Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E1197F4A4D611EFB5748397762E951A.roa
File: 1E1197F4A4D611EFB5748397762E951A.roa (raw, json)
Hash identifier: +swWoJmgnWwz9yPB78tJLG8DENc1c6J7/wVlBhzfxlQ=
Subject key identifier: 06:2F:C1:A7:A8:02:F1:DC:54:6C:6D:09:5C:32:4B:41:AC:59:08:A6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D501
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E1197F4A4D611EFB5748397762E951A.roa
Signing time: Sun 17 Nov 2024 11:21:41 +0000
ROA not before: Sun 17 Nov 2024 11:21:37 +0000
ROA not after: Wed 27 Nov 2024 11:21:37 +0000
asID: 39600
IP address blocks: 45.197.232.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54529 (0xd501)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 11:21:37 2024 GMT
Not After : Nov 27 11:21:37 2024 GMT
Subject: CN=6739d1c4-4231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9a:05:d0:63:45:e6:25:fb:fe:2a:f1:0e:75:
07:27:32:e8:21:66:39:20:cd:53:07:77:a5:4f:e9:
18:69:7f:93:52:e5:2b:ea:15:00:d4:11:79:ce:7e:
4e:49:b4:3c:78:41:b6:44:48:6a:a7:b9:e2:c6:45:
b7:2f:05:b4:82:56:8c:d2:b2:50:0f:f5:6c:6f:d0:
d3:22:74:13:ee:c4:30:68:53:47:59:c9:a3:e4:5a:
06:38:a1:75:55:f2:32:ff:03:ed:6e:16:a6:e6:19:
af:55:e0:e9:a6:c2:80:11:f0:42:41:1e:57:e4:4d:
17:64:1a:c1:35:a8:13:c3:8e:c0:84:44:a0:c7:0c:
0e:6e:77:aa:0c:90:31:c1:23:ed:a7:f5:b3:6e:f5:
2a:3c:a8:89:1b:4f:57:69:9f:00:98:3f:93:11:7d:
24:6c:a4:bf:9e:e4:1a:0c:1d:95:93:5c:e3:0b:ef:
62:6f:5c:b0:c4:68:aa:fe:da:87:c1:e9:34:18:9d:
34:96:ae:a7:1b:fb:5f:e0:98:e8:3a:97:89:5f:a6:
f4:af:fd:b1:01:6a:51:c3:18:1b:90:6c:d9:38:97:
db:4f:94:ad:14:5d:d6:e0:b6:71:fd:49:85:f9:5a:
da:97:8f:db:1d:49:f5:81:9f:4f:e7:67:d0:d7:e6:
72:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:2F:C1:A7:A8:02:F1:DC:54:6C:6D:09:5C:32:4B:41:AC:59:08:A6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E1197F4A4D611EFB5748397762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.232.0/22
Signature Algorithm: sha256WithRSAEncryption
09:fd:6f:34:ca:f0:ea:00:20:80:99:2d:81:b3:e4:bf:46:11:
f0:ae:d6:ae:12:bb:37:2b:f1:a4:f0:e3:e5:aa:53:22:5e:ed:
2d:ab:f2:1a:f0:fa:48:84:1a:a1:a3:8d:45:6a:62:88:08:22:
0a:8a:e6:03:ad:3f:6c:f1:b6:17:86:10:5a:5e:28:0c:68:42:
f4:b1:09:67:14:fc:27:01:0e:29:04:5c:09:da:c1:03:e4:ad:
42:58:f7:c6:45:9e:ae:bc:40:e0:7f:9e:31:d9:c2:66:fc:b4:
97:41:a8:7a:04:f3:cb:bf:c3:40:e4:91:11:6b:04:cc:86:ac:
6f:72:bc:25:5d:52:a1:36:0b:fa:c3:09:ef:c5:dd:e5:90:6d:
d6:b0:73:27:e8:f3:1c:ba:01:8f:5d:bc:ef:83:28:bd:59:1c:
94:61:6b:11:27:95:5e:48:bc:f7:af:86:a5:3a:55:8d:ae:06:
ef:96:1a:21:28:d7:e5:60:37:6b:98:3c:b3:66:f4:a9:9b:d9:
9f:6a:cc:36:0d:6d:69:60:46:42:01:04:28:7d:95:80:4c:ec:
35:88:3f:fd:9e:b7:5f:4c:fe:2a:67:85:9f:44:fe:04:9c:f2:
03:76:49:0a:16:bf:73:a9:ac:7d:5c:ed:a3:6c:d7:00:f4:d5:
5e:bd:83:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:22 2024 by rpki-client on console-ams.rpki-client.org