Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6296F3D4A73C11EF827EFEA3762E951A.roa
File: 6296F3D4A73C11EF827EFEA3762E951A.roa (raw, json)
Hash identifier: U9rNykLGYTRPhAUwr00bbbxpXJJKd8WNZNk40NHDWU8=
Subject key identifier: 60:B8:C1:6B:0F:DE:93:48:71:61:4D:07:39:DA:54:FB:FA:08:AC:D4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D61B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6296F3D4A73C11EF827EFEA3762E951A.roa
Signing time: Wed 20 Nov 2024 12:38:47 +0000
ROA not before: Wed 20 Nov 2024 12:38:42 +0000
ROA not after: Sat 30 Nov 2024 12:38:42 +0000
asID: 136778
IP address blocks: 45.204.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54811 (0xd61b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 12:38:42 2024 GMT
Not After : Nov 30 12:38:42 2024 GMT
Subject: CN=673dd857-50df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a4:69:49:1e:2a:5e:ba:f0:98:19:59:bb:7d:
72:6a:d9:2b:92:64:4f:5f:5d:4e:f1:71:62:58:55:
66:cb:0f:2a:36:e2:91:44:43:09:2f:47:5b:eb:5e:
78:98:67:50:4d:52:1a:bc:28:88:6e:e3:80:2e:12:
b5:7f:c9:ce:a0:37:a8:03:f3:79:33:ec:26:e4:db:
eb:44:af:df:c9:53:e7:68:2f:85:01:06:d2:4d:ea:
6a:86:0e:62:96:fb:0a:93:33:34:60:cf:8a:40:35:
db:51:0a:6e:03:65:57:ff:2f:6d:11:89:3e:bf:eb:
8e:a5:d6:74:03:a5:d5:83:36:9b:05:ec:e8:a3:c3:
41:7b:b1:71:32:a3:80:de:eb:6e:1e:1f:e4:b0:14:
ee:df:97:27:13:e3:44:55:a4:c8:d3:8b:a3:aa:9a:
57:68:e0:e0:e7:ba:df:f5:a0:3a:27:6a:f1:76:63:
d7:ae:8f:f0:35:85:1a:31:6c:8c:9b:c4:3b:1c:88:
61:c1:e8:9f:0e:d4:b6:86:a2:a5:cb:7a:94:63:5e:
d0:d5:fc:2c:e5:07:79:6b:fb:e8:d3:0d:e4:e0:49:
42:a1:70:aa:ad:d3:fa:7d:ec:28:ba:1e:8c:af:50:
6f:05:13:82:52:46:1a:5a:98:82:b6:f3:1c:1b:d9:
20:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:B8:C1:6B:0F:DE:93:48:71:61:4D:07:39:DA:54:FB:FA:08:AC:D4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6296F3D4A73C11EF827EFEA3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.81.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:98:a4:11:a0:55:15:d7:ba:bc:cf:f2:b4:97:9a:ae:db:f6:
8f:92:0e:71:8d:64:1c:44:5a:0a:9b:17:df:66:81:07:89:4f:
e0:9f:d6:a9:1c:11:4d:7d:8f:7d:60:0d:a0:28:4b:d3:bd:92:
9f:c9:fc:5a:fa:71:bc:0d:f2:61:8e:86:9e:a0:0a:dc:ef:b5:
f3:6d:6d:91:6d:85:70:7d:c6:7b:23:7c:d0:c3:9a:c6:0b:76:
74:68:f7:8f:b9:31:8a:c7:b1:4e:db:87:24:1c:32:bd:c9:9b:
f3:0a:e9:89:ac:25:0c:eb:f4:d7:d6:b7:5c:62:f5:6e:dd:ce:
cb:8a:c9:77:7e:af:7d:cd:49:ac:08:37:fb:d0:f3:b8:a5:5d:
22:29:5d:14:85:c4:71:ce:fe:b2:7d:de:b8:a9:11:8f:70:a5:
5d:54:61:09:47:ea:f3:5a:02:9d:98:4f:cf:30:5c:93:10:27:
b6:71:63:ac:8a:97:41:71:70:45:05:1d:a1:e5:2b:9e:bb:1e:
c7:89:19:0f:5f:2b:b3:9a:54:fe:3c:ba:5c:d8:fb:9a:67:8e:
e6:ff:c6:ad:2f:b6:59:e9:e2:5e:98:aa:25:ae:d5:c0:4d:3d:
ec:1b:bb:d3:c2:d7:5a:09:9d:ac:fb:a9:fc:c1:c2:49:29:a2:
93:03:4b:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:32 2024 by rpki-client on console-fra.rpki-client.org