Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/19E045CE7E3C11EF88D46AA4762E951A.roa
File: 19E045CE7E3C11EF88D46AA4762E951A.roa (raw, json)
Hash identifier: hWA3T+VVZ08pst1Ubc94ecIFsQt2CQ3S7A16z3xotBk=
Subject key identifier: B5:6D:A4:37:1B:A7:F6:2E:D7:83:2E:F1:E6:F3:04:14:2D:7D:4D:CB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: BC6B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/19E045CE7E3C11EF88D46AA4762E951A.roa
Signing time: Sun 29 Sep 2024 08:23:27 +0000
ROA not before: Sun 29 Sep 2024 08:23:23 +0000
ROA not after: Mon 30 Dec 2024 08:23:23 +0000
asID: 17561
IP address blocks: 45.201.238.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48235 (0xbc6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 29 08:23:23 2024 GMT
Not After : Dec 30 08:23:23 2024 GMT
Subject: CN=66f90e7f-7a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d2:22:d6:9a:4f:da:b2:29:ce:ce:22:dd:7d:
fa:d6:56:84:81:c9:da:52:79:fd:c4:19:a7:7e:c3:
a8:a5:03:93:f5:83:64:da:6d:1d:95:10:81:36:a7:
75:eb:de:a6:c8:13:d5:3f:89:b2:b9:32:76:23:e7:
4b:37:2c:8c:ca:9a:8a:43:dc:85:d5:3d:b5:fa:84:
95:04:29:d4:e9:2b:5b:0e:1e:b8:4a:47:b8:8b:9e:
e5:84:a5:46:b0:53:dc:52:bf:da:a5:34:30:49:68:
40:26:58:9f:92:2a:d8:ef:d5:3b:43:4f:28:6a:1c:
ad:a4:c5:93:33:c1:c2:9e:4d:2c:7d:61:42:f2:1e:
29:1f:88:75:f3:cf:1f:ee:69:9f:47:c6:f5:25:5b:
40:64:ef:a0:3e:e5:4a:8e:7c:7a:3b:84:81:00:51:
3d:de:0e:0b:22:a3:63:c8:a2:65:2a:2e:d6:ee:1d:
61:c1:d0:7b:1a:ab:c6:43:0f:e2:39:a1:38:57:e5:
77:e8:75:f6:d1:b8:75:05:e8:2c:d5:65:0c:d1:1e:
d5:4f:ff:52:50:35:81:c7:01:b7:13:58:aa:f8:1c:
18:aa:5b:c8:4a:c5:3d:3d:12:53:b5:cd:2a:7c:3a:
6c:3e:b0:f0:98:24:5e:0d:ed:57:2a:a5:66:14:7a:
bd:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:6D:A4:37:1B:A7:F6:2E:D7:83:2E:F1:E6:F3:04:14:2D:7D:4D:CB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/19E045CE7E3C11EF88D46AA4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.238.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:5a:ac:97:0f:28:d0:2b:4c:5b:12:e0:0c:fa:9f:cf:52:af:
56:1a:d8:7a:34:fb:f8:75:68:4e:2c:1d:95:73:c1:c1:45:06:
95:18:9e:57:1a:ab:95:07:5f:9a:ff:33:d1:c3:a8:83:7a:ff:
3c:9e:7d:fa:47:5e:2f:a1:10:91:82:e6:c1:17:01:8b:2f:d8:
f2:e9:81:1b:86:eb:e9:5c:52:ef:bf:11:e3:6f:38:aa:ce:54:
a7:77:1b:da:ea:57:21:80:70:3e:6e:25:58:65:06:e8:48:3a:
01:41:a4:19:20:88:99:ec:9b:53:d5:1e:3a:c8:d1:5d:fe:07:
d3:98:2c:0c:97:6a:de:58:b3:4c:81:c7:d0:77:ef:f7:ec:21:
b6:f9:83:ff:7f:b9:38:2c:ea:da:55:d5:8d:e0:fd:a9:dd:87:
60:39:cd:e4:77:47:2e:8c:c8:58:f3:be:db:94:82:f1:4f:e3:
b1:c1:5e:12:4a:53:8e:7f:0e:da:d0:35:90:6a:58:bb:93:da:
e3:d8:9e:81:0d:5c:e3:6e:e3:b3:00:33:8b:7c:3c:4a:d4:82:
f7:25:cc:03:ca:b7:e3:37:54:f4:7a:6c:d3:78:73:a2:ce:a5:
90:a9:ea:78:f4:e1:44:f1:d6:dd:6c:11:62:eb:93:6d:98:66:
f2:04:cf:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:20 2024 by rpki-client on console-fra.rpki-client.org