Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5B03348EA64711EF95A3B0A4762E951A.roa
File: 5B03348EA64711EF95A3B0A4762E951A.roa (raw, json)
Hash identifier: 7iKSLVQDRBTVgKjhX22ZUmk8eUGFplzOxU1/Q+5Ek2Y=
Subject key identifier: 5B:78:FF:69:26:1A:C8:08:8D:7A:EC:BA:CB:63:EB:29:38:04:15:11
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D544
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5B03348EA64711EF95A3B0A4762E951A.roa
Signing time: Tue 19 Nov 2024 07:24:47 +0000
ROA not before: Tue 19 Nov 2024 07:24:43 +0000
ROA not after: Tue 18 Feb 2025 07:24:43 +0000
asID: 328608
IP address blocks: 45.197.172.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54596 (0xd544)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 19 07:24:43 2024 GMT
Not After : Feb 18 07:24:43 2025 GMT
Subject: CN=673c3d3f-6d58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e0:51:31:54:4e:5e:4d:4c:82:43:50:28:c9:
78:56:91:8a:da:e8:9a:14:35:ee:c2:41:85:ef:4a:
4e:43:cb:11:80:2a:c6:c4:4a:f7:ac:d7:aa:ed:c7:
03:58:3a:2f:ac:81:fd:5d:fb:39:14:60:7e:2d:8c:
fc:09:bf:32:cf:31:03:36:b8:6a:fd:09:13:65:30:
27:9f:44:8a:5b:34:72:dc:2c:4f:1f:28:4d:dd:16:
93:49:f0:c2:2f:83:7f:62:ce:2a:5a:d0:c3:6e:9c:
89:bd:5c:2d:8f:04:ec:92:88:cb:fa:ec:0b:6a:7d:
07:98:2f:f6:9e:77:c5:2d:19:5f:94:e8:de:e6:78:
9b:63:83:c2:48:47:fe:39:39:25:84:86:76:d4:84:
96:7a:21:81:04:8c:5b:3c:48:64:26:35:d9:f7:74:
9b:c1:01:83:68:bd:46:bf:b9:f1:b1:8a:ba:b6:c8:
e1:01:68:1e:c3:e0:30:d6:47:56:17:c6:ac:d6:61:
18:a4:3c:49:ec:34:c9:bc:c7:66:13:39:d6:28:7c:
7f:67:54:9a:06:7a:ac:75:ae:70:f2:a9:df:dc:6e:
3f:bd:11:f0:bc:04:7d:84:d7:9c:0a:3a:67:ec:77:
57:5d:de:7c:a9:a0:9e:02:55:cf:15:bc:fe:50:3a:
25:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:78:FF:69:26:1A:C8:08:8D:7A:EC:BA:CB:63:EB:29:38:04:15:11
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5B03348EA64711EF95A3B0A4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.172.0/22
Signature Algorithm: sha256WithRSAEncryption
04:c2:b9:40:d9:12:7d:71:f4:cb:22:fe:39:b4:c0:58:87:2c:
e6:d8:1d:83:ba:9c:a6:5e:8e:35:75:e5:ec:09:63:36:86:09:
9f:06:c0:f1:6f:42:f6:38:a0:38:31:36:05:81:8f:c3:40:e5:
5a:29:f7:99:29:10:28:cd:0c:76:61:9c:67:63:10:6d:10:03:
1b:b6:38:76:13:d8:bc:8f:5b:5f:3d:15:98:45:cd:6b:37:1d:
1b:4e:ca:89:c1:42:d9:51:f6:7c:15:06:4f:7e:e7:ad:f0:b3:
21:08:d0:48:c3:2c:30:88:81:ad:f2:4b:57:a5:45:9b:30:b7:
93:60:e5:93:91:41:c6:2f:b2:d6:9d:48:5b:05:57:02:12:80:
86:3b:ee:c4:db:8b:40:f8:f9:f1:14:d0:f3:ce:ec:69:42:69:
01:ca:d8:c3:36:bf:e9:c2:c3:74:4c:f9:e5:de:2a:05:cd:da:
d1:0d:4f:2e:b1:db:c5:b2:41:62:ce:7c:3f:d5:e9:72:71:46:
eb:38:04:d9:c1:49:13:63:69:65:2d:64:c5:63:30:2d:4e:d6:
be:ec:d3:30:d0:18:07:80:69:86:e3:92:40:17:2b:23:2b:29:
ed:e3:d6:05:b0:25:3b:92:67:14:17:7e:1d:6d:ec:da:a1:35:
85:da:e4:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:32 2024 by rpki-client on console-ams.rpki-client.org