Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/48FB8576A4CA11EFBB3B994D762E951A.roa
File: 48FB8576A4CA11EFBB3B994D762E951A.roa (raw, json)
Hash identifier: dGzBiKcPYgFw/NJZKM/IDirdssYe2/qXhw4nA1IebpQ=
Subject key identifier: D1:85:07:66:14:E8:67:20:C6:F2:61:E0:D1:3B:49:AA:52:26:06:A6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D4BB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/48FB8576A4CA11EFBB3B994D762E951A.roa
Signing time: Sun 17 Nov 2024 09:56:59 +0000
ROA not before: Sun 17 Nov 2024 09:56:55 +0000
ROA not after: Mon 25 Nov 2024 09:56:55 +0000
asID: 9009
IP address blocks: 45.192.130.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54459 (0xd4bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 09:56:55 2024 GMT
Not After : Nov 25 09:56:55 2024 GMT
Subject: CN=6739bdeb-c675
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fb:72:e1:49:f4:ae:95:4f:ae:bd:e5:43:47:
f3:fe:5c:c1:18:3d:98:44:5a:55:26:2f:80:ba:08:
1a:47:54:c4:0c:3a:31:b9:9e:5f:48:c3:83:04:7e:
ce:ec:b4:54:dd:86:2c:11:36:b6:7f:75:c6:f8:7c:
0a:3b:bd:8e:69:91:01:b1:ee:7b:56:dc:1e:38:93:
a2:1b:66:a9:10:28:a6:99:d2:c0:9f:08:d8:de:8e:
7c:5d:c5:88:e9:66:eb:8d:4d:dc:01:59:86:1d:f2:
bd:0f:18:1e:00:e4:5f:2e:61:ab:a8:16:6c:83:5a:
15:a7:ec:9f:68:40:33:59:67:f0:08:93:1a:5e:8a:
de:4c:22:e4:32:d9:34:ea:b4:eb:f3:bc:de:06:2b:
6e:d2:3c:bf:ef:50:a4:3a:ef:71:a9:3b:71:62:64:
64:ba:56:91:5c:c8:c4:8d:5a:bc:ed:0e:d6:2a:5a:
4e:89:99:a8:40:36:6a:df:24:2f:54:0e:bd:86:4e:
00:2d:32:45:94:b4:1b:08:57:de:bd:fa:c1:b3:d4:
ae:9b:5b:fd:c1:63:7f:45:f8:21:af:91:3c:6e:73:
a1:f3:5c:1e:85:57:04:a1:19:44:3b:97:ed:6a:92:
0c:54:34:94:74:9f:6c:e1:32:90:ff:bc:84:f3:11:
92:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:85:07:66:14:E8:67:20:C6:F2:61:E0:D1:3B:49:AA:52:26:06:A6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/48FB8576A4CA11EFBB3B994D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.130.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:91:9f:5d:a6:e8:50:9c:94:07:d8:02:51:f8:70:f4:94:bc:
c6:be:f1:84:bf:01:66:35:88:fa:6e:22:16:f2:ab:e5:fd:66:
5b:cf:24:ca:85:6c:2c:8b:5e:81:25:ed:a2:23:96:26:3f:f3:
5e:d2:db:bd:41:24:c2:a5:d4:aa:05:ae:1a:12:15:8d:39:62:
01:2d:59:e6:9c:5b:f8:76:b2:d8:ab:ba:ed:06:f8:05:bd:d4:
52:c1:9d:ad:ab:3b:92:6a:c1:5d:eb:9f:d9:a1:94:90:ea:9f:
be:93:f5:db:12:14:64:db:42:e7:cd:ca:7c:2f:30:2c:78:68:
dd:34:07:42:c5:9a:72:1d:a6:fb:4b:0a:bf:40:d7:85:fb:50:
b2:95:20:66:f8:b1:33:03:94:98:a8:90:9a:b1:ff:50:8b:86:
d0:6b:0e:58:cb:ea:a8:40:af:d7:d4:80:05:b4:0a:14:cc:32:
cd:6c:09:c3:c4:58:24:bc:c4:50:46:a4:82:ff:d1:47:de:10:
7f:05:1e:5a:84:ba:75:ef:d3:35:93:3d:89:a3:ad:40:7f:b7:
6d:6c:a6:81:5e:79:2b:1f:9e:ba:13:96:66:40:7a:47:c5:de:
90:3e:a1:c6:59:39:68:c5:2c:25:4f:4f:4d:a2:5f:26:e5:6d:
7b:5b:00:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:27 2024 by rpki-client on console-fra.rpki-client.org