Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/74AC7594A75011EFB9314BA1762E951A.roa
File: 74AC7594A75011EFB9314BA1762E951A.roa (raw, json)
Hash identifier: CR0BnEtt934TJlet00LwyuVQcDSt2oRqn45Qi1eiFqk=
Subject key identifier: E4:38:E5:C3:19:F5:D1:77:AF:B1:DE:3B:77:57:E7:7B:CA:C4:30:F4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D6E8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/74AC7594A75011EFB9314BA1762E951A.roa
Signing time: Wed 20 Nov 2024 15:02:27 +0000
ROA not before: Wed 20 Nov 2024 15:02:23 +0000
ROA not after: Sat 30 Nov 2024 15:02:23 +0000
asID: 202656
IP address blocks: 45.199.252.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55016 (0xd6e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 15:02:23 2024 GMT
Not After : Nov 30 15:02:23 2024 GMT
Subject: CN=673dfa03-d9f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:5c:26:44:37:36:d6:07:61:f8:30:96:f5:1e:
3a:9f:8b:22:38:67:b6:ed:2b:3c:fc:92:7d:11:99:
27:c3:d6:d5:25:a6:5a:99:0e:1a:86:1f:78:51:a1:
df:dd:13:ed:3b:ec:73:7c:3f:1d:4c:b8:7f:03:a3:
1b:47:72:88:18:b5:5f:f0:86:d2:8f:e4:90:a6:cc:
b6:91:41:27:7c:b7:6b:93:a4:28:12:23:95:80:12:
ed:4a:7f:f3:24:61:d6:6a:90:7e:0d:2f:d2:06:50:
69:bc:6b:ab:f2:b2:16:37:4a:bd:cd:b6:60:0e:c7:
35:43:ad:ba:60:47:50:7c:ff:8a:df:2d:0a:fc:61:
19:d4:c6:81:6f:2f:76:49:da:9d:a0:20:01:2e:a5:
0f:f8:f3:ed:73:e3:69:87:82:f3:c4:54:73:07:6c:
25:f1:f4:da:47:37:d3:11:e9:6e:77:4a:b0:fe:6a:
6e:4f:d7:cc:21:bc:72:fb:cd:c1:db:72:13:05:ef:
e7:56:91:f3:4a:7e:14:03:e9:28:31:1e:44:10:d6:
d8:2d:f8:4a:e0:a4:50:a2:23:95:f7:d8:45:5b:86:
07:e1:79:13:2a:38:c1:b8:42:e1:51:18:4e:13:ae:
87:91:21:94:1f:4f:2f:d1:78:97:cd:71:61:b6:74:
a0:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:38:E5:C3:19:F5:D1:77:AF:B1:DE:3B:77:57:E7:7B:CA:C4:30:F4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/74AC7594A75011EFB9314BA1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.252.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:c7:d5:3d:82:01:2b:36:d5:6a:b2:f7:08:6f:5b:a4:86:ca:
55:b5:82:20:01:82:03:0e:5e:f3:08:a3:65:c0:60:f0:00:2d:
97:f4:5c:dc:99:1a:ac:17:84:36:cf:55:91:24:ef:82:01:f6:
a3:a4:17:d5:2a:cd:0e:6c:c5:b3:3d:f6:c2:6f:9a:ea:01:64:
81:15:52:af:e3:54:99:d9:81:2c:d1:7d:20:cc:f9:f0:7b:2f:
d5:22:7e:47:4c:f2:9a:06:19:44:99:c0:1e:6e:e9:b1:eb:48:
db:d7:a2:7d:22:a0:a8:84:ba:54:17:c2:b9:22:40:30:e1:ff:
4a:83:84:82:53:fd:4c:ec:e6:0d:e3:e4:91:8e:ec:dc:c9:2b:
13:c1:a7:78:5e:ad:8c:67:c0:65:23:90:1e:26:b6:82:9c:9d:
0f:f9:c3:e3:f5:0c:dd:5f:6c:c1:0f:59:1c:69:96:85:94:1c:
3a:30:73:f6:76:88:3b:01:b7:de:90:9b:bb:b6:97:aa:53:dd:
6a:4c:52:a2:a7:84:b4:08:39:ad:09:c4:76:f3:c1:2a:b2:13:
88:73:9f:69:43:15:e8:a9:0f:f5:3b:84:df:87:d4:9b:10:c6:
75:8a:fc:57:5b:ff:37:de:73:25:8a:f5:5a:1c:7e:5b:4f:9a:
b9:4c:42:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:36 2024 by rpki-client on console-ams.rpki-client.org