Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/360DC5C2A0E311EFA1D68C8C762E951A.roa
File: 360DC5C2A0E311EFA1D68C8C762E951A.roa (raw, json)
Hash identifier: vavHemxWzsdjV1tFAMYe98iBXHBxCe2PQi7dX77O+KY=
Subject key identifier: A9:8E:49:B0:7A:CA:68:09:1E:D5:46:19:B3:D8:69:1A:1D:1C:DE:D4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D1A1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/360DC5C2A0E311EFA1D68C8C762E951A.roa
Signing time: Tue 12 Nov 2024 10:45:20 +0000
ROA not before: Tue 12 Nov 2024 10:45:16 +0000
ROA not after: Fri 22 Nov 2024 10:45:16 +0000
asID: 39600
IP address blocks: 45.195.212.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 22 Nov 2024 10:45:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53665 (0xd1a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 12 10:45:16 2024 GMT
Not After : Nov 22 10:45:16 2024 GMT
Subject: CN=673331c0-5312
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7f:3a:66:ed:76:2b:66:97:7c:4c:96:99:86:
35:e6:ac:df:8f:ae:74:7c:16:05:f6:d4:e6:0b:c3:
ad:3f:59:c1:81:98:e0:17:57:6c:9c:66:6a:58:40:
6e:33:23:52:8d:f6:90:18:10:00:1c:fd:bf:1c:3c:
e8:72:40:d1:35:34:8e:be:76:b4:32:ca:9b:57:fd:
cf:39:90:f3:dc:77:42:35:71:bf:34:8b:4f:77:eb:
56:f7:f5:2f:35:62:18:bc:81:5e:70:c6:a6:97:18:
51:71:3f:5d:a2:1b:2c:eb:77:e0:fb:4a:11:41:a8:
14:94:0a:5f:5b:06:40:31:bb:f5:4f:d1:36:48:f5:
39:e9:1a:0b:24:d0:eb:c2:89:81:8c:96:4c:ed:f5:
d6:34:9e:35:c1:b2:b5:28:95:0f:64:8e:46:ef:0c:
ee:a3:1f:03:9d:85:6e:44:01:7a:07:6d:32:91:d1:
2d:9b:26:6b:52:96:80:92:52:ca:26:64:36:7a:98:
03:70:a9:79:16:05:b3:c0:f4:f8:10:29:85:6d:dc:
e9:dc:6e:cf:50:ad:aa:92:24:1a:70:26:80:49:29:
dc:9f:1f:b4:a9:8e:0b:16:dc:da:aa:e1:08:ae:cf:
5b:7c:88:59:19:3a:1a:a8:02:a6:3f:61:41:48:ea:
08:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:8E:49:B0:7A:CA:68:09:1E:D5:46:19:B3:D8:69:1A:1D:1C:DE:D4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/360DC5C2A0E311EFA1D68C8C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.212.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:4a:ee:ae:58:1d:aa:10:31:54:7a:06:76:90:a7:21:1f:6e:
ea:24:03:41:24:7a:eb:d0:71:88:e9:17:a0:15:5d:c9:05:8e:
62:bd:cb:e9:9e:4e:2c:bb:08:00:c4:c7:dd:ff:f5:03:6d:38:
3a:48:08:82:68:d1:f8:c6:aa:49:5f:be:71:b3:62:59:42:23:
0c:54:a5:8f:17:1f:5b:63:be:e2:ac:c3:e8:94:0a:6c:80:5e:
e2:3d:7a:54:ec:fe:49:16:a3:00:ed:2c:88:3f:24:cb:f1:a1:
c2:e7:88:9d:23:1f:3d:30:df:57:01:70:b6:93:04:6d:12:85:
5e:91:23:61:13:20:c6:ca:c7:c4:c3:bf:f6:c4:47:17:2e:42:
bd:15:8f:ea:8f:50:b2:bc:2d:9c:3d:ae:f6:f9:13:68:e9:3c:
12:67:b8:e5:63:c9:32:d3:aa:b8:62:e1:4b:44:33:f8:4e:77:
39:77:e4:76:74:5b:74:9c:43:cc:06:bc:36:72:c3:87:2c:0a:
af:b1:3d:00:97:b6:9e:c6:e6:81:5a:54:80:5f:72:e4:ba:35:
ab:73:11:18:55:b4:54:21:97:b6:c5:2b:1f:dd:81:81:e2:e9:
63:1c:05:07:d6:93:17:ac:f6:92:70:4d:8d:10:5f:ae:8b:7a:
e7:5a:39:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:25 2024 by rpki-client on console-ams.rpki-client.org