Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5C4826EAA32E11EFAE379CB3762E951A.roa
File: 5C4826EAA32E11EFAE379CB3762E951A.roa (raw, json)
Hash identifier: kEalYhs0hox8bS3+GpcvPvps+cB2Wf63YH+LC9aYoUo=
Subject key identifier: 4C:66:B7:28:A3:A9:AD:72:F1:EB:C3:2C:D1:94:A5:3F:E7:48:AF:FF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D2E1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5C4826EAA32E11EFAE379CB3762E951A.roa
Signing time: Fri 15 Nov 2024 08:48:18 +0000
ROA not before: Fri 15 Nov 2024 08:48:15 +0000
ROA not after: Mon 17 Feb 2025 08:48:15 +0000
asID: 272018
IP address blocks: 45.198.56.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53985 (0xd2e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 15 08:48:15 2024 GMT
Not After : Feb 17 08:48:15 2025 GMT
Subject: CN=67370ad2-0ccf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:36:a4:70:eb:b3:a1:c9:92:9b:45:c7:d2:d6:
ab:99:53:84:f8:40:da:81:c1:39:ca:19:b1:e5:1d:
f0:30:a7:db:c8:6d:96:3b:c6:72:73:e6:3b:ee:be:
80:ee:ef:3c:1d:eb:3e:98:72:91:fd:71:0a:18:df:
20:2a:53:ee:8e:6e:4f:90:6f:c1:b1:2f:93:2d:2d:
ff:5d:7f:51:8e:fc:9a:04:30:b5:87:11:0b:3b:ef:
4a:03:65:4f:51:33:0c:97:14:cd:cd:e8:20:ad:51:
4a:c3:5d:81:c8:f6:68:1d:07:6d:62:29:43:a5:c0:
a8:b2:be:af:71:b9:c9:90:c3:b0:ef:e0:76:44:44:
6d:0a:e1:55:5a:64:6a:0a:96:6e:4f:3b:9a:54:e1:
98:8e:35:67:4f:ca:34:f6:ac:5b:cb:45:02:8a:38:
43:22:bb:79:89:04:ad:f5:9a:d1:53:37:97:eb:4a:
d4:8f:5a:c1:32:60:8a:f5:86:1e:57:b4:12:46:57:
00:2f:c8:b3:2b:09:e9:3a:7b:34:31:fa:fe:f1:75:
f3:1b:d1:fb:4b:56:60:8b:cc:0f:d7:de:a1:87:90:
1d:01:c7:9b:64:a8:b0:09:8f:58:2e:fc:8c:e8:cf:
83:69:3f:b7:35:03:61:fe:e5:92:24:dd:97:37:8e:
fd:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:66:B7:28:A3:A9:AD:72:F1:EB:C3:2C:D1:94:A5:3F:E7:48:AF:FF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5C4826EAA32E11EFAE379CB3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.56.0/23
Signature Algorithm: sha256WithRSAEncryption
a3:ef:e9:e8:96:3a:fe:ae:1f:3c:aa:8d:81:b0:93:8a:67:01:
e9:9b:8c:ab:95:9c:9a:4a:b2:4e:e6:1e:e8:a8:b9:5b:b0:04:
b2:50:93:3a:b3:eb:ca:0c:90:36:78:e5:3d:10:02:0e:e3:11:
84:bc:ee:30:1d:ec:9b:0f:37:9b:d4:0b:63:ba:96:a3:38:60:
e0:2e:ee:67:a6:0c:7b:c1:d2:35:5b:6f:4b:cb:99:0e:98:5e:
9c:61:48:a8:12:9c:34:8c:ec:6d:97:08:35:34:b6:57:f4:d7:
20:0d:be:a3:2d:3c:c8:f0:fd:0d:20:0c:07:36:a9:12:69:d3:
34:7d:4d:14:61:45:b4:b4:01:52:db:87:26:49:95:3e:41:17:
9f:97:d5:72:4e:ce:cf:d1:fd:3c:44:4f:c6:3d:83:d3:2b:e7:
3e:9b:8f:6c:54:e8:d1:61:d8:b0:62:a8:f1:ec:44:96:15:a1:
39:88:fc:00:bc:3f:1f:37:a0:7e:a8:10:81:fb:75:79:17:9f:
d2:17:84:07:d4:52:b7:8f:f7:39:5d:ac:a0:8e:3e:f4:39:f3:
5a:43:64:74:f4:43:e4:25:83:3d:6f:8f:8c:47:ce:cd:3d:7f:
8d:8c:ea:dc:77:cf:ae:7a:e4:8e:ca:7a:2f:47:0f:ae:ba:19:
5d:b8:3b:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:30 2024 by rpki-client on console-fra.rpki-client.org