Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52BD8D90A64E11EF85108251762E951A.roa
File: 52BD8D90A64E11EF85108251762E951A.roa (raw, json)
Hash identifier: r16egVYzpR17C359TnH6Zp/jm+X8JD+B0HZmk3puVTc=
Subject key identifier: 78:FE:C9:48:19:00:22:44:C8:13:61:D9:9B:A8:60:F3:CB:21:0B:8F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D568
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52BD8D90A64E11EF85108251762E951A.roa
Signing time: Tue 19 Nov 2024 08:14:40 +0000
ROA not before: Tue 19 Nov 2024 08:14:36 +0000
ROA not after: Sun 15 Dec 2024 08:14:36 +0000
asID: 215208
IP address blocks: 45.202.32.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54632 (0xd568)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 19 08:14:36 2024 GMT
Not After : Dec 15 08:14:36 2024 GMT
Subject: CN=673c48f0-2f3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:29:62:d9:2b:e1:c1:fe:a2:87:59:6c:2f:76:
bc:ac:cd:02:86:3a:97:7d:99:31:1e:f1:ac:00:bf:
c3:2d:79:9e:ee:93:4b:63:b7:3c:8b:98:18:5c:93:
00:60:22:07:ae:d3:dc:93:dc:53:f4:c2:f0:c6:3c:
5e:82:af:68:9b:2b:62:6b:c9:70:f8:e3:7a:ea:9f:
e9:f6:88:b4:05:8c:4a:2c:cd:e2:ee:eb:a4:b6:54:
2b:dd:2e:12:c3:29:35:a4:27:85:46:24:76:b1:d6:
a6:8b:7f:b3:e7:28:c9:79:dc:2c:bf:55:5c:9c:f3:
ad:4b:d8:10:16:b1:90:8d:42:e9:aa:f6:05:f0:03:
fb:f5:95:16:4a:db:2e:ec:49:9f:7d:db:8c:fc:2b:
f6:0a:87:6b:42:b5:b3:e9:94:c2:ea:84:9f:4e:8b:
54:1e:e9:00:c2:11:af:14:ff:49:75:72:1c:a4:f3:
ab:7d:9e:d5:c3:61:eb:b6:46:1b:2b:c7:f3:40:ae:
85:ac:6b:ab:d3:1a:c2:b2:a7:82:85:b7:ed:62:96:
71:9b:7a:d8:f8:ed:fe:ea:91:c6:7b:96:40:ec:e0:
e4:2f:06:c4:3c:1e:09:97:c2:c8:63:39:17:a8:13:
d1:ef:73:01:b5:34:00:3f:ec:a5:09:b0:da:f8:a9:
d8:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:FE:C9:48:19:00:22:44:C8:13:61:D9:9B:A8:60:F3:CB:21:0B:8F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52BD8D90A64E11EF85108251762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.32.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:c8:68:2c:8d:1d:29:3c:af:d5:a2:b1:2d:86:f0:89:f8:44:
e6:36:26:2b:49:7e:a6:b2:69:52:5f:b8:09:c2:a6:2f:43:4c:
2a:aa:3a:37:f0:c4:53:57:18:9b:36:47:1f:2a:49:94:17:54:
39:ed:fd:16:0c:1d:df:c2:06:b1:d7:b1:71:04:f3:93:fd:cc:
93:27:15:6c:05:79:03:be:d1:e5:91:d8:4c:fe:f5:17:2c:a0:
a4:bc:80:17:25:0c:e4:2c:03:93:a0:49:33:f7:fd:bc:d0:c0:
ea:79:21:c3:ca:1a:64:20:6b:22:37:81:07:91:69:91:9e:a7:
b6:11:34:13:f9:9b:0a:21:c0:f1:d3:10:bb:e9:c6:7f:91:75:
b4:c8:b7:73:37:3c:70:7f:ee:b1:54:e6:84:fc:8d:d7:0e:05:
99:ec:87:01:f6:87:b1:ab:7d:9f:7b:df:46:3d:1a:b6:2a:3a:
df:05:94:9d:67:94:f3:65:b1:a6:9a:dc:c5:52:3c:ba:d9:12:
56:fe:86:73:66:df:b5:18:14:8e:3f:73:60:b5:6c:de:ee:73:
66:36:c5:aa:60:18:2c:ee:ec:eb:ff:9d:00:bd:bc:1a:6a:a3:
3d:bd:2a:43:a5:b3:c6:ef:b7:6d:91:cc:e1:91:07:58:ed:67:
67:fd:e2:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:29 2024 by rpki-client on console-fra.rpki-client.org