Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/81D09D34A32E11EF94EFD3B4762E951A.roa
File: 81D09D34A32E11EF94EFD3B4762E951A.roa (raw, json)
Hash identifier: 5SebdazvDJDo0JDB+YIPogpqvk+I1JqrOi9w3CHcYMY=
Subject key identifier: 48:D7:6C:93:19:6E:AF:A2:6B:62:56:A7:C9:B4:2C:BB:10:C4:9B:D5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D2E3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/81D09D34A32E11EF94EFD3B4762E951A.roa
Signing time: Fri 15 Nov 2024 08:49:21 +0000
ROA not before: Fri 15 Nov 2024 08:49:18 +0000
ROA not after: Sat 21 Dec 2024 08:49:18 +0000
asID: 138456
IP address blocks: 45.202.196.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53987 (0xd2e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 15 08:49:18 2024 GMT
Not After : Dec 21 08:49:18 2024 GMT
Subject: CN=67370b11-a1ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a7:1f:6b:92:5f:05:ad:a8:b9:52:75:40:14:
03:c5:74:df:53:81:f2:0f:57:a9:1c:ac:03:b1:b6:
c9:87:61:88:be:77:ea:15:ae:4e:4b:08:f7:25:11:
7c:66:6e:e8:82:f5:88:6e:89:44:d2:19:e3:8f:50:
33:9b:28:62:5b:6f:71:db:6e:14:fc:db:1f:85:fc:
86:4b:32:ae:56:fb:46:a1:45:28:26:20:20:16:6e:
b8:a6:98:94:18:14:5b:49:52:94:b8:c5:e6:28:b5:
02:ee:01:69:cf:cc:3b:2b:c3:5e:5e:37:ce:4b:02:
c2:78:61:f9:18:91:9a:29:ae:01:a5:2f:81:c8:1f:
74:ca:bb:96:f4:a0:ba:eb:1c:46:cf:23:74:67:9f:
ce:1c:ff:b6:6a:2f:a0:ca:3f:fd:ca:cf:4b:b8:49:
94:2b:76:31:d3:4e:71:9b:26:d1:a1:59:0e:99:40:
55:3c:24:83:45:82:4c:bd:8d:cb:96:22:aa:4e:18:
63:b8:d3:53:21:67:76:67:67:a8:8a:41:c3:d3:d9:
89:c2:e5:03:47:32:8f:0a:0a:b7:3f:e3:c0:13:ef:
11:89:06:8f:3d:a4:82:24:fa:58:70:e4:03:bf:30:
44:1a:f1:41:de:88:3d:1d:29:ee:a4:03:25:42:9d:
e8:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:D7:6C:93:19:6E:AF:A2:6B:62:56:A7:C9:B4:2C:BB:10:C4:9B:D5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/81D09D34A32E11EF94EFD3B4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.196.0/24
Signature Algorithm: sha256WithRSAEncryption
af:54:a2:84:54:c0:f4:19:65:73:89:5e:1b:fc:6a:44:3e:14:
ac:5d:fa:b4:31:a6:58:c4:8c:89:90:2b:12:ec:94:d5:d2:17:
13:c1:fb:88:69:da:a8:51:6e:c5:bc:9d:1a:b7:a8:fc:85:98:
12:4b:be:07:82:0d:df:1c:52:58:1c:31:d3:8b:29:21:67:89:
62:70:e1:a3:95:3a:de:5e:f3:5e:48:07:d5:a0:f9:38:65:2f:
7f:48:5f:5c:87:dd:07:ec:9b:0b:0f:75:e4:48:30:80:7c:c0:
93:70:31:4b:67:6f:cb:65:9a:91:86:3c:18:aa:0c:9b:9d:46:
51:1c:c2:09:f5:ff:6f:9f:c5:3f:61:10:6c:70:e3:38:fc:bd:
e4:d8:6c:0a:36:0f:3d:ea:06:b8:b7:1f:0e:35:7e:ed:22:ec:
12:bf:fe:45:c1:3f:62:e5:38:fb:4c:ba:16:6b:8c:09:88:1d:
48:e5:c0:d2:fb:cf:68:8e:07:ac:dd:28:17:c0:a1:ae:e0:24:
b8:2d:ce:23:37:13:79:8f:af:8a:6b:7b:91:80:af:5b:69:e9:
7f:f6:01:87:8f:65:76:95:e1:3a:54:1a:8d:fb:88:dc:70:7d:
d6:03:ad:b8:2c:c0:ab:9b:ab:02:82:d5:31:05:63:bd:2b:82:
31:e1:d1:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:37 2024 by rpki-client on console-fra.rpki-client.org