Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/555F457487C811EFB95B6342762E951A.roa
File: 555F457487C811EFB95B6342762E951A.roa (raw, json)
Hash identifier: ccpsvkwHzFnb5YWOUFoQcofQkhcnxDvEHeeIn1A8Zb0=
Subject key identifier: 57:85:8A:A1:9C:26:73:25:B5:03:96:A7:0A:0F:E3:DD:06:C6:3D:3E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C3D3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/555F457487C811EFB95B6342762E951A.roa
Signing time: Fri 11 Oct 2024 11:59:57 +0000
ROA not before: Fri 11 Oct 2024 11:59:53 +0000
ROA not after: Tue 16 Sep 2025 11:59:53 +0000
asID: 136907
IP address blocks: 45.203.40.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50131 (0xc3d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 11 11:59:53 2024 GMT
Not After : Sep 16 11:59:53 2025 GMT
Subject: CN=6709133d-db99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:7d:b2:f9:25:b0:9d:6a:0c:ee:0b:87:0f:3d:
05:64:9f:72:c4:b0:6d:41:2d:07:ed:63:fe:75:e2:
69:a9:10:1f:4e:b6:b8:40:c0:4f:3c:9f:dd:39:bc:
0c:ec:72:d9:2b:6b:bc:e1:f5:ee:2f:dd:17:d2:ff:
bf:c6:e1:cb:f5:7c:df:db:58:5d:a3:eb:b4:41:a4:
61:5a:83:f7:24:36:9a:2b:02:10:b0:5d:bb:e2:dc:
7d:c8:4d:0a:c4:5f:d5:62:d9:39:3a:c5:f8:32:8b:
59:4d:a2:81:e2:08:d4:0f:e3:3a:dd:d9:7d:d7:5c:
cb:33:b0:b4:12:aa:71:35:80:e2:45:62:44:13:76:
38:1a:ee:07:99:dc:13:e5:1b:4c:70:09:d0:8f:fc:
3d:fb:dd:ea:30:48:29:60:49:59:9b:55:13:ed:41:
9c:01:bd:b1:ae:68:bc:fb:6f:e4:c9:08:73:5c:0d:
48:4b:15:32:2c:3d:9d:ab:1f:53:0b:f6:16:b1:2d:
87:e0:7b:49:28:3b:19:60:c3:85:ff:bc:2e:70:94:
15:80:5b:c4:0f:22:3d:1d:ba:77:ce:a8:22:19:01:
62:64:40:bb:09:99:57:74:88:39:25:16:46:a1:28:
9c:26:b3:55:b6:1b:07:74:b5:8b:bc:8c:a8:05:2f:
bf:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:85:8A:A1:9C:26:73:25:B5:03:96:A7:0A:0F:E3:DD:06:C6:3D:3E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/555F457487C811EFB95B6342762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.203.40.0/21
Signature Algorithm: sha256WithRSAEncryption
5b:07:a4:a8:da:5a:ce:f5:d0:78:a9:b6:67:e2:68:67:88:a7:
0b:94:2f:16:3c:b3:0c:06:af:d0:ca:2a:d8:0d:f9:24:44:c7:
39:79:a6:ef:9d:95:33:bb:92:30:f1:b1:ba:54:07:30:c8:11:
43:99:05:2a:84:92:11:37:bb:91:41:a6:e4:4d:b2:ba:19:e7:
6a:ad:12:75:97:cb:8b:1a:a0:62:39:39:d3:9a:17:20:c9:f1:
04:d6:a3:e8:4a:22:64:3f:b9:1c:3a:51:37:52:fa:95:39:a9:
c5:74:65:b4:0f:f1:27:e4:38:55:2d:32:d3:ef:1f:31:55:f1:
bb:b3:67:d4:88:e3:14:37:95:de:b5:f1:92:f5:21:49:0a:2a:
d8:6a:0a:fd:64:f7:e8:ef:55:ec:5f:ae:bf:af:f2:95:c1:0a:
f7:8f:61:42:bc:c9:53:2a:a5:ee:65:f6:e0:cc:bd:0b:df:c6:
82:24:d0:24:6a:10:96:e7:60:73:eb:5f:83:25:c4:35:e7:9e:
fe:65:56:81:74:80:56:e7:6a:50:62:e5:ea:45:2d:e1:3f:77:
6a:dd:14:2d:50:53:ea:6d:26:8d:b6:2b:a3:cb:c6:7f:7d:3b:
d8:e2:b8:2b:77:45:df:4d:87:87:d7:1d:dc:59:bc:a8:f9:76:
6d:ad:ce:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:29 2024 by rpki-client on console-fra.rpki-client.org