Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/366B7D8C9F7D11EF989183BC762E951A.roa
File: 366B7D8C9F7D11EF989183BC762E951A.roa (raw, json)
Hash identifier: RcLoVXflVE1V8rVJMVZNR2aA1nkmspfnKuG+G0BwwyQ=
Subject key identifier: 22:DF:72:BF:DE:96:69:F2:60:74:70:FF:18:1B:47:FD:5E:2D:0D:B2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D0FA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/366B7D8C9F7D11EF989183BC762E951A.roa
Signing time: Sun 10 Nov 2024 16:02:40 +0000
ROA not before: Sun 10 Nov 2024 16:02:37 +0000
ROA not after: Tue 13 May 2025 16:02:37 +0000
asID: 26617
IP address blocks: 45.195.146.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53498 (0xd0fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 10 16:02:37 2024 GMT
Not After : May 13 16:02:37 2025 GMT
Subject: CN=6730d920-df46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:22:c7:f4:e4:ad:33:b1:3a:ee:7d:ce:79:55:
db:3b:b0:f0:65:32:af:b3:72:c9:f5:66:4e:2e:65:
41:c4:d8:78:ab:88:12:97:c1:58:5b:e3:79:bf:b3:
2a:4b:96:50:ab:c3:42:5f:8c:4b:09:b5:02:aa:1c:
fb:d3:2f:71:aa:00:5c:1f:9a:9e:0e:45:27:80:0a:
3a:28:50:c9:3f:33:22:da:cb:26:89:78:be:3c:f2:
8b:05:9b:7f:b9:11:db:b1:00:e6:0c:40:33:4f:ec:
e1:51:f7:11:2a:b8:69:b9:e2:33:1a:6a:e5:e3:85:
98:72:5e:05:1a:c1:d8:dc:a2:23:2a:ce:a3:e5:02:
3e:5e:fc:7c:bd:5e:ca:5b:43:70:6d:a6:c1:17:34:
f3:a4:61:7f:79:9d:ef:9e:cc:95:03:a0:cd:fe:1a:
c0:c6:9c:d6:21:5c:78:79:81:b6:90:3b:d0:71:78:
4f:e4:02:63:c0:33:c4:d6:e6:02:1b:36:0a:19:53:
02:9f:f0:22:a7:35:c4:b7:93:f9:cf:1e:2b:a2:04:
0b:e1:ba:7d:c0:7b:e8:32:48:c6:78:98:5c:4d:f5:
e3:59:73:cd:7e:dc:dd:7d:72:70:fa:85:4a:b0:ef:
58:3f:f2:78:1f:76:2f:97:b6:41:84:88:66:6f:b9:
7a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:DF:72:BF:DE:96:69:F2:60:74:70:FF:18:1B:47:FD:5E:2D:0D:B2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/366B7D8C9F7D11EF989183BC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.146.0/24
Signature Algorithm: sha256WithRSAEncryption
95:b7:b9:4d:0b:b1:b6:9a:41:a3:fc:e9:4f:42:a9:dc:87:e2:
77:81:0b:22:04:03:a4:34:a1:a7:7d:d6:cc:03:09:10:c8:36:
3e:eb:91:de:d2:06:d8:aa:41:79:dc:9e:43:32:17:2d:fe:d8:
86:0b:32:af:91:c3:0b:23:54:93:e7:45:13:0c:5d:c7:b0:93:
18:5c:c2:63:d7:05:00:23:aa:5d:e9:0b:c0:05:ff:07:4b:62:
3a:42:68:8b:eb:42:92:fd:39:82:48:08:4a:2e:9b:02:0f:77:
41:91:77:1b:c1:ea:92:31:c1:09:20:bc:a9:6c:ab:9d:34:8d:
45:d0:a6:35:6e:98:72:91:30:c1:0e:72:15:ed:10:b4:57:9c:
cd:05:d2:4e:17:75:18:95:52:09:8f:d0:d4:2e:3c:38:df:71:
a9:26:8e:b6:a9:41:3d:23:4b:54:82:1a:dc:a6:e8:6d:7a:8e:
63:35:3c:98:56:5c:c8:33:05:de:dd:e1:c1:5c:cf:54:38:5e:
e5:e1:b6:77:50:74:15:ad:1c:a6:48:19:c9:0c:6f:32:80:8d:
48:3d:4c:11:0d:e3:69:8c:0e:29:69:f1:2c:65:9f:f1:21:11:
c3:ac:32:01:81:92:95:81:97:6e:ed:91:06:12:bf:db:d8:4d:
e4:ee:4d:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:25 2024 by rpki-client on console-ams.rpki-client.org