Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2A228188A4C811EFAACFE0BE762E951A.roa
File: 2A228188A4C811EFAACFE0BE762E951A.roa (raw, json)
Hash identifier: 6adAik+TfmOdnYlOzxcvZvFusBj7IiSFDDyKiHEBE6I=
Subject key identifier: A5:AE:E6:01:40:17:2B:83:70:12:90:55:A9:49:DC:91:C7:45:57:42
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D49F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2A228188A4C811EFAACFE0BE762E951A.roa
Signing time: Sun 17 Nov 2024 09:41:48 +0000
ROA not before: Sun 17 Nov 2024 09:41:44 +0000
ROA not after: Mon 25 Nov 2024 09:41:44 +0000
asID: 399989
IP address blocks: 45.196.32.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54431 (0xd49f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 09:41:44 2024 GMT
Not After : Nov 25 09:41:44 2024 GMT
Subject: CN=6739ba5c-c5d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a7:e4:86:df:ba:11:d0:84:26:62:d9:b4:89:
53:ce:97:93:85:01:70:a4:f8:58:ad:b5:9a:9a:05:
2c:dd:3c:68:06:1d:bf:14:d1:7e:f3:92:1b:8c:ba:
7c:cd:1e:42:bb:57:5a:bd:3a:e7:76:4f:59:37:05:
3d:26:2d:61:b1:4b:52:1c:b9:22:ba:3d:d3:0f:d6:
e1:83:00:ba:22:de:16:29:42:89:d4:99:5f:c3:fc:
ce:5d:9a:bc:0e:c0:b6:d1:5d:72:d3:ea:3b:33:b1:
04:5b:61:d5:18:87:2c:3f:a4:8c:18:20:ae:81:a7:
a8:a0:43:45:31:a3:13:52:bf:a9:6b:09:a8:e5:f1:
d6:35:89:85:64:2a:79:50:1c:f8:39:23:71:77:89:
16:bb:e2:e7:53:ba:a9:fe:d7:e4:89:ca:87:2e:c9:
c2:01:7d:51:fa:87:40:34:c5:1d:fc:26:94:ec:5c:
9e:a9:5c:88:3b:d0:30:ee:54:1d:a1:b8:30:ac:e5:
79:ca:85:e7:8f:29:03:69:70:93:ce:ff:2d:00:56:
ee:7f:c5:04:94:4f:7a:ab:9a:53:f1:5b:4a:73:9e:
0d:4d:fb:da:39:44:c5:9e:27:ee:e1:1b:df:3e:fc:
39:b3:68:08:d1:fe:58:6e:ec:53:be:65:ef:cf:35:
0b:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:AE:E6:01:40:17:2B:83:70:12:90:55:A9:49:DC:91:C7:45:57:42
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2A228188A4C811EFAACFE0BE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.32.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:45:24:ec:53:52:13:b6:96:4f:e9:6c:74:66:e1:07:65:fb:
dc:ff:35:98:2f:bd:3a:18:d7:cb:6e:95:62:0d:98:82:bb:30:
b9:c7:fd:dd:c8:a0:4e:17:8b:5c:2f:f0:df:3c:ec:84:bf:43:
42:d0:31:5d:62:fb:a6:e3:3c:51:3c:63:1a:03:39:3e:19:aa:
ac:b5:2f:3d:f0:f9:97:c8:2d:f1:2c:6d:14:f0:aa:a9:24:b0:
56:52:60:68:e4:08:46:fc:e4:c7:65:d9:73:bd:3f:e5:a2:db:
28:a8:58:f9:6f:6c:b7:f7:39:7b:03:c6:9f:28:1c:ad:6d:d0:
f4:e0:e7:5b:93:5f:17:93:60:55:7a:94:9b:06:49:23:ab:c8:
25:76:16:76:2a:4d:60:d6:46:cc:e7:21:4b:d0:81:fe:e2:ce:
6e:93:97:6c:a1:96:d0:c8:84:c0:9c:66:36:5b:bf:05:48:61:
58:d4:b7:f2:e1:d5:11:87:7d:61:82:68:72:75:42:7c:7c:9d:
e4:21:88:21:d0:29:3f:3a:da:f8:80:84:28:99:ec:d7:f8:a6:
4a:af:3c:de:ee:54:4d:bd:bb:fb:da:c5:69:b0:85:e9:62:81:
0b:71:93:a6:2a:a0:f2:52:7e:5d:5f:51:0d:8d:70:6b:b7:fe:
9c:23:5b:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:24 2024 by rpki-client on console-ams.rpki-client.org