Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1BB2D346A0EA11EFAE5267B6762E951A.roa
File: 1BB2D346A0EA11EFAE5267B6762E951A.roa (raw, json)
Hash identifier: kmuyOoMFMwJqftM9rlq4HinwN05XI8TbmkkJ5K8x3Sw=
Subject key identifier: D8:3C:A1:8A:99:BF:03:B7:82:7A:3F:6C:0C:FB:09:D6:E0:F5:45:A0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D1D5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1BB2D346A0EA11EFAE5267B6762E951A.roa
Signing time: Tue 12 Nov 2024 11:34:42 +0000
ROA not before: Tue 12 Nov 2024 11:34:38 +0000
ROA not after: Fri 22 Nov 2024 11:34:38 +0000
asID: 39600
IP address blocks: 45.203.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 22 Nov 2024 11:34:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53717 (0xd1d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 12 11:34:38 2024 GMT
Not After : Nov 22 11:34:38 2024 GMT
Subject: CN=67333d52-39c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:85:94:de:1b:ef:dd:50:0f:a2:eb:cf:dc:36:
7d:68:31:4f:e4:f4:e0:fc:4b:de:7b:e0:f1:80:10:
f5:bd:f0:e2:5e:8d:9d:5e:04:e1:ba:29:70:a8:95:
fc:89:11:ff:5d:76:63:a2:0c:ee:a3:44:ba:23:14:
b9:c8:c1:49:c9:53:84:1f:d2:9b:d0:b7:5f:7d:5f:
0c:b9:36:81:a9:95:aa:36:a0:bf:d9:d4:73:22:33:
99:e4:fa:93:2d:14:36:b1:18:0c:4c:c7:f4:f6:8e:
be:f7:b3:d7:8b:d7:ca:c3:8b:b9:0b:48:8d:ed:37:
52:22:9f:41:b8:0b:58:aa:ec:95:06:4f:de:0e:3f:
f2:d9:a8:20:6b:9d:81:56:6e:3d:b5:c1:98:9d:e1:
25:03:c1:d5:75:c2:ac:0e:4e:b0:b5:c2:8f:c3:8f:
77:71:d7:ca:16:7b:bf:6c:16:27:e5:08:1a:7e:cc:
42:53:f6:70:32:ed:f1:c5:bd:14:98:88:fa:b0:f6:
76:52:cf:0e:95:45:c9:36:76:94:ab:43:f0:8b:cf:
73:76:eb:ff:05:a7:19:f7:4a:b5:0e:55:66:08:e3:
71:ac:af:91:40:6a:c7:90:7e:97:e5:44:3c:4e:d4:
b9:04:03:ba:40:bd:f3:53:52:bd:64:29:03:61:4d:
88:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:3C:A1:8A:99:BF:03:B7:82:7A:3F:6C:0C:FB:09:D6:E0:F5:45:A0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1BB2D346A0EA11EFAE5267B6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.203.60.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:a0:d0:07:e4:e5:4b:e8:e0:40:52:6a:b9:aa:3a:bb:25:42:
a4:83:e3:6c:8c:4d:92:95:17:00:23:d8:86:ef:50:d4:af:96:
ba:2c:f4:bb:95:0a:9e:9d:af:73:3c:8f:86:ae:67:f6:d9:be:
3d:6b:08:2b:a0:f2:24:29:ec:88:8f:6e:40:c9:ad:df:3f:90:
ab:51:e9:de:73:06:b7:23:2b:8d:c7:71:0a:45:a4:7d:f2:68:
ce:b2:5a:b2:d2:b4:e8:cf:83:cf:0a:03:50:bd:de:23:52:e5:
fb:94:81:11:76:f5:a1:25:45:74:a4:5d:ba:47:c2:0b:ad:76:
16:5a:f5:4b:00:3c:81:ac:ed:b6:47:54:3e:46:f7:ed:90:09:
49:bf:6f:79:60:83:28:51:2f:a4:ae:60:37:32:4f:8a:69:e3:
90:00:f6:76:26:39:59:b3:b7:48:6b:a0:c5:d9:0f:61:ec:a1:
17:47:ed:8d:bb:ca:7a:a1:fe:0a:71:c5:29:84:ef:b6:f9:8a:
a4:d3:46:58:23:4f:d4:fe:86:64:cd:34:89:90:f5:f6:a0:5d:
d5:96:dc:a4:bf:15:fd:07:cf:aa:6c:95:7e:0b:fe:5f:b0:94:
02:c0:ab:eb:8b:b5:1c:f3:d9:82:ef:f7:cf:f6:ec:e0:46:52:
66:68:46:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:21 2024 by rpki-client on console-ams.rpki-client.org