Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/055AB83A9F7C11EFADCFD2B5762E951A.roa
File: 055AB83A9F7C11EFADCFD2B5762E951A.roa (raw, json)
Hash identifier: k932y4Im6MYP5FwN3MDabDjU0yih+J2DK9Bz20/g25o=
Subject key identifier: 56:36:2F:B5:30:FE:EA:97:D6:17:C8:52:51:B1:6E:99:A2:18:F9:88
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D0EE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/055AB83A9F7C11EFADCFD2B5762E951A.roa
Signing time: Sun 10 Nov 2024 15:54:09 +0000
ROA not before: Sun 10 Nov 2024 15:54:05 +0000
ROA not after: Thu 12 Dec 2024 15:54:05 +0000
asID: 398823
IP address blocks: 45.205.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53486 (0xd0ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 10 15:54:05 2024 GMT
Not After : Dec 12 15:54:05 2024 GMT
Subject: CN=6730d721-4965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:26:bd:7a:27:6b:ee:ae:15:1e:eb:42:cc:fb:
db:9d:26:cc:98:6b:b0:70:55:20:37:9f:58:71:cc:
dc:5f:0e:7a:c2:3d:2c:95:5a:62:5e:81:19:31:d7:
fb:cf:45:6c:ae:73:25:1d:71:d4:2f:f8:40:74:94:
bf:a1:9e:aa:2b:9c:35:59:8f:36:c9:8e:29:23:76:
a3:25:6a:bd:be:2c:49:67:08:66:19:a0:88:2c:52:
76:1c:9b:ca:5f:19:e9:59:17:0b:02:cc:85:66:1a:
e0:15:c5:3a:d7:c7:a5:6a:62:95:5e:74:59:16:d4:
12:78:ce:5e:3f:60:82:b2:65:9a:33:85:2b:ae:d8:
58:0b:e8:c7:2f:f3:65:03:52:b3:19:ee:57:74:fd:
ea:75:eb:ec:b2:7e:f7:d5:84:8c:0f:25:8c:03:e6:
99:06:cd:1f:89:09:c6:71:b5:e5:fb:ea:bf:5e:87:
b5:8a:af:c2:45:58:f7:2f:3f:c0:e7:fb:fb:51:c9:
1c:3f:e5:08:70:6a:df:7c:dd:6f:d7:41:18:82:a4:
8c:6d:72:c7:4e:17:cd:74:22:63:5f:7a:e7:99:06:
5b:64:e3:b7:c4:c7:b0:d7:35:92:a6:20:90:4d:57:
4e:78:cb:7b:d7:72:b1:6a:12:4f:c2:e7:ca:44:41:
92:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:36:2F:B5:30:FE:EA:97:D6:17:C8:52:51:B1:6E:99:A2:18:F9:88
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/055AB83A9F7C11EFADCFD2B5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.224.0/20
Signature Algorithm: sha256WithRSAEncryption
9c:db:5a:9b:d0:ee:f8:c8:a3:b8:eb:7d:c3:f7:2b:9c:b3:a3:
e4:bd:e7:e0:31:48:08:d3:93:5e:ec:60:b3:d4:0c:07:4e:83:
ec:ca:ca:a1:76:f6:49:a4:7b:5b:53:44:52:e8:8c:d2:37:44:
b9:94:f9:06:86:78:ff:68:46:b3:71:a9:9f:f9:c6:db:71:c2:
d3:b3:c5:62:45:39:6d:be:03:af:01:36:99:16:c2:46:2f:3a:
ce:9b:20:d5:6f:f1:96:98:0d:81:fa:a0:8b:ad:dc:dc:78:0c:
da:f3:b6:32:90:7d:e6:fd:32:63:8d:3a:a6:d8:d5:4b:16:a4:
c4:64:93:9b:ba:73:b5:88:2f:5f:f7:ab:b0:fa:a9:2a:cb:c5:
37:a9:28:52:79:a9:76:7f:73:9f:a0:f1:b7:c6:66:72:ed:08:
da:a8:69:80:c7:7b:a4:e4:28:1e:0a:f2:4a:59:2b:75:2f:2e:
db:e0:fb:89:3e:2b:2c:d2:57:7c:24:f5:26:ab:ab:60:fd:4b:
28:b1:27:51:8e:0b:4a:96:b2:e0:af:91:06:f2:74:09:01:9b:
d5:15:8a:8a:5a:66:f0:81:bc:04:a2:57:47:88:27:57:14:d2:
ec:27:a2:fd:45:b1:94:e7:78:87:3a:ac:4e:bb:f3:4f:28:6a:
78:18:f5:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:18 2024 by rpki-client on console-ams.rpki-client.org