Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6B7CB24EA4D611EFBEB46E99762E951A.roa
File: 6B7CB24EA4D611EFBEB46E99762E951A.roa (raw, json)
Hash identifier: IpKx82AwuZa6bZE16iPX4Gn0iV25jiAHl9WYt647vbc=
Subject key identifier: FE:0F:A1:F1:3A:AE:FC:A1:BC:EC:FD:06:D4:FD:5F:9D:53:FF:B1:15
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D505
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6B7CB24EA4D611EFBEB46E99762E951A.roa
Signing time: Sun 17 Nov 2024 11:23:51 +0000
ROA not before: Sun 17 Nov 2024 11:23:47 +0000
ROA not after: Wed 27 Nov 2024 11:23:47 +0000
asID: 39600
IP address blocks: 45.197.192.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54533 (0xd505)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 11:23:47 2024 GMT
Not After : Nov 27 11:23:47 2024 GMT
Subject: CN=6739d246-9a90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:9e:5c:d9:41:7c:5a:7c:ed:df:e6:07:c4:3f:
a5:8f:ea:72:0e:23:35:8a:42:6e:7d:65:4c:ed:89:
1d:4b:3c:35:a6:a6:8a:47:90:09:36:2f:07:e4:05:
f3:bf:6b:be:f0:f6:61:fe:ce:52:65:3a:a0:99:a3:
ec:1b:63:d1:a2:9c:21:a4:41:63:53:9b:92:ca:1a:
90:fb:bc:60:9a:1a:a3:f2:ab:f2:65:91:07:71:6a:
38:bb:a6:3e:28:54:d0:ea:e7:16:46:56:8b:15:55:
34:6e:77:bc:4f:e7:06:25:a7:48:ee:20:76:c6:f9:
9f:ef:f6:00:ec:4d:61:f0:6b:97:de:cb:49:04:42:
90:ee:83:da:2d:a5:5b:71:0a:01:fa:44:73:3e:dc:
e0:49:2d:30:aa:5c:7c:1c:4d:61:85:64:e9:8d:64:
b2:0a:a7:34:f4:70:b8:0d:d4:44:16:53:65:16:45:
b4:62:46:31:2d:8b:68:6a:71:d4:7f:0b:a1:75:c5:
ec:ed:af:f6:3b:d7:9a:8d:a0:aa:b8:29:89:33:7f:
01:9d:a9:14:5c:73:fe:d4:95:78:3c:12:1f:73:3a:
ff:6b:cb:d8:23:ee:72:33:7e:e0:e6:fc:f1:a3:e4:
8e:d1:68:ae:7a:29:a5:36:3a:fc:04:22:ec:c8:69:
66:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:0F:A1:F1:3A:AE:FC:A1:BC:EC:FD:06:D4:FD:5F:9D:53:FF:B1:15
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6B7CB24EA4D611EFBEB46E99762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.192.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:19:72:09:f0:c5:fa:9c:67:98:39:ff:c7:5f:bf:96:b1:6a:
19:69:d7:b0:cb:07:7c:3f:44:8a:ad:87:21:d2:ab:db:81:62:
ed:31:d3:02:2a:84:53:9b:d8:eb:f2:ff:63:8e:14:71:5c:8b:
b9:cd:1e:5c:20:e0:9d:3e:48:b3:ea:e1:c9:2a:85:d6:75:60:
b5:f4:71:7e:23:a5:f3:e9:08:d4:6a:50:d1:41:02:ff:44:af:
eb:01:e5:8e:d5:77:f9:91:1f:f1:ef:4c:3a:b1:c1:ab:2f:27:
9c:3f:ba:58:8c:34:d5:7e:da:96:8d:ba:dc:6e:e6:93:15:26:
bd:fa:13:46:a3:e9:7f:a4:5a:0d:b4:95:d4:fc:21:de:4b:bb:
d8:37:cc:6d:76:ff:8c:61:d4:ee:aa:79:13:dd:e1:44:cd:b6:
5b:ac:13:44:3d:db:25:80:13:aa:b0:89:06:0c:b4:a5:fd:46:
4a:90:72:a8:10:41:f0:97:25:54:5b:b2:63:98:c1:39:27:24:
1a:44:e4:ab:69:7d:47:9d:4d:fe:32:ab:ad:6e:74:a1:9b:59:
05:20:2e:95:20:70:c0:8b:a7:34:77:1c:8c:7a:50:27:10:4b:
e0:4f:63:ec:33:5d:c7:b8:d1:63:4a:c8:9d:86:72:47:b4:03:
c9:81:1d:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:33 2024 by rpki-client on console-fra.rpki-client.org