Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EDA2FEE873F511EF82C71E80762E951A.roa
File: EDA2FEE873F511EF82C71E80762E951A.roa (raw, json)
Hash identifier: RvAJiKdmfy6tmZKQHPhTN46RHg8r6bmxg/7r0/4xqrU=
Subject key identifier: 7B:82:91:9E:F1:C6:FB:A2:3B:26:EB:49:BF:3F:33:48:D0:04:BF:62
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B71B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EDA2FEE873F511EF82C71E80762E951A.roa
Signing time: Mon 16 Sep 2024 06:35:56 +0000
ROA not before: Mon 16 Sep 2024 06:35:53 +0000
ROA not after: Fri 08 Aug 2025 06:35:53 +0000
asID: 133861
IP address blocks: 45.207.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46875 (0xb71b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 16 06:35:53 2024 GMT
Not After : Aug 8 06:35:53 2025 GMT
Subject: CN=66e7d1cc-d40a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:09:38:9b:66:52:41:3b:6a:40:53:f7:32:de:
80:77:62:24:38:8d:52:64:41:31:d9:db:cf:4d:8b:
f2:04:81:0d:7d:8c:25:41:39:19:22:b1:a9:e7:b8:
90:93:7b:fb:b8:6e:b3:cf:39:2a:1a:aa:09:9c:65:
26:3d:a2:29:91:e3:2f:09:3c:0b:2e:b4:d1:07:b5:
38:82:e4:0f:55:15:18:ec:7d:2b:49:19:93:fd:a1:
ea:a5:3a:6e:ea:2f:b0:1a:7b:ec:39:39:ad:e4:ba:
b9:19:87:6d:a5:c1:3b:e8:7a:6f:7a:40:88:7e:79:
92:67:ec:21:c8:f5:e9:38:0d:25:f1:1f:80:f8:04:
41:39:e0:18:ef:2d:02:c2:de:96:e7:65:45:b1:98:
a9:1a:c3:9d:b1:08:6c:d2:41:6f:5a:8e:8d:ef:92:
c3:da:38:d4:58:4c:84:eb:8f:2e:2e:05:c3:ff:69:
45:c4:27:81:f0:e4:b3:9d:11:97:12:91:d4:c7:02:
8f:d3:d3:b5:30:68:3d:3d:24:45:ee:3f:b1:00:9a:
23:28:b0:26:82:cb:7e:9e:77:c0:e2:aa:57:01:9b:
3e:a9:d5:69:3e:88:ae:47:b5:7e:81:8c:43:c8:08:
0e:fc:1c:75:f8:32:1a:fd:8b:f0:c1:cd:ac:26:ae:
3b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:82:91:9E:F1:C6:FB:A2:3B:26:EB:49:BF:3F:33:48:D0:04:BF:62
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EDA2FEE873F511EF82C71E80762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.45.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:c8:01:9e:0b:0f:51:53:e4:60:c0:f7:a8:3b:f5:c6:0e:a0:
eb:4c:e7:82:91:98:e0:a5:2b:6b:b2:48:e5:59:e1:e1:d2:09:
a0:a9:49:d9:29:aa:9f:d9:93:f5:28:bb:f2:5c:8f:ff:13:76:
36:f8:6d:78:9e:d2:e1:57:b2:69:56:df:a3:f8:18:02:4b:27:
ae:4b:af:43:33:b8:d5:f6:0e:59:b9:20:6a:75:55:0f:34:26:
0d:a7:18:c5:fb:6a:26:54:12:c8:28:15:11:71:78:51:34:d5:
1d:f8:d4:7e:d9:ab:83:b7:cd:85:c7:bd:17:5c:38:23:de:b1:
e1:f8:8a:37:f0:24:0f:68:ad:18:d8:24:32:40:69:ca:36:fd:
b0:29:21:2d:4d:6c:f7:b9:1f:46:82:82:6e:eb:50:b2:5b:61:
7c:57:ff:c4:18:0e:39:3e:c3:23:36:a9:c4:68:12:a8:b6:dc:
66:86:99:7c:b4:05:8a:96:52:4b:3f:7c:3e:9e:cd:6f:2d:e2:
75:b5:8a:00:27:ec:04:c5:0a:9c:7e:ec:a3:8a:7a:55:c8:53:
66:a8:f2:7b:2f:77:8c:b3:30:79:48:97:96:78:3d:d1:8e:ff:
92:c9:0f:50:08:5f:ee:83:20:e7:52:6d:c4:09:73:1d:ac:0c:
3e:ed:dc:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:55 2024 by rpki-client on console-ams.rpki-client.org