Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6BA31274A45211EF8A7F5E52762E951A.roa
File: 6BA31274A45211EF8A7F5E52762E951A.roa (raw, json)
Hash identifier: q4tIRtYbcXSEuT4pGNI3sQDhGtz30Tja6ac/5LDGLAU=
Subject key identifier: B0:CF:91:A5:DB:C8:97:EF:50:47:48:80:60:32:4C:45:C2:DC:EB:FE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D3D4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6BA31274A45211EF8A7F5E52762E951A.roa
Signing time: Sat 16 Nov 2024 19:38:57 +0000
ROA not before: Sat 16 Nov 2024 19:38:54 +0000
ROA not after: Tue 26 Nov 2024 19:38:54 +0000
asID: 216183
IP address blocks: 45.206.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54228 (0xd3d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 16 19:38:54 2024 GMT
Not After : Nov 26 19:38:54 2024 GMT
Subject: CN=6738f4d1-c0a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:08:bf:56:73:11:1b:fa:f1:58:de:40:ab:e2:
39:df:f9:dc:40:ec:20:9e:bb:9a:4e:77:a8:ea:a3:
ca:f4:aa:3d:59:30:03:cb:49:8e:ad:28:62:03:8d:
95:a4:c8:15:3d:19:4e:f6:6d:f6:e6:7c:cb:89:08:
dd:27:cd:18:c0:bb:5f:8e:9d:34:1c:09:0a:07:f7:
73:81:2d:53:e2:f5:62:a0:eb:31:9d:df:9b:7b:d8:
97:8a:3a:b3:e5:80:c6:dd:75:3a:4e:17:bb:e9:dc:
77:29:07:d4:8f:a2:04:bf:a9:37:8f:0d:3d:13:4b:
45:d3:c9:c4:6b:62:b1:da:c5:37:06:d8:c0:bb:ba:
14:74:e8:e0:c2:97:c5:3b:5e:c3:24:9b:e7:34:75:
d5:ce:50:2d:d9:69:0d:5e:88:9f:5d:e3:df:c2:da:
84:8a:63:9d:c5:79:ae:20:50:19:63:e9:c2:13:90:
00:20:a9:ec:59:be:95:e1:3b:a5:2c:f8:86:b6:da:
9d:af:99:61:3e:5e:8f:16:c3:31:1a:a0:2a:f3:2d:
63:83:45:18:dd:e7:ed:d4:ae:e0:88:f3:4e:b7:94:
02:5a:08:4f:b0:29:d1:f7:a5:29:9a:7c:90:83:6c:
a6:25:bb:a6:a5:fd:ab:21:21:d1:91:df:cb:3a:dc:
5c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:CF:91:A5:DB:C8:97:EF:50:47:48:80:60:32:4C:45:C2:DC:EB:FE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6BA31274A45211EF8A7F5E52762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.9.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:0e:dc:29:a3:ca:a3:7e:02:39:0f:af:00:09:b8:40:36:e9:
55:c7:b6:44:06:38:27:8b:79:a5:e5:6d:6e:bf:26:44:d0:82:
88:b0:11:41:83:0c:45:0a:e1:13:cd:bc:2b:50:de:e3:32:45:
16:db:c2:44:e9:92:dd:af:64:a5:87:2c:61:61:63:56:7f:3a:
30:41:f6:44:f4:58:38:6b:89:50:d8:60:6d:42:4b:39:f9:33:
d9:7a:cf:db:39:7e:4b:e6:9e:d8:04:22:3b:ca:66:a6:82:14:
e2:96:27:17:18:11:d7:64:fe:71:99:29:e4:02:a7:d1:76:74:
5f:65:ec:1e:ad:86:5d:36:36:29:87:e8:68:14:22:4e:90:cc:
aa:77:bc:cb:a2:2a:68:b9:45:7e:57:a1:dc:4f:be:b7:a4:2d:
ad:9d:93:40:10:05:cb:13:e9:c2:f9:ef:90:ad:03:9f:10:e4:
68:8f:d4:d9:f4:97:20:79:70:da:38:15:ce:de:dd:96:f2:6a:
6d:7c:d8:83:45:78:86:ba:b5:98:2d:4d:d5:90:b9:1b:4f:55:
a5:75:19:dc:8f:d3:58:50:5e:92:13:5e:5f:34:47:0f:ea:34:
fc:a6:62:41:0c:46:f8:9e:e6:36:60:d4:76:e6:13:7b:ee:41:
06:73:3c:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:33 2024 by rpki-client on console-fra.rpki-client.org