Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/265895F6A73E11EFA87EE6AE762E951A.roa
File: 265895F6A73E11EFA87EE6AE762E951A.roa (raw, json)
Hash identifier: CzLhUIxiw3kSeMeWe3BRmOtJV5fon0rG+Nu011cTOP8=
Subject key identifier: CD:EE:36:B4:EA:C9:D6:DA:5E:3F:70:D9:17:66:64:AE:B4:0C:31:C1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D625
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/265895F6A73E11EFA87EE6AE762E951A.roa
Signing time: Wed 20 Nov 2024 12:51:24 +0000
ROA not before: Wed 20 Nov 2024 12:51:21 +0000
ROA not after: Sat 30 Nov 2024 12:51:21 +0000
asID: 48031
IP address blocks: 45.200.190.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54821 (0xd625)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 12:51:21 2024 GMT
Not After : Nov 30 12:51:21 2024 GMT
Subject: CN=673ddb4c-6358
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:b9:d2:1e:4b:67:ce:0e:5a:68:b9:ff:21:ba:
2d:e6:75:93:b1:f7:f1:a4:78:fa:27:fd:60:07:e7:
7f:71:32:37:bc:65:9e:5e:9e:6c:39:1f:4a:7f:6c:
dc:42:ee:c7:d9:e0:b9:0b:2a:e2:dd:b4:38:23:cc:
6f:a3:58:7e:5c:4d:be:74:ab:a5:18:e9:66:e0:23:
f9:d1:3f:ae:6d:97:86:c4:74:7b:a6:60:1a:05:78:
ce:15:e7:7e:27:41:fa:30:94:c8:bd:88:62:fc:87:
16:b2:57:4e:3d:71:81:d3:38:92:0a:15:9c:25:ed:
36:6a:6c:a3:d6:c9:2c:78:23:27:45:f8:74:e9:be:
c7:af:ce:93:9a:22:4d:b4:6d:85:37:c1:37:c6:11:
36:5c:92:ca:5a:08:4b:27:54:26:85:cd:48:81:9c:
dd:80:e4:6b:0d:b0:1e:ce:30:a6:92:31:11:88:d2:
3d:3e:2a:97:48:f7:0f:7a:c2:84:ca:75:a9:a8:1f:
06:ab:1b:cf:eb:e8:4c:d7:d0:76:b4:7c:c2:df:61:
cd:54:74:67:1a:60:a9:be:a3:51:be:f8:74:8c:6b:
29:bb:d3:88:34:99:2c:b1:b7:83:14:f7:0b:ee:de:
de:fd:4c:60:3b:a1:db:54:ad:a3:ed:f6:8f:e4:63:
90:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:EE:36:B4:EA:C9:D6:DA:5E:3F:70:D9:17:66:64:AE:B4:0C:31:C1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/265895F6A73E11EFA87EE6AE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.190.0/23
Signature Algorithm: sha256WithRSAEncryption
a8:67:e3:b9:01:80:39:78:0f:ab:54:ac:4e:56:53:a7:8d:a8:
bc:66:71:6c:fc:3c:33:59:ce:37:43:25:a6:a7:fc:19:bb:7d:
f9:27:46:e4:c2:c0:cf:5f:03:e5:0e:ac:f2:ac:8d:2d:e5:fe:
3e:3c:0b:cc:ff:63:96:a0:0d:b4:4c:31:c4:5c:68:bf:6a:22:
69:a2:4e:3f:54:10:7a:bb:5b:e8:00:2f:f1:cd:6e:a4:02:60:
22:f2:38:24:bd:bd:6d:e3:7d:f7:38:5f:7a:f6:99:4e:88:43:
a7:c0:6b:d3:bc:ad:fb:83:67:b7:76:01:9d:47:f8:b8:d1:71:
41:35:95:a1:60:13:ab:04:bc:de:e5:3a:4a:1d:12:64:20:9c:
32:55:16:e5:c3:16:76:6a:f5:21:69:c2:26:34:d3:1a:35:4d:
b9:16:0e:65:ac:9f:c7:d9:1c:b2:1d:b2:e0:81:ea:48:9a:77:
46:64:0a:37:f1:8b:1b:5e:ed:a9:09:ca:50:8b:0d:74:ed:ae:
dc:fa:79:66:5a:ba:ea:ec:9d:1b:cb:60:08:ea:49:07:12:6f:
b5:81:3b:3d:ee:7c:65:d4:b3:10:c3:cd:43:96:48:1f:6a:83:
3b:c3:39:0d:bc:a4:e1:7f:50:f9:5b:7a:ef:b4:cf:3e:aa:5b:
1f:a2:ce:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:21 2024 by rpki-client on console-fra.rpki-client.org