:64:e9:8a:f8:af:71:90:07:f4:
3f:4e:ee:9a:cf:af:c9:c9:6e:03:77:ad:68:92:82:c6:09:75:
eb:20:3b:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 14:48:09 2024 by rpki-client on console-fra.rpki-client.org