Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3644574/37DB92B2778011EFA6D72EB2762E951A/3A33BF1C783911EF9D168E42762E951A.roa
File: 3A33BF1C783911EF9D168E42762E951A.roa (raw, json)
Hash identifier: SbDFlPM/kLoyf4fvU/1Ejh3tm02iphb6lWKgQsjJHfQ=
Subject key identifier: 5E:D0:5B:F0:11:8D:6D:36:28:4A:BE:DF:17:89:E4:12:03:1A:1C:3A
Certificate issuer: /CN=F3644574AR/serialNumber=F608628A4682F553804AF3AB2E58A19C30A8ADD2
Certificate serial: 17
Authority key identifier: F6:08:62:8A:46:82:F5:53:80:4A:F3:AB:2E:58:A1:9C:30:A8:AD:D2
Authority info access: rsync://rpki.afrinic.net/repository/arin/9ghiikaC9VOASvOrLlihnDCordI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3644574/37DB92B2778011EFA6D72EB2762E951A/3A33BF1C783911EF9D168E42762E951A.roa
Signing time: Sat 21 Sep 2024 16:47:46 +0000
ROA not before: Sat 21 Sep 2024 16:47:42 +0000
ROA not after: Wed 25 Sep 2030 16:47:42 +0000
asID: 138968
IP address blocks: 45.221.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3644574/37DB92B2778011EFA6D72EB2762E951A/9ghiikaC9VOASvOrLlihnDCordI.crl
rsync://rpki.afrinic.net/repository/member_repository/F3644574/37DB92B2778011EFA6D72EB2762E951A/9ghiikaC9VOASvOrLlihnDCordI.mft
rsync://rpki.afrinic.net/repository/arin/9ghiikaC9VOASvOrLlihnDCordI.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Oct 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23 (0x17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3644574AR/serialNumber=F608628A4682F553804AF3AB2E58A19C30A8ADD2
Validity
Not Before: Sep 21 16:47:42 2024 GMT
Not After : Sep 25 16:47:42 2030 GMT
Subject: CN=66eef8b2-a266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a9:33:0a:c7:d1:45:e7:38:44:62:43:e3:d7:
c9:e6:e2:ed:ba:8d:e0:9e:36:0b:e3:e6:9a:dc:fe:
46:3f:f6:3d:43:80:d4:00:49:25:f0:c8:d0:0d:e1:
bb:48:8f:c2:60:51:b9:a1:ec:32:4a:60:c2:f9:e5:
cb:4b:08:40:37:73:f1:3d:99:a7:64:67:a9:0d:38:
81:33:9f:cc:85:be:10:5e:30:3a:a9:79:ab:d1:a5:
fe:d0:aa:1c:73:b4:b8:1a:2e:38:24:3e:d2:fc:94:
4d:42:62:84:9c:01:c5:57:db:dc:89:a1:b0:f7:07:
7c:0f:8e:ca:2a:9c:d5:99:e2:cf:d9:12:79:74:6e:
86:83:6b:6b:4e:9e:ce:50:ae:d9:a4:b4:a0:71:cc:
30:d6:85:39:de:85:09:ef:f1:0a:ce:e4:0d:d4:89:
48:9f:7e:bc:9b:13:dd:41:65:98:39:b3:b3:eb:9a:
ac:2e:38:8c:0d:e9:1d:a4:58:43:31:3d:4a:0f:cc:
67:03:a8:4a:76:b8:76:8b:a9:c2:3e:6d:25:77:b8:
41:c8:d9:e8:8f:d0:8c:93:20:19:7b:12:3d:42:91:
bc:18:e4:ba:4b:f1:63:1f:8a:29:5e:ab:3e:29:ce:
50:7f:52:4d:83:0b:78:b8:a6:40:68:2f:12:0c:40:
4c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:D0:5B:F0:11:8D:6D:36:28:4A:BE:DF:17:89:E4:12:03:1A:1C:3A
X509v3 Authority Key Identifier:
keyid:F6:08:62:8A:46:82:F5:53:80:4A:F3:AB:2E:58:A1:9C:30:A8:AD:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3644574/37DB92B2778011EFA6D72EB2762E951A/9ghiikaC9VOASvOrLlihnDCordI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/9ghiikaC9VOASvOrLlihnDCordI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3644574/37DB92B2778011EFA6D72EB2762E951A/3A33BF1C783911EF9D168E42762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.96.0/19
Signature Algorithm: sha256WithRSAEncryption
25:12:e3:ce:a9:51:69:db:e6:3b:60:ab:ae:9c:7b:7c:bf:36:
36:89:2b:bb:9e:dc:27:1c:ab:2d:1d:d1:f6:e1:1d:14:3e:ef:
ed:04:c8:df:bc:19:89:bd:8d:28:07:dc:d9:8b:f3:df:74:b7:
2b:3d:b6:8a:73:56:9d:93:e8:de:10:10:05:e5:55:7b:95:dc:
bb:47:cb:46:d4:a9:b6:82:7c:de:30:78:4f:28:59:55:41:50:
a5:6b:2a:da:e9:fc:2f:20:b2:94:9c:a7:6a:5a:fd:a9:2c:fd:
4f:a9:25:14:78:f0:8e:49:ea:dd:01:65:34:bb:d6:d1:68:c6:
47:0b:ca:64:29:31:72:a1:0a:09:fd:36:bd:df:3e:f1:72:2c:
2e:d6:c4:48:3d:40:f5:bf:e8:dc:85:fa:fa:8f:f5:06:0f:27:
6e:c7:69:e8:a9:3a:45:bc:90:94:40:d9:5d:69:22:f0:2e:75:
22:2e:4d:25:8a:3c:5a:7a:dd:31:71:23:17:c4:6e:fa:62:94:
0a:e7:1d:ea:7c:a8:fb:74:19:b2:9b:d7:53:5b:b4:a7:a0:62:
d4:a6:1d:29:44:57:de:75:46:36:f1:0e:fb:04:1c:dd:e1:fd:
20:23:f0:f0:61:75:c3:d8:e8:2f:b6:99:6f:61:f7:e4:4e:f7:
c6:a9:69:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 07:10:17 2024 by rpki-client on console-ams.rpki-client.org