Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/577459DC9AAE11EFA583C774762E951A.roa
File: 577459DC9AAE11EFA583C774762E951A.roa (raw, json)
Hash identifier: v+Vi22Cd7i0saF8A6GRGRJHlilhFzg33HRiPzo70hCY=
Subject key identifier: 4C:05:71:B2:57:FC:84:D6:CE:C5:B9:50:8D:3E:DD:B5:7B:F1:B5:05
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CDAA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/577459DC9AAE11EFA583C774762E951A.roa
Signing time: Mon 04 Nov 2024 13:11:45 +0000
ROA not before: Mon 04 Nov 2024 13:11:42 +0000
ROA not after: Tue 03 Dec 2024 13:11:42 +0000
asID: 141883
IP address blocks: 45.201.224.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52650 (0xcdaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 4 13:11:42 2024 GMT
Not After : Dec 3 13:11:42 2024 GMT
Subject: CN=6728c811-0545
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:a7:cf:23:6d:f5:95:89:74:5c:f6:90:2e:31:
7d:e6:6e:cd:d5:42:dd:ec:4f:fb:75:e8:05:b1:f4:
7c:f5:ce:ef:dd:39:3f:14:17:f8:67:2f:85:70:7e:
53:ae:0c:8f:32:34:72:93:02:0e:ae:38:65:35:c3:
85:af:6d:7f:46:13:76:4b:d5:23:8d:5e:32:38:cc:
1b:38:85:5f:35:4b:89:e4:e9:cb:8a:ca:79:0c:d3:
97:d4:b8:cd:27:60:a8:06:55:82:a7:d8:ee:d9:ef:
38:2a:74:7e:94:e9:cb:de:0b:f3:cd:9f:6d:a4:7c:
54:f6:28:f3:41:d7:d7:8b:cb:f7:b3:6b:68:68:e7:
e5:35:68:b5:fa:96:40:2c:d0:dd:06:7e:21:e0:d7:
54:1e:ee:93:de:98:a9:4d:3e:4b:e2:f7:2e:ca:a5:
55:e0:8e:ed:95:d8:ce:1a:10:ed:4a:56:03:f2:60:
2b:a2:16:74:9b:6b:67:21:36:bd:30:b3:3e:5e:23:
3b:44:88:e9:b1:3a:64:04:2c:40:e4:bc:0d:28:80:
75:04:b1:47:91:9d:34:c0:44:db:23:ab:5a:74:79:
f1:6a:2b:60:25:05:64:0d:eb:2a:75:8f:75:dd:80:
4e:88:6b:7f:96:15:b7:2b:9b:2d:0a:7c:bd:52:dc:
e5:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:05:71:B2:57:FC:84:D6:CE:C5:B9:50:8D:3E:DD:B5:7B:F1:B5:05
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/577459DC9AAE11EFA583C774762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.224.0/21
Signature Algorithm: sha256WithRSAEncryption
04:74:0e:50:de:5e:85:ed:5f:d1:9d:50:c5:37:c2:20:f4:11:
d8:4a:aa:02:84:01:35:cf:9b:89:cf:a6:aa:42:e5:65:96:ac:
b4:88:8a:c3:ee:b7:81:80:00:1a:d9:24:87:c6:05:84:d6:11:
71:4a:cb:7a:9f:d3:6b:82:5e:4f:6e:15:bb:09:04:2a:52:f5:
1b:ce:27:e5:60:ec:b3:46:fd:0e:ef:78:5c:ba:58:38:55:f3:
2d:bc:9e:e5:08:e7:be:c0:dd:31:3d:6d:b9:3b:b0:65:c3:4b:
dd:1d:17:c5:4e:1a:7d:1f:af:cc:97:25:7d:a9:49:01:da:fc:
24:50:b8:49:d8:f0:87:26:be:d6:d3:e2:09:30:f2:6b:0b:52:
88:96:0b:c7:21:28:80:00:97:c9:d2:a5:a7:e7:26:00:1d:5c:
65:02:e0:58:82:b3:15:0b:2c:04:71:ed:87:c4:06:51:f9:e3:
30:23:cb:05:f6:62:cd:72:21:1d:7e:13:eb:69:3f:95:fe:6d:
88:ab:88:c9:ae:65:e2:47:35:bd:3b:ed:1f:5a:26:78:28:37:
ec:00:21:80:03:0f:a1:11:1e:47:ee:7f:de:10:83:db:72:61:
6b:a5:c8:34:f8:af:2a:9f:03:55:1e:29:60:2e:c3:99:cd:95:
7f:02:17:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:29 2024 by rpki-client on console-fra.rpki-client.org