Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2AE50C2A29EF11EF91B7E6EE7CDC24C2.roa
File: 2AE50C2A29EF11EF91B7E6EE7CDC24C2.roa (raw, json)
Hash identifier: ZYxiI6vgXy04CvVc9IvGRSqQFdRAZtbwaP2WHwntUto=
Subject key identifier: 95:BD:2F:43:33:82:02:19:4A:09:1B:93:F3:5D:07:F5:C6:8F:9D:96
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 91AB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2AE50C2A29EF11EF91B7E6EE7CDC24C2.roa
Signing time: Fri 14 Jun 2024 01:41:07 +0000
ROA not before: Fri 14 Jun 2024 01:41:03 +0000
ROA not after: Tue 16 Jun 2026 01:41:03 +0000
asID: 10753
IP address blocks: 45.199.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37291 (0x91ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 14 01:41:03 2024 GMT
Not After : Jun 16 01:41:03 2026 GMT
Subject: CN=666b9fb2-ef50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:2c:42:37:d5:4e:3d:c1:4d:5e:f7:92:80:e8:
d2:c0:a3:57:70:10:0e:ba:33:d1:20:44:15:63:78:
93:be:29:a7:c2:05:55:5a:fd:40:d1:f4:7f:7b:8c:
c1:07:9a:7e:5a:31:00:23:a2:e3:4a:05:63:2b:37:
ff:41:49:05:e7:7d:b3:c6:c7:5a:c6:a7:d4:08:a1:
fa:36:b6:c3:f6:5b:b5:f9:00:19:de:b4:8e:60:19:
b8:8b:76:00:c7:3b:6d:93:f1:91:bd:fe:11:ad:22:
15:06:0a:02:dc:81:37:a6:12:57:51:2c:95:73:54:
ce:4e:15:bc:93:6a:34:ca:0d:c9:56:ee:76:e4:fc:
e5:75:61:60:b4:c1:fb:b7:0a:f3:4c:08:e4:7b:f0:
aa:b3:bc:30:ee:70:b2:98:00:63:50:ff:6a:7a:3e:
68:c8:1c:5f:a0:0d:44:ca:f9:3b:6c:e3:b6:05:90:
f3:d4:09:86:4e:fb:09:19:f1:a5:53:83:33:61:f6:
fb:b1:f3:b6:53:4a:cc:5d:70:3e:26:50:3f:c0:b0:
e6:28:0c:1c:b5:55:61:2c:a7:80:2a:1e:5c:dd:f8:
62:96:e7:f0:07:c2:53:88:0c:0a:4d:2e:e5:aa:42:
5c:d4:89:e8:48:b9:18:f1:dd:62:8d:f3:9b:a6:0b:
c1:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:BD:2F:43:33:82:02:19:4A:09:1B:93:F3:5D:07:F5:C6:8F:9D:96
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2AE50C2A29EF11EF91B7E6EE7CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.178.0/24
Signature Algorithm: sha256WithRSAEncryption
af:5b:9b:37:cb:a9:b3:28:cd:eb:55:b7:40:12:0c:01:f8:ab:
fe:94:27:2d:85:45:7d:5f:1c:75:11:6b:2f:11:ba:cd:e4:6b:
87:c1:69:df:fa:d4:91:9e:94:b4:3d:8a:63:fa:24:1e:2d:e3:
a7:d9:54:20:12:d3:33:80:9d:54:9f:c1:66:f5:99:1c:80:52:
54:a8:9c:55:3e:d4:ea:85:59:68:b1:30:a1:30:fd:71:10:86:
67:7e:f6:38:91:89:ef:f8:96:fd:e0:8f:4f:57:bc:58:76:4f:
02:b0:7a:a6:64:ec:77:43:81:54:0e:d6:ed:b8:1e:86:f2:a9:
f1:c1:63:ab:d0:29:e0:31:cc:f6:ee:64:3b:04:d3:8b:2a:fa:
9f:46:d0:21:59:07:e4:f0:be:0b:7a:2c:a3:47:2e:c7:5f:62:
a1:cf:59:fe:45:c6:18:d5:cc:16:91:b0:a2:05:1d:16:f2:81:
a8:a6:e7:14:80:68:5b:a6:4c:9a:71:3c:3e:cb:68:c8:ba:53:
f6:80:e4:24:bb:eb:85:28:7b:74:b1:89:a7:75:14:79:94:ae:
d8:70:06:e1:2e:8f:3a:ee:a5:b7:4e:b7:5c:45:d7:7a:8b:fb:
a7:e2:d1:57:eb:d2:5a:48:4b:94:e4:84:ce:58:d1:4a:6a:9c:
ac:6b:8e:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:22 2024 by rpki-client on console-fra.rpki-client.org