Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7C5B5938A74411EFB99A5257762E951A.roa
File: 7C5B5938A74411EFB99A5257762E951A.roa (raw, json)
Hash identifier: Cg1u7elf7Tjs8/StTgoc3VmxNSkIBQZXh18JiNh0PzI=
Subject key identifier: 2C:28:D7:D8:23:A4:42:7C:67:CD:F5:B5:3D:BD:6F:CE:65:15:4A:51
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D65F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7C5B5938A74411EFB99A5257762E951A.roa
Signing time: Wed 20 Nov 2024 13:36:46 +0000
ROA not before: Wed 20 Nov 2024 13:36:42 +0000
ROA not after: Sat 30 Nov 2024 13:36:42 +0000
asID: 62240
IP address blocks: 45.192.34.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54879 (0xd65f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 13:36:42 2024 GMT
Not After : Nov 30 13:36:42 2024 GMT
Subject: CN=673de5ee-c7c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:7b:fd:6e:4e:d1:d2:00:cd:d9:5d:c9:23:0b:
6f:45:ef:8e:e8:95:ed:b3:3d:02:db:79:99:b6:fc:
5a:78:6d:60:90:7a:22:38:95:cb:e5:03:ca:66:a8:
e3:cc:0c:e5:98:d3:58:dc:07:bb:cf:bb:9f:bf:60:
a3:4b:fb:64:b7:e2:58:0b:16:98:e9:bf:02:b8:c3:
b6:db:c8:e7:92:1a:e4:b9:69:dd:5e:eb:cd:0c:8e:
de:95:f1:15:3b:41:46:1e:a1:5b:34:cb:04:39:e1:
f4:7f:1b:86:a1:d4:37:02:17:29:d8:76:a1:aa:b0:
ef:fe:fb:43:8b:af:15:4a:11:f6:10:66:e6:96:f3:
e1:df:76:13:3f:4c:d1:e7:0f:df:c9:34:fd:eb:f9:
0b:95:15:c7:df:90:d4:81:73:7a:37:01:66:ef:c8:
5e:72:11:a9:f7:87:7f:ba:a0:a9:85:0e:39:33:b1:
28:07:65:84:68:01:e1:3b:4c:a7:b8:18:44:f3:3a:
b6:74:b4:db:7b:96:0b:30:38:01:58:04:77:27:65:
de:35:0e:85:d4:b1:2c:3a:c7:d1:75:c7:33:ec:a8:
e6:30:48:fb:be:43:81:5a:a8:d5:0d:ad:58:7d:7a:
b3:2f:1a:1a:a8:2a:92:d2:23:f3:0f:55:3b:9c:69:
cb:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:28:D7:D8:23:A4:42:7C:67:CD:F5:B5:3D:BD:6F:CE:65:15:4A:51
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7C5B5938A74411EFB99A5257762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.34.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:62:33:b9:49:6f:63:52:25:4d:5a:62:9f:ec:fd:6a:fd:e8:
5a:16:ae:02:e1:29:0a:e2:c6:90:ed:66:f2:02:d6:b6:ec:f9:
d5:c2:b1:d5:a4:6a:03:f2:26:7b:44:b4:12:f7:5b:a4:05:6e:
3b:17:68:1a:44:cd:0c:b1:48:a4:e5:14:b4:f9:cc:78:67:40:
8d:03:3a:fe:2a:34:4e:ac:22:33:27:9e:2e:dd:2e:00:9b:a3:
94:51:56:8c:50:14:fd:68:f2:bd:9a:8f:e8:16:8b:7b:b2:37:
32:c8:db:1d:21:0c:18:98:26:8b:39:9f:5e:0f:e0:2c:66:05:
d8:4b:e6:ef:5e:f3:18:91:88:1a:19:4b:1d:16:76:2b:14:af:
6b:10:4b:b1:94:09:ee:8f:45:b1:dd:58:54:c0:f8:8c:ad:e3:
66:31:6c:b9:d6:fc:98:50:3d:94:2d:2e:16:34:ab:86:c0:5e:
dc:f8:d6:9a:9b:e8:86:ea:71:03:88:87:cb:ae:cc:8f:31:d9:
d8:74:ad:19:ce:38:dc:37:80:dc:05:a1:e4:f6:7e:79:ff:83:
ab:fd:34:4f:58:58:d1:7e:31:5a:fd:ed:27:0a:f3:df:c2:08:
1c:a4:25:f3:bd:39:ea:42:ae:a1:68:dc:49:3b:07:f2:b1:8b:
09:ef:b3:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:37 2024 by rpki-client on console-ams.rpki-client.org