Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363C3E1/BF8E07A4821611E9A25C183DF8AEA228/18A80742AB6B11ECA47582CF5A40D577.roa
File: 18A80742AB6B11ECA47582CF5A40D577.roa (raw, json)
Hash identifier: dhNC9Inf1xxAi+lb7sj8+SMEepS6p/rnRGNYmI0KNPQ=
Subject key identifier: 19:3D:47:B0:72:2E:4A:C4:1B:93:A8:46:24:AB:7A:45:18:19:58:06
Certificate issuer: /CN=F363C3E1AR/serialNumber=FF3363B1229D1BD9A944947D4DBBDD9E7E8249AC
Certificate serial: 0424
Authority key identifier: FF:33:63:B1:22:9D:1B:D9:A9:44:94:7D:4D:BB:DD:9E:7E:82:49:AC
Authority info access: rsync://rpki.afrinic.net/repository/arin/_zNjsSKdG9mpRJR9Tbvdnn6CSaw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363C3E1/BF8E07A4821611E9A25C183DF8AEA228/18A80742AB6B11ECA47582CF5A40D577.roa
Signing time: Thu 24 Mar 2022 12:08:21 +0000
ROA not before: Thu 24 Mar 2022 12:08:10 +0000
ROA not after: Fri 31 Mar 2028 12:08:10 +0000
asID: 327892
IP address blocks: 45.221.12.0/22 maxlen: 24
169.255.216.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363C3E1/BF8E07A4821611E9A25C183DF8AEA228/_zNjsSKdG9mpRJR9Tbvdnn6CSaw.crl
rsync://rpki.afrinic.net/repository/member_repository/F363C3E1/BF8E07A4821611E9A25C183DF8AEA228/_zNjsSKdG9mpRJR9Tbvdnn6CSaw.mft
rsync://rpki.afrinic.net/repository/arin/_zNjsSKdG9mpRJR9Tbvdnn6CSaw.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1060 (0x424)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363C3E1AR/serialNumber=FF3363B1229D1BD9A944947D4DBBDD9E7E8249AC
Validity
Not Before: Mar 24 12:08:10 2022 GMT
Not After : Mar 31 12:08:10 2028 GMT
Subject: CN=623c5f34-7e86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:11:7b:5d:8f:f3:6e:0f:c8:9f:1b:d5:54:4a:
9a:92:80:cf:78:e6:48:85:73:fd:58:38:0c:9d:06:
e5:45:57:52:8c:63:0d:96:9c:b7:29:74:e2:19:74:
4f:3e:b9:1d:15:31:f3:ae:b2:99:da:59:4b:17:a7:
ac:5b:4c:30:2e:ce:3b:61:f0:1a:82:01:8a:74:d8:
bb:a7:0d:9d:5f:95:2a:17:20:c9:b4:5f:ac:68:7d:
76:00:a1:c1:e1:05:b6:94:5a:b2:73:63:d1:8b:c5:
08:89:66:8b:eb:0d:98:28:f9:ec:d7:1f:de:6a:60:
7a:ef:04:2d:15:61:2e:89:01:e1:10:8f:cb:69:ba:
ea:82:be:47:c2:d2:63:3a:59:3a:a4:a4:72:78:ef:
bf:d4:b1:5c:3b:6f:d3:d5:be:47:80:4c:a3:56:49:
0b:4e:ad:36:4c:aa:5f:f0:e7:7b:b6:ec:72:4c:74:
5e:5f:d8:8d:0a:51:d6:c7:d5:29:29:d0:8a:39:92:
37:82:4c:3d:8b:4b:7f:47:69:f2:0c:67:02:ec:9c:
2f:1f:1e:5c:91:82:b8:1d:b2:99:03:fe:9b:06:db:
e3:88:fd:f1:5a:d4:c2:05:b8:5c:9e:60:09:b0:66:
12:c3:65:24:25:60:09:18:32:bf:b5:a1:11:c0:99:
84:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:3D:47:B0:72:2E:4A:C4:1B:93:A8:46:24:AB:7A:45:18:19:58:06
X509v3 Authority Key Identifier:
keyid:FF:33:63:B1:22:9D:1B:D9:A9:44:94:7D:4D:BB:DD:9E:7E:82:49:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363C3E1/BF8E07A4821611E9A25C183DF8AEA228/_zNjsSKdG9mpRJR9Tbvdnn6CSaw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/_zNjsSKdG9mpRJR9Tbvdnn6CSaw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363C3E1/BF8E07A4821611E9A25C183DF8AEA228/18A80742AB6B11ECA47582CF5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.12.0/22
169.255.216.0/22
Signature Algorithm: sha256WithRSAEncryption
83:51:45:78:fe:c9:9d:33:e8:c3:5a:d1:2c:4c:48:45:c8:cc:
fb:15:6d:1b:91:0b:52:98:1c:67:56:23:7c:d0:ae:a3:ea:74:
80:a6:42:70:7a:03:03:8b:b4:83:1b:5c:4f:4f:aa:af:cb:15:
f2:2b:f8:42:2f:60:af:5a:c7:bb:d5:48:6c:5a:1c:e6:b3:7a:
18:62:95:bd:c2:6a:96:56:64:2e:35:43:c7:bf:51:1e:89:7c:
9f:fb:2e:9a:77:63:aa:e0:be:ff:a4:82:b4:c3:22:4d:91:35:
0f:f5:51:df:2b:10:67:ab:70:c3:c3:d6:a1:0a:35:a6:45:c6:
d0:33:de:fc:46:a2:e4:61:86:76:72:40:91:6e:9b:aa:08:38:
8c:30:78:f6:4c:6e:3f:87:b1:b6:16:2f:be:1c:d5:04:ac:8b:
b8:1c:fe:a0:fb:e8:6a:a5:df:99:d3:b5:38:1f:7b:a7:7c:c5:
f0:5e:fc:f7:93:42:42:fa:36:7f:09:b7:43:f6:82:fa:68:c7:
16:4e:02:8f:1b:7e:c8:d6:03:69:83:83:63:57:99:5a:af:8a:
d8:ad:3b:21:43:f8:f3:44:e2:4a:dd:b1:d6:7f:35:9e:4a:95:
e5:ce:5e:de:b4:bd:5b:64:07:06:0a:c0:4f:33:e5:7a:42:17:
a0:6c:f0:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:33 2024 by rpki-client on console-ams.rpki-client.org