Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/810CCD0CA64711EF8294DFA6762E951A.roa
File: 810CCD0CA64711EF8294DFA6762E951A.roa (raw, json)
Hash identifier: BligoO6J8go+2jiv6CV0SgED0f7166Tc0UsQWTGZjcY=
Subject key identifier: 24:A2:A5:B0:A8:64:7A:00:76:D2:26:07:72:DC:2C:AC:60:01:F8:F7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D546
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/810CCD0CA64711EF8294DFA6762E951A.roa
Signing time: Tue 19 Nov 2024 07:25:51 +0000
ROA not before: Tue 19 Nov 2024 07:25:47 +0000
ROA not after: Tue 18 Feb 2025 07:25:47 +0000
asID: 328608
IP address blocks: 45.197.160.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54598 (0xd546)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 19 07:25:47 2024 GMT
Not After : Feb 18 07:25:47 2025 GMT
Subject: CN=673c3d7f-51cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:fe:d2:fa:98:78:80:74:37:64:c7:97:c1:c4:
0a:8e:eb:f9:45:9d:25:5d:fa:b3:57:37:c6:24:d9:
cd:06:f7:dd:d4:36:4d:f3:b7:36:cf:cb:4e:31:4e:
a4:eb:36:97:4d:82:43:a2:44:e9:ec:0a:78:02:08:
64:f6:ef:83:c3:eb:f1:3d:87:6c:43:5f:91:5b:98:
a9:96:b2:52:22:1d:18:df:0f:35:cb:66:83:52:63:
bd:de:bf:7a:fa:7c:83:e2:fa:29:49:cc:11:d9:b8:
1a:da:19:94:4d:81:22:21:2f:59:71:e2:3f:2e:16:
e1:c7:5f:50:ac:97:e5:14:4b:ff:63:c8:fc:79:8c:
30:ac:9b:57:82:2e:35:d2:54:ea:9f:df:25:c1:b0:
6d:ca:2b:30:37:f8:53:84:3f:71:97:2a:fd:27:42:
d6:da:d7:ff:7c:d3:33:57:e6:70:27:8f:d9:b2:68:
bd:01:51:f5:11:19:c7:ab:0c:b3:ff:21:2b:be:c5:
24:3e:ac:dc:5a:bd:59:a0:bf:b0:7f:02:fb:ef:7f:
cd:53:c4:92:63:9d:a6:86:6a:a9:e6:f5:62:90:08:
4a:41:9c:6a:9c:44:92:c1:b0:eb:be:64:e5:70:03:
16:67:33:ab:ed:2c:ac:7a:5e:bf:7a:a6:ff:a8:36:
fd:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:A2:A5:B0:A8:64:7A:00:76:D2:26:07:72:DC:2C:AC:60:01:F8:F7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/810CCD0CA64711EF8294DFA6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.160.0/21
Signature Algorithm: sha256WithRSAEncryption
79:68:6a:25:be:5a:cd:fd:89:8e:a4:ac:88:de:05:c5:46:06:
50:6a:bd:c6:15:8a:f7:ef:c6:3a:de:cb:d3:86:e9:3a:42:ec:
cf:ef:a6:0e:34:ca:23:f8:b6:a6:79:41:c2:1d:55:e1:59:13:
0c:1f:b2:38:eb:46:a1:ac:f0:be:fc:27:60:b8:85:34:1b:c9:
06:ae:ae:38:23:fd:ac:5f:57:fd:b2:26:35:f7:99:6a:f4:f4:
6e:50:e6:ed:c5:38:f2:e6:e5:ac:ae:ba:e3:f4:98:0f:f1:1a:
f0:7b:24:9c:51:c3:7e:8f:ec:07:ce:0a:57:7e:b8:90:34:a1:
91:e8:c6:cd:0e:66:5b:df:ce:12:e5:c4:e9:ca:aa:ab:0a:96:
d0:fb:7c:45:ec:ee:e9:02:a4:e5:60:b4:01:ff:88:6a:ab:0c:
54:6f:34:7f:21:2b:22:bf:22:30:aa:bf:a6:c4:0f:94:5b:e1:
ae:7b:82:61:8d:c0:a7:3b:8f:74:b7:fc:02:45:7a:3b:e4:cb:
c6:fd:25:df:b3:ef:d2:59:6f:df:c0:f9:23:2f:c0:f7:58:b5:
fd:c6:b1:1e:30:f3:cf:96:e5:91:fe:52:98:ca:bf:c2:20:81:
12:0f:32:5b:a0:e9:01:52:59:fe:db:aa:c6:45:39:82:50:29:
08:51:a2:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:37 2024 by rpki-client on console-fra.rpki-client.org