Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3098DC9EA32C11EF9E820DA5762E951A.roa
File: 3098DC9EA32C11EF9E820DA5762E951A.roa (raw, json)
Hash identifier: pJ306NuhhfYBVldJJxV5Z9ItahRXOBd28amiYtWHUqQ=
Subject key identifier: 73:5F:56:95:40:33:99:21:E8:A7:7B:A4:10:0B:20:37:22:FE:4B:02
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D2D7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3098DC9EA32C11EF9E820DA5762E951A.roa
Signing time: Fri 15 Nov 2024 08:32:46 +0000
ROA not before: Fri 15 Nov 2024 08:32:42 +0000
ROA not after: Tue 10 Dec 2024 08:32:42 +0000
asID: 142062
IP address blocks: 45.192.0.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53975 (0xd2d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 15 08:32:42 2024 GMT
Not After : Dec 10 08:32:42 2024 GMT
Subject: CN=6737072e-492e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a6:33:d2:7f:64:85:1d:81:6f:4a:80:47:0c:
3b:20:5a:08:79:9e:a3:4c:16:5c:3c:b6:da:1b:f9:
2a:80:85:28:8d:31:b5:bb:50:14:ea:6d:2d:d2:da:
59:80:f8:00:27:4e:9b:fa:fa:d6:54:55:dd:ed:07:
f5:53:6b:80:c1:bc:87:a5:d4:2d:b1:e8:22:e7:af:
b9:54:bd:c8:e2:a2:9a:7e:f5:28:2b:fc:d2:dc:5f:
84:77:a7:8a:e1:9d:82:7c:0b:48:fa:e3:14:12:7e:
ed:75:bb:8b:b6:a7:e1:bd:eb:b2:84:b2:91:a3:2b:
76:02:ac:43:a1:d2:73:1e:18:9a:d6:77:c7:fc:15:
27:59:68:53:5c:e4:fb:5e:6a:6f:56:e1:60:46:fa:
9a:cf:ec:16:7b:b0:e4:8a:9f:67:6c:13:4d:fc:df:
53:5e:e0:b7:00:f3:e2:5b:e0:1c:3e:ea:bb:95:8c:
da:b8:b3:1d:8e:bf:3f:45:7e:47:98:93:f6:1c:4f:
dc:7d:e1:aa:19:9e:ac:66:9f:9f:cd:8e:39:b3:72:
54:bf:29:a1:24:43:62:02:c3:42:f5:f9:51:7f:53:
d1:e3:15:10:74:25:10:8d:04:8c:b5:87:0a:ca:ae:
f2:17:4a:1f:a6:88:0d:2c:27:9c:40:37:dd:91:7d:
56:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:5F:56:95:40:33:99:21:E8:A7:7B:A4:10:0B:20:37:22:FE:4B:02
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3098DC9EA32C11EF9E820DA5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.0.0/19
Signature Algorithm: sha256WithRSAEncryption
9e:d5:82:e3:f8:e3:8e:b3:9e:43:7e:85:54:39:9b:6e:f6:6e:
e3:7a:e0:24:c0:bb:0d:42:45:63:bd:01:b7:ab:fe:76:37:05:
d0:2a:b6:17:30:06:ca:10:72:66:9c:88:ba:cf:19:b3:ee:3e:
5a:40:d4:e0:fb:32:58:6f:90:61:1a:6e:78:27:6f:9b:87:86:
89:55:73:52:00:95:d2:c7:2c:9c:e7:93:15:15:da:1f:9c:3c:
36:61:5e:d7:5f:b5:97:52:1c:ba:bc:9b:b3:d9:7f:13:40:4e:
e3:c5:45:4b:d7:05:6e:a2:95:0a:e7:04:a7:4b:20:91:aa:57:
f0:4d:47:15:46:56:1e:dc:e7:87:a6:9e:7a:21:32:6e:6d:06:
04:42:bc:ff:0c:35:c9:27:54:81:7f:c9:47:fb:7e:22:78:94:
84:93:87:42:bd:05:cc:50:60:9a:8f:da:b4:32:a3:93:a2:67:
e4:d9:dd:5f:85:e5:28:fc:fa:0d:04:d1:0a:28:46:a1:40:c1:
ab:da:14:f7:0f:76:71:d6:a8:65:1b:16:d0:bb:93:0d:31:ce:
77:a7:57:d0:1b:60:ae:cf:e3:22:c0:12:fd:b5:10:db:7c:df:
f1:e6:db:8a:a2:69:e2:0f:f6:1e:13:62:9e:ab:13:9c:f3:98:
5b:e7:f5:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:23 2024 by rpki-client on console-fra.rpki-client.org