Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8BC7FA04A45911EF990D6E7D762E951A.roa
File: 8BC7FA04A45911EF990D6E7D762E951A.roa (raw, json)
Hash identifier: bCCRqlxRuX4VBlOQsWHXT1zQHYAj0BO6tkkcCWamUDs=
Subject key identifier: 50:A6:C9:04:86:80:F0:A9:48:9F:41:38:E7:CA:CB:49:A4:10:EC:24
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D40C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8BC7FA04A45911EF990D6E7D762E951A.roa
Signing time: Sat 16 Nov 2024 20:29:58 +0000
ROA not before: Sat 16 Nov 2024 20:29:54 +0000
ROA not after: Wed 27 Nov 2024 20:29:54 +0000
asID: 39600
IP address blocks: 45.197.224.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54284 (0xd40c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 16 20:29:54 2024 GMT
Not After : Nov 27 20:29:54 2024 GMT
Subject: CN=673900c6-d8f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9e:23:e7:9d:68:77:e8:28:3a:68:d4:21:54:
17:9e:2e:1c:86:73:dc:0a:bf:ce:87:35:61:f8:33:
0d:56:3d:8b:70:e6:12:bb:af:b4:a4:c4:d0:fb:e5:
e8:c4:0a:25:0b:e7:4d:7e:2a:75:a2:0c:4e:c5:33:
1e:ab:f6:93:1a:6d:5a:57:78:51:96:8c:81:fa:31:
12:a5:f7:94:74:53:89:37:3e:c1:d3:e4:42:be:98:
e4:73:25:6c:ad:24:8e:81:5e:03:f4:b4:c6:0d:23:
78:5c:47:e8:0f:cb:91:29:97:3d:7a:09:36:cf:9c:
29:cd:c9:38:a9:35:e5:27:92:f8:26:5a:83:c8:6d:
bd:0f:1d:14:2a:d1:bd:15:d4:06:0b:e3:9f:22:13:
72:be:53:b0:ca:30:f0:48:57:82:d4:fe:0e:40:b6:
80:90:3c:ef:15:34:64:c3:2c:ad:40:21:83:d9:1b:
1b:f9:1e:29:25:c0:b2:f8:d1:6f:59:24:b6:fc:2e:
be:ff:da:aa:d1:77:50:0e:32:b4:73:9f:da:16:e4:
06:fd:87:81:5f:17:f1:b5:76:ac:92:01:9e:08:3e:
15:a5:44:17:1a:cb:f3:a6:13:ce:fa:be:cd:e3:2a:
c2:8e:d2:9c:80:f4:fd:4c:60:af:01:2c:a9:b7:fc:
e4:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:A6:C9:04:86:80:F0:A9:48:9F:41:38:E7:CA:CB:49:A4:10:EC:24
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8BC7FA04A45911EF990D6E7D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.224.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:d4:01:e9:e2:9b:b2:4c:91:39:58:04:fd:e5:d4:f0:96:70:
42:e8:e0:e0:7a:e8:49:30:48:82:24:e9:f8:74:9a:62:a7:8d:
28:b6:bc:61:7f:6f:79:2a:83:c3:ac:99:e4:0a:35:78:1e:0f:
88:69:0e:46:0c:09:cb:2e:70:86:e0:91:ed:f2:83:03:b2:7f:
28:50:07:e6:1f:7d:87:7d:96:d9:5d:35:7d:fa:2d:9f:fd:5b:
0d:57:df:98:71:48:32:b9:7b:53:6c:a9:28:d8:d3:ea:f4:67:
f1:09:e2:c6:ef:b0:d7:05:b7:42:6b:37:50:bc:15:93:bb:d1:
b3:2f:a5:f4:12:03:10:1b:e9:1c:ea:2a:00:4d:95:7b:67:3f:
3f:3d:a9:12:1e:0c:84:0d:a8:d8:b5:e1:72:2d:ac:5d:f1:d4:
3a:56:0b:3e:a9:71:8f:67:f6:d7:b5:ae:33:66:5c:05:af:a8:
6b:5a:40:c5:f9:26:88:ce:87:39:a6:aa:cd:88:e5:26:de:e8:
25:c0:32:9b:67:ff:e8:89:ad:f9:da:5f:5b:a3:a2:0a:7b:cf:
27:b6:61:ec:40:da:04:a5:17:25:6c:88:cc:c3:53:be:0e:ac:
97:a1:c2:0e:7d:c3:02:81:60:89:7a:8a:f0:21:de:bf:6b:2a:
54:06:47:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:39 2024 by rpki-client on console-ams.rpki-client.org