Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/64A46076A65111EFAC15DC64762E951A.roa
File: 64A46076A65111EFAC15DC64762E951A.roa (raw, json)
Hash identifier: YmAAHGPsJzZBR1NBDz3cbn5P9Cc9bJ9MBGcr3iEhEEI=
Subject key identifier: 76:B3:5F:22:E7:FE:05:97:BC:34:4E:9C:12:2A:04:6A:0C:2B:67:19
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D586
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/64A46076A65111EFAC15DC64762E951A.roa
Signing time: Tue 19 Nov 2024 08:36:38 +0000
ROA not before: Tue 19 Nov 2024 08:36:35 +0000
ROA not after: Sat 23 Nov 2024 08:36:35 +0000
asID: 149014
IP address blocks: 45.192.178.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54662 (0xd586)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 19 08:36:35 2024 GMT
Not After : Nov 23 08:36:35 2024 GMT
Subject: CN=673c4e16-6306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:0b:12:4a:be:8a:df:f2:71:5c:dc:2e:f7:c7:
12:e6:6e:2d:ed:59:09:54:d0:75:ad:3b:e3:ff:3e:
61:7d:d8:e1:1b:c4:a2:e3:6f:83:0a:14:85:3a:b3:
d8:f7:e7:1a:89:1e:99:e9:48:5a:2e:47:92:cc:ed:
46:0d:c9:93:e1:22:cc:9f:c1:7a:91:2a:b8:7c:84:
11:b4:da:31:fa:a3:72:02:0f:30:e8:f3:96:17:a6:
51:c7:88:7b:a1:46:1a:f9:3e:9f:de:73:ae:46:a4:
54:60:fe:a1:66:3f:1a:ad:ad:29:5f:2b:e3:2e:b9:
c4:1b:86:e3:0a:a2:ef:be:b3:e5:58:2b:c2:69:45:
84:8b:5b:dc:58:09:2c:59:31:62:2d:40:d6:ca:fb:
75:78:d5:ee:a6:f6:88:7b:86:86:8b:da:6f:9f:09:
93:49:f9:44:1f:58:cb:50:ed:25:29:af:df:1e:d1:
ef:0e:f8:e5:bf:73:52:56:31:52:52:f1:7b:1e:87:
35:86:e0:66:99:54:3c:71:db:ee:bc:7b:7a:9f:0a:
94:d3:1a:98:0d:18:42:95:e8:ca:71:9f:61:82:b7:
c3:c6:a3:11:77:76:59:59:d2:b5:05:db:5f:b1:8e:
33:86:5c:c3:09:8c:e1:e0:5d:40:69:97:e7:46:ff:
cd:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:B3:5F:22:E7:FE:05:97:BC:34:4E:9C:12:2A:04:6A:0C:2B:67:19
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/64A46076A65111EFAC15DC64762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.178.0/23
Signature Algorithm: sha256WithRSAEncryption
57:e3:0d:5f:2e:a9:83:aa:5a:6b:34:19:c4:a5:20:f1:38:f4:
5b:15:77:62:ca:b1:64:28:45:ec:a1:74:ce:9a:32:d6:79:9d:
88:ef:cd:3b:ce:4b:4c:17:2f:c1:1c:a7:76:08:44:2c:46:db:
bd:67:cf:f2:19:f6:d0:01:87:33:78:b9:20:a1:f3:93:a1:0e:
96:05:86:76:2c:1f:5e:05:f3:30:aa:c4:5c:80:3a:56:04:bd:
fb:c5:9e:93:d6:de:1f:49:44:32:ff:34:00:82:66:3d:ea:b8:
87:ba:06:55:53:38:1a:a7:e1:2d:a3:65:0a:83:49:46:f9:aa:
23:80:c1:38:9a:1e:44:2c:64:9c:37:b9:28:bf:8c:73:95:e4:
d7:48:ec:c5:2e:1f:77:5b:c7:60:35:f8:ea:4f:11:ef:d8:52:
e4:10:7e:5d:c7:47:e3:ef:f6:e7:fe:3b:6f:d2:ba:42:a0:27:
d8:5e:ff:bb:c0:7f:bc:3a:97:cb:ad:96:d6:ba:3e:0b:a9:0b:
b3:be:6b:04:da:e2:d9:2f:03:03:c7:31:b4:8d:11:28:6b:cd:
4e:6c:13:41:98:e2:f8:b2:89:73:83:25:80:71:fb:f2:74:44:
6b:71:b4:17:cf:d0:ae:cb:92:79:47:e2:55:1a:05:d8:83:4b:
5e:48:ec:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:32 2024 by rpki-client on console-fra.rpki-client.org