Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/49FCE25CA44911EF8D76CE97762E951A.roa
File: 49FCE25CA44911EF8D76CE97762E951A.roa (raw, json)
Hash identifier: K+HY05dFtwk/0hTBkGqPF3GX3oXlQ4Z5VJ8Hqnby4Ag=
Subject key identifier: 63:0D:E4:1F:0D:45:7F:E0:8E:66:07:89:0A:CD:9F:20:EC:12:6B:48
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D396
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/49FCE25CA44911EF8D76CE97762E951A.roa
Signing time: Sat 16 Nov 2024 18:33:35 +0000
ROA not before: Sat 16 Nov 2024 18:33:32 +0000
ROA not after: Mon 25 Nov 2024 18:33:32 +0000
asID: 9009
IP address blocks: 45.192.145.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54166 (0xd396)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 16 18:33:32 2024 GMT
Not After : Nov 25 18:33:32 2024 GMT
Subject: CN=6738e57f-f197
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6b:57:bf:3c:cc:86:04:58:5f:bc:64:ca:3c:
5e:16:10:aa:f0:f9:25:e3:67:24:b8:ce:f6:24:49:
62:26:b2:60:2f:4f:04:e9:04:8c:9c:b0:c3:6f:71:
75:e4:bf:78:71:f3:ed:66:94:7b:2a:bd:dd:42:2f:
7b:40:2b:12:1f:f7:3d:83:6d:25:fc:b4:55:46:84:
91:ba:a9:87:9f:7e:a6:6e:51:55:11:b3:1b:2b:90:
e7:09:99:c3:97:4d:49:87:2f:f1:37:e1:ff:c2:54:
94:79:5c:25:0b:05:5f:31:ac:72:9d:f3:12:83:94:
5d:b4:12:11:8e:df:b5:22:d6:0b:9e:3e:9c:7e:3d:
fd:7c:b3:12:36:6c:60:ad:44:05:d5:61:1c:30:ee:
51:01:0c:4e:78:2d:45:8b:02:1a:ff:c0:1b:01:e9:
8c:30:f5:4c:67:7c:ef:b2:bc:51:23:40:27:d8:94:
56:b3:84:65:15:1a:7e:21:fa:13:0e:9f:2b:40:38:
7a:23:88:c6:63:4f:53:59:63:35:e0:12:6d:fb:c0:
be:31:c9:73:9c:4b:fa:48:9d:6c:91:cb:22:f7:05:
c4:71:79:bf:d9:4b:ec:51:cd:23:50:bd:92:39:09:
8a:7c:75:47:1e:69:e0:52:d3:05:a8:e4:67:24:ef:
63:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:0D:E4:1F:0D:45:7F:E0:8E:66:07:89:0A:CD:9F:20:EC:12:6B:48
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/49FCE25CA44911EF8D76CE97762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.145.0/24
Signature Algorithm: sha256WithRSAEncryption
90:50:6f:2d:0c:8e:8c:03:38:06:7e:eb:9f:48:d5:b0:c9:65:
63:6d:a0:e8:26:54:4b:b9:d4:f1:93:31:5b:d2:66:c0:33:f0:
62:1a:b2:c1:be:be:92:a1:83:a5:0e:14:7e:89:c9:44:ac:ee:
56:4a:71:6d:0d:48:42:93:94:4c:4e:22:ef:e8:73:bc:a6:4e:
af:6f:89:b2:8a:71:1f:9e:b1:fc:4b:fb:78:9d:6a:9c:fa:20:
0f:18:e1:45:c8:fb:ee:37:6f:98:47:85:f3:17:55:a4:15:31:
3f:fd:44:ff:4b:0b:2f:9b:a7:33:a1:1d:42:83:dc:82:81:c7:
1e:d3:4a:cc:94:c4:4b:02:14:16:9c:6d:ed:5b:9a:5e:89:a9:
9a:fd:1c:64:66:b7:8d:66:9d:74:a8:66:1a:7b:21:e1:4a:d2:
93:4d:3e:08:b3:fd:80:aa:7c:94:de:6f:df:1d:b2:e0:31:5e:
f4:f0:6e:eb:1d:41:13:1b:6c:0a:68:8b:9c:05:85:25:96:ca:
2b:09:cc:be:e2:e6:09:67:97:d6:c5:88:2d:6a:58:b8:45:e8:
94:d1:32:b7:f5:18:38:77:0a:17:e3:77:80:06:2f:f8:ae:68:
cd:ac:68:2d:65:2e:11:77:17:94:09:c7:f2:06:7c:92:35:ad:
fe:5e:58:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:29 2024 by rpki-client on console-ams.rpki-client.org