Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/555AA714F86F11EEB475F433017001B1.roa
File: 555AA714F86F11EEB475F433017001B1.roa (raw, json)
Hash identifier: rtcA8HigqmIVN8H2Yjx4DF/XSw2SCj38ov+dvFjndzU=
Subject key identifier: 4A:73:48:02:F4:F8:97:81:E9:CF:3F:5D:D7:44:6F:B8:D5:E8:55:98
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8241
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/555AA714F86F11EEB475F433017001B1.roa
Signing time: Fri 12 Apr 2024 01:52:35 +0000
ROA not before: Fri 12 Apr 2024 01:52:32 +0000
ROA not after: Fri 24 May 2024 01:52:32 +0000
asID: 271916
IP address blocks: 45.194.48.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33345 (0x8241)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 12 01:52:32 2024 GMT
Not After : May 24 01:52:32 2024 GMT
Subject: CN=661893e3-dde6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:75:09:6f:4f:17:b8:01:21:9e:f9:70:d1:64:
33:3a:27:60:78:7b:d8:10:f7:a3:4e:34:0c:38:02:
91:b4:29:67:44:35:b3:b9:59:7b:c5:73:8e:a4:57:
52:85:61:d0:41:cf:06:1a:66:93:cf:a3:a1:c5:ff:
db:d2:28:e3:e2:e5:1f:5c:65:be:ac:5b:46:55:b7:
f5:45:95:8a:c6:e1:ea:c8:93:da:a5:d3:8a:68:22:
c0:6f:0d:1b:a2:9a:f9:9b:be:40:d6:f7:7d:c9:b1:
0b:d1:e2:07:16:35:c0:8f:bc:4e:02:82:1d:07:bf:
15:d2:f9:85:aa:5b:85:ec:bb:6e:fe:56:6d:d4:b1:
b6:04:6c:09:01:68:c9:3c:31:5e:12:ca:6a:90:1d:
0d:57:ec:c3:91:ce:08:58:c6:96:ca:28:4d:13:61:
a8:e3:26:b3:4c:50:db:e1:1a:de:a5:8b:de:30:bc:
7e:71:37:b2:f4:e6:a5:ec:a4:e1:7b:3f:a6:03:24:
a0:85:2d:ad:bc:5f:8c:bd:65:9f:61:e6:2c:b9:0e:
2b:09:65:1e:ec:63:2d:21:06:75:b6:1d:4b:9e:f1:
6a:70:09:e9:41:39:50:0a:82:5a:ab:01:e5:e6:73:
c3:9b:55:ed:f5:b5:f8:fd:0e:bd:f5:c1:6f:b6:db:
bf:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:73:48:02:F4:F8:97:81:E9:CF:3F:5D:D7:44:6F:B8:D5:E8:55:98
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/555AA714F86F11EEB475F433017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.48.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:3e:d5:e7:af:66:1e:e2:b1:cd:0a:9c:46:18:80:35:97:28:
c7:e6:d0:ec:61:69:e0:2a:e3:6b:b2:a7:49:03:87:56:27:6a:
6b:97:cf:62:dd:ae:cd:12:b2:b8:8e:16:fd:24:79:63:2e:97:
3a:6d:5a:19:8d:1c:e9:ca:6c:8e:ea:53:7a:64:c1:5f:d2:26:
14:77:26:9c:b5:5b:f3:a7:47:39:23:bb:db:c7:b3:5a:d8:45:
b9:fd:d2:54:de:0b:74:32:1e:41:90:4b:22:d0:71:ac:c2:ec:
ba:4b:e2:56:a4:e7:03:77:24:f9:c1:dc:d1:19:92:6a:1c:a2:
61:d2:95:9c:ab:fe:84:e2:c1:b2:8c:d9:08:3d:9e:89:98:a5:
90:ff:7d:00:49:67:db:e4:b7:d8:4b:85:e7:c2:5e:ff:d2:80:
36:ac:9a:5d:8a:36:17:b5:33:ed:f6:57:de:9e:75:3c:65:e0:
04:ae:f2:63:95:78:71:d4:25:be:fd:b9:83:42:9b:ae:cd:c8:
d6:ef:01:5a:b1:b0:f5:15:2d:6f:30:ab:5a:ad:ef:6c:9f:94:
63:3a:b4:8b:1b:2d:a5:66:b2:7e:a5:bb:62:a6:ce:9c:07:eb:
23:e7:ce:c8:42:2e:0c:7c:35:44:ca:01:24:23:02:f5:a3:b4:
6c:9d:e9:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:09 2024 by rpki-client on console-fra.rpki-client.org