Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/210A8948A33211EF8958914E762E951A.roa
File: 210A8948A33211EF8958914E762E951A.roa (raw, json)
Hash identifier: 2e2VsKLsy4mQwQn3NdqvxyGlgn7+k5R8ukrr+MdNTOw=
Subject key identifier: B1:E6:BA:4E:2A:E8:74:6A:A6:95:6A:76:05:93:86:18:7F:D4:1F:E9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D2F9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/210A8948A33211EF8958914E762E951A.roa
Signing time: Fri 15 Nov 2024 09:15:17 +0000
ROA not before: Fri 15 Nov 2024 09:15:13 +0000
ROA not after: Sat 17 Oct 2026 09:15:13 +0000
asID: 137443
IP address blocks: 45.195.52.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54009 (0xd2f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 15 09:15:13 2024 GMT
Not After : Oct 17 09:15:13 2026 GMT
Subject: CN=67371125-004f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:25:f4:5e:50:e8:b2:14:a9:43:35:c5:20:bd:
33:7b:f7:81:98:e5:1c:62:67:4b:33:5c:82:ba:fc:
52:a2:28:34:c6:4e:c2:b7:f6:e9:c6:d6:bb:08:46:
e3:29:49:b9:7f:15:57:7b:eb:96:a1:2d:2b:68:a1:
68:c9:05:e6:ef:fc:80:aa:f0:42:4d:91:a1:2b:07:
e6:99:d1:fe:71:ce:1a:fe:00:dd:ea:e6:c1:61:4d:
06:00:96:bd:00:3e:74:2c:4d:c1:17:ab:54:1d:99:
4b:ee:07:fa:cf:0b:4c:59:65:dd:71:2b:9e:de:ca:
45:25:cf:90:42:dc:8d:6a:d1:7d:27:f8:a5:df:30:
5e:12:77:a0:53:14:c0:68:e8:1c:3c:c1:cb:59:21:
ac:61:71:33:de:6c:33:42:70:f7:07:35:5b:3e:7e:
9d:20:f7:32:70:2c:20:4a:7a:0e:b1:41:ec:3e:eb:
b1:09:79:9d:29:e0:5c:8e:76:8b:3e:81:c5:b8:eb:
73:5b:ee:2c:c7:bb:f8:73:7c:e1:d8:ce:02:54:9a:
30:c0:01:ac:ff:a1:30:ad:31:96:9c:93:0b:96:40:
b9:b4:16:f1:87:8d:e3:aa:89:ac:15:3c:f5:b4:c8:
53:1c:a4:42:8c:dc:ea:27:c2:49:1a:83:dc:de:02:
cb:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:E6:BA:4E:2A:E8:74:6A:A6:95:6A:76:05:93:86:18:7F:D4:1F:E9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/210A8948A33211EF8958914E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.52.0/22
Signature Algorithm: sha256WithRSAEncryption
72:da:29:ab:f5:09:6e:3c:f4:55:70:2e:fe:97:4f:b5:33:b9:
a4:e5:18:b2:3d:8c:be:df:64:4d:d8:ca:a8:16:62:14:f8:a9:
66:3d:13:2f:de:6c:08:50:56:69:03:55:06:5d:54:90:ff:0a:
91:e2:7f:69:a7:99:c7:7b:52:54:86:d6:9b:9b:60:f4:4a:e2:
98:cd:a7:a4:85:5e:bc:7f:19:f7:98:60:34:c1:1d:d1:06:fb:
f6:4d:34:b4:03:e8:cf:5f:bd:23:36:ca:8a:b2:df:81:49:de:
1e:ca:62:d0:2b:c2:02:95:aa:f5:22:31:a8:7e:7e:a9:1a:0c:
c9:cd:40:25:0a:42:c4:cd:c3:fc:65:e2:b7:75:37:bf:16:4b:
0d:c9:42:c6:03:75:eb:eb:87:58:b4:ba:cd:02:53:65:94:a9:
fc:21:d2:82:92:4d:52:f3:7c:6b:71:4a:49:bc:10:86:58:d4:
f8:2b:a7:8e:5b:62:ad:f2:c2:d4:49:05:2d:90:00:dd:ad:22:
c7:ab:70:7e:6f:eb:ea:c4:11:cf:a9:20:8e:2f:63:a6:8b:94:
65:ff:07:09:81:14:0a:52:20:e7:df:43:5c:5d:89:c9:31:ba:
29:c9:06:b3:a0:da:53:ae:79:8f:9d:93:98:0e:9e:53:9b:f1:
3b:b4:97:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:22 2024 by rpki-client on console-ams.rpki-client.org