Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/532C4D4CA64F11EF9BC40758762E951A.roa
File: 532C4D4CA64F11EF9BC40758762E951A.roa (raw, json)
Hash identifier: lzYF/8XNCTP8M9lNbpBymbJgkKTOXvebnlDl/8k0mGM=
Subject key identifier: 0E:AB:80:B8:99:29:5A:70:27:BD:E3:39:2B:45:4A:2A:01:92:2A:A8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D574
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/532C4D4CA64F11EF9BC40758762E951A.roa
Signing time: Tue 19 Nov 2024 08:21:50 +0000
ROA not before: Tue 19 Nov 2024 08:21:46 +0000
ROA not after: Wed 25 Dec 2024 08:21:46 +0000
asID: 273135
IP address blocks: 45.195.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54644 (0xd574)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 19 08:21:46 2024 GMT
Not After : Dec 25 08:21:46 2024 GMT
Subject: CN=673c4a9e-f4e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:39:9c:5d:ce:83:fd:49:e2:a4:d2:4d:25:ea:
7b:cc:e8:57:1c:47:d8:a8:97:4d:d4:5b:38:58:76:
ea:48:c8:c6:4a:fa:0c:04:5a:17:ec:7a:eb:da:d9:
a7:df:72:2f:07:d9:b7:18:33:3a:8f:bd:dd:1d:31:
5a:ca:45:2a:da:7b:2c:7f:6d:75:d2:8b:4e:f6:03:
ca:6f:36:17:f2:17:f4:b3:3e:71:6f:b5:3d:d9:b9:
99:1d:29:a6:8c:f4:76:f5:43:76:7a:7f:b0:77:7d:
31:08:5c:4c:19:82:e9:0e:9f:ef:a7:b6:ad:48:f0:
fa:8e:a2:72:64:08:56:57:85:2a:7c:70:2c:02:77:
4d:d4:c6:55:bb:6b:48:c4:e0:b4:37:20:79:73:ff:
de:98:9b:a8:29:97:2f:ac:a0:14:a3:55:8a:c7:79:
aa:78:fe:85:39:47:13:c4:77:78:32:dc:d7:56:f9:
c8:62:75:b2:4e:aa:d9:25:b2:36:95:dd:24:a4:59:
27:09:7f:88:2f:c4:fe:62:ad:8d:0f:a2:b5:14:c6:
01:07:f8:c3:c0:93:90:89:39:dd:84:8c:4d:0e:af:
9c:66:7b:bb:0a:4b:5d:04:44:4b:1f:12:db:59:c3:
15:0d:ea:4d:bd:89:ea:51:d9:cc:4a:a9:a9:ad:c3:
67:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:AB:80:B8:99:29:5A:70:27:BD:E3:39:2B:45:4A:2A:01:92:2A:A8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/532C4D4CA64F11EF9BC40758762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.15.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:be:80:8e:87:24:91:4f:91:15:a0:99:a6:b9:67:4a:f4:53:
58:19:77:9c:c2:14:24:be:07:af:22:89:2a:c5:96:3d:8e:4f:
9b:6b:42:ef:91:47:49:b3:8a:21:f9:3f:ea:a7:b8:2f:1f:0c:
c8:dd:69:17:af:ab:30:23:2f:02:59:57:bd:cd:26:91:fa:3f:
1d:60:e4:5d:dd:c3:e6:4b:b0:55:b5:09:ba:61:f6:0c:ef:12:
30:2d:b0:d2:0f:0b:13:7e:9c:a6:52:89:7d:4d:7b:13:c5:d1:
a6:5b:18:1a:24:2d:e2:a4:fe:f4:1e:62:f0:9c:d7:44:1b:3c:
41:0a:8c:a6:47:46:bf:4f:b2:ee:35:b0:e6:50:d9:69:35:4c:
17:ab:d4:d3:7f:1b:cc:c8:7a:c1:97:a2:78:ca:a7:04:d9:64:
aa:af:81:80:27:01:b4:de:2e:84:2c:4d:4c:05:48:fd:d5:17:
4e:e3:5c:c0:8b:81:b2:2e:d3:02:2d:34:40:82:f7:9d:fd:88:
d1:8c:a3:84:38:42:e0:96:b1:af:12:e6:94:7f:f1:79:90:78:
49:60:68:37:ed:a8:e9:77:d6:99:ef:17:92:8f:92:e1:ee:39:
f9:e0:a2:8e:40:99:67:82:47:aa:ae:92:45:c9:04:33:eb:0d:
2c:68:df:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:30 2024 by rpki-client on console-ams.rpki-client.org