Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3644574/37DB92B2778011EFA6D72EB2762E951A/BE2FF656783311EF917DDFA0762E951A.roa
File: BE2FF656783311EF917DDFA0762E951A.roa (raw, json)
Hash identifier: z8nixkak1Z9FbFmjVKmFts76NducTIptQiFywilzw7U=
Subject key identifier: 6E:19:C8:6C:29:42:2F:C3:5E:74:A1:D7:A4:81:81:08:50:4D:1D:9A
Certificate issuer: /CN=F3644574AR/serialNumber=F608628A4682F553804AF3AB2E58A19C30A8ADD2
Certificate serial: 13
Authority key identifier: F6:08:62:8A:46:82:F5:53:80:4A:F3:AB:2E:58:A1:9C:30:A8:AD:D2
Authority info access: rsync://rpki.afrinic.net/repository/arin/9ghiikaC9VOASvOrLlihnDCordI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3644574/37DB92B2778011EFA6D72EB2762E951A/BE2FF656783311EF917DDFA0762E951A.roa
Signing time: Sat 21 Sep 2024 16:08:30 +0000
ROA not before: Sat 21 Sep 2024 16:08:24 +0000
ROA not after: Thu 20 Sep 2029 16:08:24 +0000
asID: 21859
IP address blocks: 45.221.100.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3644574/37DB92B2778011EFA6D72EB2762E951A/9ghiikaC9VOASvOrLlihnDCordI.crl
rsync://rpki.afrinic.net/repository/member_repository/F3644574/37DB92B2778011EFA6D72EB2762E951A/9ghiikaC9VOASvOrLlihnDCordI.mft
rsync://rpki.afrinic.net/repository/arin/9ghiikaC9VOASvOrLlihnDCordI.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19 (0x13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3644574AR/serialNumber=F608628A4682F553804AF3AB2E58A19C30A8ADD2
Validity
Not Before: Sep 21 16:08:24 2024 GMT
Not After : Sep 20 16:08:24 2029 GMT
Subject: CN=66eeef7e-ace2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:0b:67:b8:4b:16:a6:9b:71:30:93:4b:f0:ad:
f4:71:ea:09:69:a9:f0:47:32:6e:28:fa:e7:50:0b:
22:f4:b0:d2:00:62:7e:e7:61:87:d8:1b:3c:95:9e:
d2:b1:cf:75:71:18:43:26:4c:02:8e:85:a1:7d:82:
e9:ea:9b:26:07:6a:45:d3:41:de:72:ba:b7:f2:d8:
c8:1c:09:5a:98:a0:5f:29:c4:6f:b0:2b:ac:6c:a2:
8c:f8:59:a8:51:e5:3d:09:68:4f:ff:99:57:53:80:
37:8b:c3:88:32:f8:60:e1:1e:8b:f4:a7:be:95:e1:
33:23:05:94:4e:bc:4b:8e:61:eb:45:e8:9c:cb:83:
43:a4:51:dc:47:0d:96:55:56:db:0e:0b:f6:37:41:
a3:4a:b5:4d:73:6a:6f:bd:d5:29:3e:6e:89:15:7b:
4f:14:d8:37:91:2e:c3:ed:84:f7:2c:26:d3:be:0d:
15:ef:3b:b3:20:72:9e:00:a3:53:25:f3:60:68:6a:
26:41:7c:c7:cb:91:61:5c:c2:f4:2d:ee:57:1d:b1:
27:19:b9:49:46:3b:8f:e7:78:2f:1e:75:b2:6e:e7:
0e:a5:a2:61:03:bd:a8:2a:2f:87:d9:88:ab:9e:86:
e3:e0:7b:19:0e:3c:84:2a:8f:45:b9:54:f4:c1:b6:
94:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:19:C8:6C:29:42:2F:C3:5E:74:A1:D7:A4:81:81:08:50:4D:1D:9A
X509v3 Authority Key Identifier:
keyid:F6:08:62:8A:46:82:F5:53:80:4A:F3:AB:2E:58:A1:9C:30:A8:AD:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3644574/37DB92B2778011EFA6D72EB2762E951A/9ghiikaC9VOASvOrLlihnDCordI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/9ghiikaC9VOASvOrLlihnDCordI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3644574/37DB92B2778011EFA6D72EB2762E951A/BE2FF656783311EF917DDFA0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.100.0/22
Signature Algorithm: sha256WithRSAEncryption
90:1c:75:67:c3:5d:9c:2c:bc:f6:9d:46:8f:50:9c:93:24:0d:
86:c2:4a:74:d0:39:43:9f:33:2e:eb:9c:af:97:7a:36:81:59:
35:03:64:92:ca:c6:18:00:d5:ae:76:38:e1:68:47:54:f1:b6:
b5:74:cf:65:8a:28:13:db:9d:fd:48:39:67:68:40:6d:d9:97:
b5:f0:35:30:f1:d2:50:fd:eb:a2:7e:f7:4e:93:fe:6d:80:8f:
82:ba:cd:d0:c4:a1:23:7a:ef:a0:f3:70:6f:97:3b:04:ec:d2:
ed:44:79:ac:c4:10:90:f8:da:21:c2:12:e3:71:00:e3:6a:ff:
aa:87:b5:51:8d:21:28:05:22:f9:d0:a8:4c:ba:66:0c:60:51:
d8:5b:b1:af:2c:c5:ec:88:5c:a2:a3:e5:6f:43:61:09:8f:18:
cd:d1:08:3f:08:89:9f:9a:35:f2:66:b9:85:68:45:d1:0f:e4:
55:9f:77:60:0e:e8:46:3c:8d:20:c0:27:12:dc:05:a7:9d:6e:
e2:a3:c7:df:83:ac:58:06:4c:6a:08:29:a4:2c:c9:b7:41:bb:
02:ef:e0:1d:03:0a:e9:7b:f9:b4:cc:e2:5e:1f:a1:44:36:63:
55:fc:89:bd:ca:27:f8:a2:c0:32:d1:16:48:0f:00:33:22:0a:
c4:b3:c5:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 05:05:50 2024 by rpki-client on console-fra.rpki-client.org