Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8DD31DF6A26F11EF860AA670762E951A.roa
File: 8DD31DF6A26F11EF860AA670762E951A.roa (raw, json)
Hash identifier: JDT+truUUo3BQjAaNEowbOwwa85VdNDiirmeDZ78FFo=
Subject key identifier: 22:AF:1E:F5:8E:62:7D:29:68:FD:D4:CB:D8:51:5E:51:B0:0B:77:B0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D2C9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8DD31DF6A26F11EF860AA670762E951A.roa
Signing time: Thu 14 Nov 2024 10:02:28 +0000
ROA not before: Thu 14 Nov 2024 10:02:23 +0000
ROA not after: Sat 23 Nov 2024 10:02:23 +0000
asID: 63787
IP address blocks: 45.192.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53961 (0xd2c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 14 10:02:23 2024 GMT
Not After : Nov 23 10:02:23 2024 GMT
Subject: CN=6735cab4-298f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:07:40:92:c9:52:9d:39:93:2f:77:70:30:22:
cf:9f:63:9d:ba:04:ca:8c:6f:02:ab:ee:e4:2f:76:
4a:b5:ee:b0:d7:54:2e:b7:d2:15:45:7f:fd:b8:b4:
b1:e2:1a:75:cf:34:2f:1b:c5:46:ee:21:2e:44:7d:
08:04:14:84:f2:11:b6:31:8c:6e:aa:8d:be:e7:1e:
87:15:37:a9:e8:43:af:10:e8:20:0e:e7:90:a8:aa:
b1:e9:2d:b4:d5:21:31:a7:b0:ef:2c:17:38:fc:06:
07:32:2a:50:6a:80:b4:bb:f3:91:38:88:15:0e:39:
ed:37:1e:91:70:e2:34:e9:49:0a:ee:5b:6c:0e:93:
9b:7b:f4:cc:2c:4d:75:2c:b1:b4:92:20:52:c1:f3:
d5:fc:4c:88:d8:1e:8a:34:38:7c:98:1a:98:88:0c:
6d:6d:2e:0e:40:0a:7d:04:6f:b5:72:b9:84:e1:db:
f9:14:bf:76:93:f6:55:7e:ed:94:d0:d9:52:4d:f5:
aa:a1:cd:06:02:43:bf:4c:5d:36:70:93:7b:6b:69:
4e:10:5e:3c:e5:de:05:9b:60:83:81:04:64:4a:f7:
89:78:c2:ce:2a:23:37:ed:1d:c1:5a:1d:7a:94:d1:
7c:36:2b:04:40:2d:57:eb:40:35:87:da:7d:ab:08:
3d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:AF:1E:F5:8E:62:7D:29:68:FD:D4:CB:D8:51:5E:51:B0:0B:77:B0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8DD31DF6A26F11EF860AA670762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.180.0/24
Signature Algorithm: sha256WithRSAEncryption
43:68:f0:5c:45:6b:3a:71:3c:92:f9:df:2d:23:a6:e1:f3:d3:
76:e7:fe:b9:24:a2:88:17:dd:71:d2:78:5f:e1:7c:cd:a1:0b:
3d:71:c0:d1:8f:64:5d:fa:7e:de:0e:d4:19:77:32:d9:a0:08:
59:ea:59:ea:76:e2:2f:a4:d8:7c:11:a1:22:ec:86:5f:5c:ce:
74:c7:30:98:1f:96:80:49:d3:95:8e:cd:9a:53:28:65:5b:83:
21:51:a1:37:a4:ec:01:67:08:10:09:6c:51:6e:b9:e2:7f:6c:
b9:03:b3:b5:13:82:04:c8:e6:c1:14:bd:ba:0b:21:54:7d:1d:
04:ee:ea:d1:d7:ee:cb:bc:25:96:7d:1d:02:9c:c2:01:cc:3b:
e6:fa:61:c2:9a:41:6b:66:95:ff:6d:e9:74:52:2f:28:b2:e7:
7f:2c:c8:f5:5a:78:ab:d7:8e:f5:2b:05:20:11:69:75:dc:60:
6d:e4:57:21:0c:b8:59:72:c4:0d:f6:f9:f3:29:2b:a3:bb:cc:
48:4b:f1:97:45:43:35:5d:32:94:70:34:86:28:9b:b6:e5:e6:
ba:c4:5f:c3:4e:57:f7:fe:68:2e:e3:04:4d:cb:b0:76:c9:25:
12:3a:ba:e7:2c:26:cf:62:b3:4f:3f:3a:01:e2:5a:7e:23:99:
cd:6e:75:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:38 2024 by rpki-client on console-fra.rpki-client.org