Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2EEB8BF08BA111EF824B5895762E951A.roa
File: 2EEB8BF08BA111EF824B5895762E951A.roa (raw, json)
Hash identifier: Wx4kq2J3Jef1oGKd93ZEZbc13AkxhGV5lcU8ulsUWsI=
Subject key identifier: 81:6E:82:D2:BC:6F:63:5B:14:F5:37:24:7D:4A:CA:22:25:29:E7:6F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C558
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2EEB8BF08BA111EF824B5895762E951A.roa
Signing time: Wed 16 Oct 2024 09:29:47 +0000
ROA not before: Wed 16 Oct 2024 09:29:43 +0000
ROA not after: Wed 27 Nov 2024 09:29:43 +0000
asID: 20473
IP address blocks: 45.194.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50520 (0xc558)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 16 09:29:43 2024 GMT
Not After : Nov 27 09:29:43 2024 GMT
Subject: CN=670f878b-2dfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:79:cc:f2:fc:fa:01:ab:d7:49:3f:5b:5b:33:
12:43:4b:0b:ed:14:33:ad:6b:6d:2e:5b:c6:a2:7b:
ae:7d:a3:93:18:cd:25:37:bf:3d:0d:00:97:f8:82:
3a:e8:54:2c:7f:e8:a4:c6:87:78:11:93:2a:38:96:
e1:d1:e1:83:56:25:ec:34:86:38:aa:17:86:a8:03:
78:14:d7:47:1a:63:2a:46:b9:19:98:9f:ec:c9:bd:
81:55:30:fd:97:c0:70:a7:64:55:33:00:f7:aa:1a:
61:ac:bf:61:7a:f5:d9:49:da:c0:46:fa:65:30:1c:
f0:9d:b6:92:12:35:3c:ad:ad:87:da:6e:78:88:72:
9a:90:71:e2:52:b4:bb:ee:b6:1d:47:7a:11:85:9c:
da:65:84:e5:fd:6d:30:ad:2b:d9:50:c9:72:2b:91:
d9:68:ed:1b:76:ac:bd:d2:ad:6d:22:3a:6f:bb:2d:
a1:ac:8e:ae:ea:cc:bd:92:f1:b8:bb:90:e8:aa:40:
d7:2a:9c:8b:a8:39:6a:e8:1e:70:6f:e7:44:ae:bf:
e5:c8:ab:c8:51:55:9a:dd:a7:af:78:9d:ac:d9:23:
63:58:59:b2:d4:94:3a:f7:88:6f:e7:7f:5e:48:41:
5e:df:bc:6a:d1:b6:c4:60:cd:49:b0:28:04:72:95:
95:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:6E:82:D2:BC:6F:63:5B:14:F5:37:24:7D:4A:CA:22:25:29:E7:6F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2EEB8BF08BA111EF824B5895762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.119.0/24
Signature Algorithm: sha256WithRSAEncryption
53:c6:16:8c:16:0d:0c:07:48:92:4d:56:15:6e:91:b3:db:7e:
9a:6c:07:39:98:74:f9:4f:45:70:89:5c:98:ad:71:93:db:8b:
2a:02:12:bf:a4:45:12:56:c1:de:ee:0d:99:28:22:dd:dd:d2:
3e:03:15:95:18:75:66:04:5c:95:d2:75:38:b2:4a:b6:1b:da:
d0:02:a3:1a:44:36:23:55:f2:ab:d2:d9:22:ff:b3:5b:1d:8b:
76:32:31:3c:6a:38:67:43:44:07:a0:ef:37:28:96:b1:c1:2f:
da:a9:44:73:fb:12:3d:47:db:d2:bc:68:de:94:1d:4d:2f:9e:
fb:c2:da:88:e7:fe:f7:dd:24:fb:0b:ff:a0:44:9a:1b:c4:2d:
56:6a:46:99:dd:48:0c:e9:c8:04:28:1f:aa:74:6d:3c:93:fe:
bf:90:43:e9:9d:be:2b:4d:7b:08:09:9e:91:17:a0:56:65:4a:
e3:81:04:da:de:98:92:b8:3e:a9:75:cb:ff:2d:94:63:69:d6:
33:8e:b7:d3:e0:6e:ae:ab:51:36:bb:f3:d5:ef:67:39:f9:0b:
4c:b0:20:08:8a:ca:7c:c8:5e:e8:b7:83:be:09:af:f2:9e:53:
9b:f4:46:3c:fc:80:32:aa:e2:d6:4b:2f:d4:2c:12:a5:25:d2:
b9:0c:67:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:23 2024 by rpki-client on console-fra.rpki-client.org