Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5F12818092B311EF845CD9A3762E951A.roa
File: 5F12818092B311EF845CD9A3762E951A.roa (raw, json)
Hash identifier: xCJrvK8YBOrK5YhiPoemmXr2DO4SuKTcpiR5g1c7tn8=
Subject key identifier: 30:66:AA:18:82:DA:03:0E:D6:05:14:3B:C2:F4:71:BF:CC:D6:D7:E4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C8DD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5F12818092B311EF845CD9A3762E951A.roa
Signing time: Fri 25 Oct 2024 09:27:36 +0000
ROA not before: Fri 25 Oct 2024 09:27:33 +0000
ROA not after: Wed 27 Nov 2024 09:27:33 +0000
asID: 147176
IP address blocks: 45.201.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51421 (0xc8dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 25 09:27:33 2024 GMT
Not After : Nov 27 09:27:33 2024 GMT
Subject: CN=671b6488-3973
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ce:f7:cb:1b:c1:f8:77:db:04:27:64:d6:0a:
f9:e3:3d:28:40:4c:3d:4f:b8:b4:7b:19:ad:c7:b1:
57:e5:90:ed:1e:d1:35:cb:06:c5:e1:91:8e:a0:7b:
d6:58:43:a3:c3:7f:f3:19:06:38:5c:9c:b0:44:8f:
cb:10:f9:3d:59:31:ff:3d:f1:31:f3:75:a9:df:d4:
98:e3:02:52:a5:26:0c:b1:fb:4a:e6:eb:59:46:4b:
a5:33:32:e0:a1:fa:af:0a:94:c8:ec:6e:c0:1d:9f:
82:4b:70:a2:70:ad:9b:71:e9:e8:08:14:d2:3c:eb:
84:3f:1e:67:74:28:3e:38:ab:59:08:8b:55:58:b0:
bc:e9:dd:66:d2:7c:6c:02:f6:f0:c7:a9:b8:2c:e5:
6d:66:6a:41:54:39:61:10:e9:2a:25:3c:d8:8a:82:
d9:17:91:fb:b9:99:75:6b:f2:57:72:19:27:ed:4a:
36:92:52:d1:24:63:c5:06:ee:c4:98:ed:c1:9e:3a:
a2:ff:5a:65:71:2f:d0:bd:e7:21:9e:3b:f4:df:7d:
0f:9e:d1:e8:74:ca:04:d4:cb:a1:e3:d9:6b:57:fd:
44:e1:91:fe:2f:e3:33:5d:41:ae:a0:53:fa:55:78:
df:1a:83:0c:d1:19:88:fd:df:30:b6:8a:ae:c9:91:
19:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:66:AA:18:82:DA:03:0E:D6:05:14:3B:C2:F4:71:BF:CC:D6:D7:E4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5F12818092B311EF845CD9A3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.9.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:a0:81:28:3b:52:13:27:97:d0:b6:63:f2:de:6c:d5:c0:6e:
e8:b5:f3:c2:a6:66:ea:32:c6:9b:48:7e:ec:d2:81:f3:6f:4f:
64:c8:ec:c7:72:10:17:d7:4d:f4:1c:a0:35:b7:ea:7d:fd:80:
40:24:19:a4:e3:17:75:f1:db:3a:07:98:ec:d6:ef:11:71:21:
9c:19:5d:51:04:84:02:f3:46:ad:7b:0e:79:fb:21:fa:85:75:
98:c4:3d:40:6c:36:2c:aa:b9:de:a3:61:d5:2e:a7:69:29:cf:
d0:b0:67:e3:01:dd:56:b7:fb:81:2a:b5:e5:0d:21:d3:af:e6:
5d:c2:a9:a8:e3:ba:9c:58:05:8c:d7:ca:d6:00:af:ba:89:dc:
31:ea:cb:f1:0c:06:7c:c1:b6:8f:dd:6e:fa:f0:1b:5c:4a:7a:
0a:5d:21:5f:f9:76:65:d4:c4:e9:45:93:70:80:43:d8:08:3b:
fb:3b:4c:61:9c:7d:1b:73:a1:32:8f:12:3d:c9:fc:5a:62:ea:
f0:00:bd:7b:78:d2:a1:13:ef:d7:da:8f:51:bd:88:8e:d3:1a:
2b:22:14:31:cf:68:1f:c4:66:25:9c:41:fe:b7:69:26:f6:18:
1a:8a:bd:bf:fc:30:e8:3a:ff:1c:4d:b4:72:eb:98:ff:60:54:
87:8a:d3:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:32 2024 by rpki-client on console-ams.rpki-client.org