Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/31AC0BDEA59211EF974300B5762E951A.roa
File: 31AC0BDEA59211EF974300B5762E951A.roa (raw, json)
Hash identifier: BaNFjazGB7Ka+vxwa5Atv9V165IWwNmWshq4UYm9EXo=
Subject key identifier: 57:B6:11:73:07:0F:08:E5:48:0D:A8:C0:21:CF:A7:BF:13:05:85:98
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D536
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/31AC0BDEA59211EF974300B5762E951A.roa
Signing time: Mon 18 Nov 2024 09:47:59 +0000
ROA not before: Mon 18 Nov 2024 09:47:55 +0000
ROA not after: Fri 29 Nov 2024 09:47:55 +0000
asID: 142062
IP address blocks: 45.204.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54582 (0xd536)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 18 09:47:55 2024 GMT
Not After : Nov 29 09:47:55 2024 GMT
Subject: CN=673b0d4f-bb06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:c6:7d:d6:20:05:d1:95:c2:28:ef:6d:65:ac:
ab:9f:07:5e:2e:26:99:09:ba:d8:b0:35:10:9c:d3:
2d:04:82:47:f8:7e:4a:37:29:0f:02:15:43:16:bc:
6a:2d:8e:ed:6e:4b:bd:57:16:1a:13:0e:51:ba:0a:
57:4a:d9:9e:17:c2:19:95:30:aa:79:b0:75:a4:a4:
4f:27:c3:19:14:2f:5f:0b:84:47:fd:32:3e:23:93:
be:08:40:b4:98:d3:ed:1d:7d:2a:a5:6a:25:53:a7:
1a:29:ff:1f:11:08:62:b2:6f:9b:cd:cf:83:6c:e5:
56:bf:25:de:56:33:d3:e9:b4:7d:fe:fc:56:64:52:
71:4e:49:bd:cd:20:2c:57:13:6c:04:84:ef:7e:76:
08:00:77:f9:5d:9d:a4:cb:86:ba:62:a3:cc:2d:77:
9d:c9:9b:2a:5a:1b:da:27:06:8c:3c:3c:fe:11:c7:
80:2a:61:8a:cb:04:cd:b3:17:f0:1c:5c:1f:7a:8a:
fe:72:51:1b:00:d3:8e:d4:a6:47:44:61:a4:c9:d8:
de:d9:aa:86:4c:ae:dd:ee:5c:55:2e:78:76:92:94:
00:82:0b:a4:bb:c5:6a:1a:c8:da:17:7d:fc:13:67:
9e:60:70:5a:dd:9b:95:3f:89:98:7e:81:e7:ee:a0:
e9:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:B6:11:73:07:0F:08:E5:48:0D:A8:C0:21:CF:A7:BF:13:05:85:98
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/31AC0BDEA59211EF974300B5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.32.0/19
Signature Algorithm: sha256WithRSAEncryption
6c:7b:9d:d4:01:5f:d9:be:06:ce:0c:51:8f:b5:37:d0:e0:11:
6d:3c:c5:d0:db:f9:71:fc:a7:a8:2b:eb:d2:d7:51:ac:2b:91:
8d:e8:80:e1:08:ea:00:05:1a:5a:0f:f3:02:46:8c:40:81:96:
2e:66:82:58:52:27:c9:c0:b6:f5:73:5f:93:d1:59:2d:46:28:
9b:5d:87:f0:00:d5:c9:04:e8:32:22:96:79:ba:66:35:10:d6:
14:9e:d4:6c:d7:62:a8:6c:25:7a:70:31:91:ee:0b:35:e6:11:
69:b1:c8:b3:c6:ee:25:37:00:b0:86:d6:ef:47:6a:6d:d8:3d:
03:00:21:c4:78:54:07:30:5f:7d:86:1e:ac:fc:c9:94:05:cb:
b2:6a:4d:ed:79:d2:03:b4:14:ac:9b:1d:a6:4c:04:18:ac:97:
d0:57:12:b9:cc:63:2a:50:0b:59:23:24:95:c7:68:0f:95:15:
7b:5a:7e:ef:37:5d:37:3f:3e:de:e1:63:d6:68:17:2b:91:9e:
0e:6a:6a:5c:dc:c8:1d:cc:21:dc:b7:d3:01:91:73:ef:9e:fa:
6c:01:b4:dc:2d:fe:58:e9:e3:7c:ff:db:ab:87:5a:5f:29:36:
40:b4:34:9d:b3:58:07:91:95:74:c0:ed:39:6f:5b:92:18:65:
43:41:4f:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:23 2024 by rpki-client on console-fra.rpki-client.org