Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3654A44/2DA756809CA511EDB40FF399F1222468/148381D41DB811EF83D02FF17CDC24C2.roa
File: 148381D41DB811EF83D02FF17CDC24C2.roa (raw, json)
Hash identifier: BiZPcXyEyPmGn8AwAntxiM0fpA7+k3wSNcu8/0aEYDQ=
Subject key identifier: F1:89:A4:36:21:C5:48:AB:AE:06:C5:91:49:8F:85:4D:66:1E:DA:D8
Certificate issuer: /CN=F3654A44AR/serialNumber=16C74E7395DC21DD844A22A0112816121A75F492
Certificate serial: 0203
Authority key identifier: 16:C7:4E:73:95:DC:21:DD:84:4A:22:A0:11:28:16:12:1A:75:F4:92
Authority info access: rsync://rpki.afrinic.net/repository/arin/FsdOc5XcId2ESiKgESgWEhp19JI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3654A44/2DA756809CA511EDB40FF399F1222468/148381D41DB811EF83D02FF17CDC24C2.roa
Signing time: Wed 29 May 2024 12:36:33 +0000
ROA not before: Wed 29 May 2024 12:36:29 +0000
ROA not after: Mon 31 May 2027 12:36:29 +0000
asID: 198504
IP address blocks: 45.222.103.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3654A44/2DA756809CA511EDB40FF399F1222468/FsdOc5XcId2ESiKgESgWEhp19JI.crl
rsync://rpki.afrinic.net/repository/member_repository/F3654A44/2DA756809CA511EDB40FF399F1222468/FsdOc5XcId2ESiKgESgWEhp19JI.mft
rsync://rpki.afrinic.net/repository/arin/FsdOc5XcId2ESiKgESgWEhp19JI.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 515 (0x203)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3654A44AR/serialNumber=16C74E7395DC21DD844A22A0112816121A75F492
Validity
Not Before: May 29 12:36:29 2024 GMT
Not After : May 31 12:36:29 2027 GMT
Subject: CN=66572151-d410
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6f:ed:9a:71:f2:97:dd:16:64:b8:b8:c0:fd:
0e:69:a4:2a:9a:91:c2:15:81:d3:fb:35:a6:0c:67:
04:a2:60:c2:9e:45:75:37:40:08:ef:19:86:c4:00:
18:07:e6:27:27:35:65:11:93:cc:8d:93:d6:e5:73:
c9:f4:a6:ce:80:8f:4d:8c:b1:1c:6b:ac:12:05:16:
0b:bb:17:54:f0:98:e5:35:5b:fb:90:c6:e2:88:d9:
34:42:a2:05:a3:3c:10:f0:e5:10:35:a6:e5:26:e2:
69:71:d1:03:e9:bb:8d:be:c1:04:02:49:31:79:86:
4a:1e:94:e4:cd:a5:9d:d1:f5:44:a2:65:39:6f:8b:
6a:b4:d6:02:48:1b:49:6d:1b:dd:2f:4b:e0:73:8d:
f6:af:94:4b:f3:44:06:90:6a:03:07:2d:9f:4a:c8:
7d:2c:8d:78:0f:57:61:54:38:d3:54:ce:1a:4b:1a:
f6:ec:24:04:2c:06:92:e8:88:e4:e4:6d:e9:51:fb:
8b:44:14:e4:b7:51:8a:33:5f:3b:b2:7a:f3:56:ea:
b0:3e:ec:e5:fe:f6:dd:c5:6a:3e:48:46:ac:25:6d:
a7:1c:aa:20:a2:0c:13:47:55:60:cc:0b:48:23:e1:
51:ef:f1:01:19:c6:05:cb:f2:16:3e:99:df:53:9d:
2d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:89:A4:36:21:C5:48:AB:AE:06:C5:91:49:8F:85:4D:66:1E:DA:D8
X509v3 Authority Key Identifier:
keyid:16:C7:4E:73:95:DC:21:DD:84:4A:22:A0:11:28:16:12:1A:75:F4:92
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3654A44/2DA756809CA511EDB40FF399F1222468/FsdOc5XcId2ESiKgESgWEhp19JI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/FsdOc5XcId2ESiKgESgWEhp19JI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3654A44/2DA756809CA511EDB40FF399F1222468/148381D41DB811EF83D02FF17CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.222.103.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:78:76:73:5f:52:54:79:65:90:fa:9d:ee:63:65:64:36:09:
ba:2f:12:90:d5:20:bc:eb:9a:b4:ac:74:4d:bf:01:ef:4e:c2:
79:02:50:81:a9:cc:d1:08:52:eb:30:4d:cd:52:dd:a8:bd:08:
26:58:9a:1d:3e:36:28:dd:d7:c9:52:0a:46:d4:10:9c:9d:c9:
eb:86:88:16:d2:e7:90:cb:b1:31:3c:34:c9:07:12:b2:af:58:
c3:34:02:9b:7d:cf:3d:66:de:9c:4b:42:16:fe:f8:bb:fb:e6:
4e:61:5f:87:65:60:40:10:24:d9:47:39:2a:9b:a7:3c:d8:ed:
fa:01:f1:40:71:d3:ab:18:fe:ab:9e:1d:db:d0:e0:96:d1:3a:
b1:73:ea:df:8c:eb:6a:6e:ef:60:73:84:23:47:0d:f1:1f:15:
af:f7:8a:eb:57:83:89:4e:99:cc:8d:7d:e8:8c:ff:20:f6:32:
fb:46:50:35:26:30:14:c6:7c:ef:91:89:09:0f:8b:59:48:86:
61:12:ae:d8:a4:d7:44:6b:15:16:93:78:95:72:c2:7b:4c:11:
6e:61:ac:13:39:aa:af:e3:6f:32:4b:a5:6a:3a:82:cc:40:7f:
c3:82:3c:40:08:40:ae:7d:5d:57:70:13:35:9e:a7:eb:a8:fd:
8c:1d:f1:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:54 2024 by rpki-client on console-fra.rpki-client.org