Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FA02EE40A44D11EF822BFAB4762E951A.roa
File: FA02EE40A44D11EF822BFAB4762E951A.roa (raw, json)
Hash identifier: vqutvUCEAHHlL9IY9XGedrkEYyJ0BEoRyPLSzs3oFaM=
Subject key identifier: 51:30:3B:07:9E:01:95:96:21:38:C9:91:C8:B3:14:AA:18:74:BA:0D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D3BC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FA02EE40A44D11EF822BFAB4762E951A.roa
Signing time: Sat 16 Nov 2024 19:07:09 +0000
ROA not before: Sat 16 Nov 2024 19:07:02 +0000
ROA not after: Mon 25 Nov 2024 19:07:02 +0000
asID: 9009
IP address blocks: 45.192.152.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54204 (0xd3bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 16 19:07:02 2024 GMT
Not After : Nov 25 19:07:02 2024 GMT
Subject: CN=6738ed5c-7bfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:49:28:ba:91:67:1f:4e:6f:be:0d:0e:18:e4:
bc:9d:a4:f4:a6:f7:cd:12:48:c4:d2:81:51:17:0e:
39:ef:73:28:d5:68:f8:35:c6:82:80:cc:af:c1:5c:
57:2e:40:eb:e9:f2:04:0b:cf:8f:e1:45:eb:e5:dd:
4c:f4:9d:af:40:be:22:e0:1d:ae:f4:a6:3e:7a:75:
3d:d1:2e:d6:75:21:81:f5:6b:0b:02:86:15:b3:19:
d1:ae:3a:f6:76:96:35:25:7c:12:98:14:d3:9a:6b:
5a:80:d1:46:86:26:32:64:3b:36:12:3d:a4:9f:07:
c9:e0:e1:e1:7f:21:7e:d9:83:1a:ab:8e:d5:6d:97:
4b:de:3e:02:23:c8:70:a0:8d:98:c1:7b:a1:c4:31:
65:a0:a4:6e:f3:de:36:6a:78:36:4b:18:a5:40:95:
52:05:a2:fc:d6:2c:9c:28:35:18:e8:ce:72:d5:d2:
05:12:79:de:29:5f:3e:7b:7f:5a:f4:24:6f:d2:bf:
48:4d:14:b7:87:97:f5:c9:ca:e4:19:76:73:00:24:
67:c8:88:10:4a:fd:e6:6a:16:44:8b:a5:b5:4c:53:
d6:b4:1b:55:63:d8:8e:88:74:98:a7:18:26:ce:f6:
0d:7a:fe:85:4f:f7:03:6a:c6:7f:e1:f2:53:49:dd:
f0:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:30:3B:07:9E:01:95:96:21:38:C9:91:C8:B3:14:AA:18:74:BA:0D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FA02EE40A44D11EF822BFAB4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.152.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:d2:6d:77:f6:5f:2c:f0:a7:8d:43:08:2e:49:ec:ce:e1:65:
aa:ba:06:15:bf:7e:c5:86:7f:85:f5:22:9d:af:2b:af:9d:03:
07:e7:8b:32:81:6b:a3:b5:8d:b1:96:72:e0:73:14:0e:52:53:
18:82:75:fd:e9:a2:6b:d3:26:ed:c4:0f:83:96:e3:03:60:9a:
51:ec:05:b4:be:be:3b:bf:e3:df:0d:87:4f:85:50:54:52:04:
df:2e:8f:49:65:66:bc:00:0a:91:50:cd:68:e1:bb:58:df:3a:
31:80:b3:64:3d:88:1a:38:72:34:a9:b3:f6:15:a4:56:15:3d:
b1:3b:0c:d7:dc:70:ba:cb:7b:a8:54:a6:a0:2e:d5:e7:8d:ae:
2b:9f:4d:c0:f2:ba:5c:6a:18:53:c3:ff:1c:72:33:92:6c:db:
e3:f4:56:d3:0f:58:c8:3d:0d:eb:c6:82:3c:6b:60:cd:fe:40:
2c:1e:fb:6f:4f:55:a2:39:34:c1:4d:f6:c0:84:9b:0d:9c:44:
f5:d1:f3:2a:3a:0d:65:7d:35:4e:f9:fd:5d:c1:7b:d4:46:14:
c9:4a:09:55:d3:27:17:09:19:ac:7a:cf:3a:fe:06:2e:a2:db:
6c:cd:1b:93:73:3a:bd:fb:60:f2:88:22:ac:80:34:ea:18:9d:
3a:d8:c8:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:55 2024 by rpki-client on console-fra.rpki-client.org