Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6C909456A4CD11EF8E56D160762E951A.roa
File: 6C909456A4CD11EF8E56D160762E951A.roa (raw, json)
Hash identifier: KzhIW2Q1JC9QODskbd6Os+5TDtzfhd25zxFIbzp59KU=
Subject key identifier: F0:0D:95:17:DF:01:7D:FE:14:1A:AD:3C:80:2B:22:CE:CA:56:D9:19
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D4CF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6C909456A4CD11EF8E56D160762E951A.roa
Signing time: Sun 17 Nov 2024 10:19:27 +0000
ROA not before: Sun 17 Nov 2024 10:19:23 +0000
ROA not after: Mon 25 Nov 2024 10:19:23 +0000
asID: 9009
IP address blocks: 45.192.136.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54479 (0xd4cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 10:19:23 2024 GMT
Not After : Nov 25 10:19:23 2024 GMT
Subject: CN=6739c32f-94d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ee:ab:1d:b8:99:21:54:76:90:c6:da:a6:fe:
4c:51:70:0c:e5:7e:02:04:77:75:22:1e:2a:f2:84:
94:89:18:6f:73:f9:9f:47:fc:ab:33:37:87:b5:30:
59:2b:07:ab:85:b6:2c:39:01:4b:4d:e5:a6:ab:42:
2c:ca:36:4c:82:bd:5b:18:88:2b:b0:9c:be:84:67:
23:b9:2d:f9:87:b7:37:82:e0:4b:26:40:93:e5:04:
7c:30:65:11:25:1a:c7:45:6c:04:c1:d9:a3:25:71:
ef:c2:1c:25:24:ba:f5:70:2c:85:27:ba:64:2f:42:
eb:56:ec:a1:ef:c1:2b:ec:b3:0b:ca:a7:34:d7:4c:
4e:c9:11:61:ea:f8:ee:1d:79:6d:1e:ab:3e:4c:e0:
35:00:97:ab:22:a8:60:f8:c0:90:f0:f6:0e:19:7a:
12:d2:c3:31:27:8d:de:c0:01:0e:a5:1b:93:57:be:
4a:70:a9:6c:7b:16:16:3f:33:3f:78:7f:79:0f:da:
6e:01:2d:33:35:c5:2c:40:10:1d:14:3f:5b:17:0d:
5a:04:cb:23:71:6e:b6:f9:a6:f6:e7:cd:24:65:a4:
12:0e:7e:0c:94:2a:00:bd:0c:72:8d:30:6e:62:45:
f0:45:0f:66:6a:a6:5b:e1:f7:74:f2:d1:f6:0d:ed:
a0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:0D:95:17:DF:01:7D:FE:14:1A:AD:3C:80:2B:22:CE:CA:56:D9:19
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6C909456A4CD11EF8E56D160762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.136.0/22
Signature Algorithm: sha256WithRSAEncryption
65:02:f4:01:5b:30:e7:47:98:9e:ec:6c:67:72:aa:e5:2e:ab:
1b:cd:be:fa:da:9e:7d:a5:a2:bb:41:f8:2d:ca:4b:6b:39:d0:
e4:1f:80:4a:67:d2:51:f4:fd:8a:80:b5:0d:6f:72:62:19:33:
71:0b:24:d3:41:62:33:ee:51:40:d9:96:56:e5:da:e6:b9:4e:
6e:ea:1c:42:2d:98:8e:80:24:e7:9c:a3:cd:01:97:bb:2f:9f:
3f:4b:aa:80:18:45:4d:8c:d6:ad:96:ac:bb:9e:a6:8d:ea:e5:
34:12:45:19:2d:4c:34:a8:83:8d:0c:b7:b1:bb:bd:70:1b:ec:
a8:02:1c:90:8b:43:05:3d:39:28:10:4a:26:94:11:c9:6e:b3:
92:39:ab:51:19:54:b2:25:38:7f:0c:72:ce:99:34:a5:a7:70:
4e:05:7a:18:2d:70:5b:ff:e1:04:e1:25:49:e8:65:f7:aa:a8:
50:ca:d6:d7:a1:f9:51:f8:04:82:1c:cb:95:ec:33:15:4c:5c:
2b:55:74:2a:80:8d:db:f0:18:9e:be:6e:72:f7:46:a8:a1:ee:
52:25:78:d2:31:29:c1:ed:59:f0:9d:18:bd:5f:09:86:35:ba:
b5:8c:41:10:66:87:c9:77:8b:47:ac:e8:02:e6:17:ce:b3:29:
6b:6c:64:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:35 2024 by rpki-client on console-ams.rpki-client.org