Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6AFD04C29F7C11EF98351BB8762E951A.roa
File: 6AFD04C29F7C11EF98351BB8762E951A.roa (raw, json)
Hash identifier: e/eCulFbkOfa8uxqHtOSQ9NGC5cGrpAXgqH+PBD6EjM=
Subject key identifier: 9D:7F:D0:26:C3:38:52:74:27:7F:C5:3C:D6:90:52:74:08:E6:57:56
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D0F4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6AFD04C29F7C11EF98351BB8762E951A.roa
Signing time: Sun 10 Nov 2024 15:56:59 +0000
ROA not before: Sun 10 Nov 2024 15:56:55 +0000
ROA not after: Tue 13 May 2025 15:56:55 +0000
asID: 26617
IP address blocks: 45.195.206.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53492 (0xd0f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 10 15:56:55 2024 GMT
Not After : May 13 15:56:55 2025 GMT
Subject: CN=6730d7cb-5d32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b3:14:59:c9:75:b3:d8:46:7e:f1:09:a0:94:
0e:30:15:6e:b2:c9:74:f2:e5:c6:f1:12:92:bb:7f:
cb:8c:26:51:3c:4d:99:8b:27:11:84:de:78:57:bd:
de:6a:c8:3a:ae:d9:4b:e0:4b:60:ca:7b:f0:64:aa:
15:8b:d5:43:50:51:bf:bb:49:2a:af:a0:3c:fb:01:
4b:33:b6:ff:e7:26:ba:e6:7a:b6:1d:0e:2f:f1:05:
97:27:27:31:e8:7e:c0:34:57:9a:7c:dd:ed:84:c7:
fa:7c:72:eb:19:e9:ea:fc:55:13:b4:68:e1:78:7d:
6d:8a:f4:21:6e:ef:fc:c0:ac:e3:19:a8:d8:2f:4d:
44:04:2b:b9:2d:33:00:1a:3b:2d:ba:17:1d:ab:34:
c0:d3:a7:d9:dc:d1:b9:79:e5:7c:6d:7b:bc:97:cc:
e4:50:0a:02:98:97:c8:be:80:1c:a1:b0:7a:34:29:
26:4a:1e:9b:6e:12:4f:79:64:e1:70:a2:0e:46:45:
4e:dd:59:8a:75:7a:41:e4:75:20:d5:e0:53:f7:9a:
3b:8a:bc:02:51:3c:3c:20:cd:1f:d6:19:4f:c4:95:
ee:49:e3:58:9f:06:9c:f5:b5:1d:47:ac:1e:37:9f:
e8:35:43:98:b0:f4:b5:b6:d2:0d:66:dd:99:b7:4e:
58:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:7F:D0:26:C3:38:52:74:27:7F:C5:3C:D6:90:52:74:08:E6:57:56
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6AFD04C29F7C11EF98351BB8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.206.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:d1:0c:af:6b:06:ba:57:c3:fc:e4:b3:19:bf:4f:be:fd:c0:
c7:74:6b:b9:2b:12:25:2a:fd:29:66:1f:05:64:69:c8:f6:db:
06:c0:04:e5:9b:18:cc:32:0f:fe:6c:33:93:6a:96:b7:24:fd:
90:ff:bd:f8:b1:70:1b:e1:74:08:1a:c2:c2:64:7e:a1:98:d1:
ba:6e:b1:26:6e:5a:b6:b3:20:6e:5f:d3:2d:85:ed:27:c4:f0:
ed:cb:37:65:00:1a:07:94:ae:7d:96:66:8b:07:37:51:0e:73:
12:13:29:c3:2f:a3:8b:fe:3b:6f:a9:ce:25:48:aa:22:a3:8d:
a0:7b:c9:1b:54:27:99:b6:a3:f2:ad:01:f5:92:01:3a:25:f5:
20:39:6f:01:82:2b:94:6b:96:9c:20:29:ed:3d:80:28:2e:5b:
12:15:27:41:47:80:ae:25:3d:3d:2e:ee:d0:22:ad:14:86:47:
4a:fe:83:3f:ae:bd:1d:c5:9d:13:78:ea:14:15:4b:d2:90:46:
48:f9:7f:f4:00:a2:c1:22:9f:3d:e7:9c:6e:81:0d:97:c0:77:
af:8b:08:e6:d4:c2:32:04:b1:b7:b0:36:28:f4:45:4b:bf:d6:
57:35:3b:4f:68:ad:71:46:63:b9:35:e4:16:5c:5c:5a:7b:8f:
32:f0:a2:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:33 2024 by rpki-client on console-fra.rpki-client.org