Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8FC567C8A73C11EF955E42A4762E951A.roa
File: 8FC567C8A73C11EF955E42A4762E951A.roa (raw, json)
Hash identifier: O75clsNUXe2CT4C2IwVrUupF3PA+imbs9jkURVnNtmg=
Subject key identifier: CA:32:D4:91:CA:FC:15:C6:18:7B:F6:59:F3:82:C2:28:F4:67:5E:25
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D61D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8FC567C8A73C11EF955E42A4762E951A.roa
Signing time: Wed 20 Nov 2024 12:40:02 +0000
ROA not before: Wed 20 Nov 2024 12:39:58 +0000
ROA not after: Sat 30 Nov 2024 12:39:58 +0000
asID: 48031
IP address blocks: 45.200.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54813 (0xd61d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 12:39:58 2024 GMT
Not After : Nov 30 12:39:58 2024 GMT
Subject: CN=673dd8a2-f9c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:22:e9:68:f8:da:1d:c2:92:e2:24:c1:51:6f:
46:76:9a:af:13:14:b4:d7:21:8f:d9:91:14:1d:bd:
c5:82:fd:01:a7:47:5e:ee:f5:02:20:fd:4d:b1:cb:
af:00:55:7a:36:13:67:c1:c8:a0:f5:4b:07:b7:01:
0a:b3:19:a0:40:93:bd:de:a9:01:9c:95:46:8c:9b:
4b:3f:f9:3c:4c:c2:d6:9d:d4:58:a5:84:e9:53:6e:
a1:bd:8c:bf:08:a7:d5:61:e2:cb:9e:4b:58:d8:f9:
d2:b0:bc:9a:73:a1:69:67:4e:d6:60:57:61:1f:7b:
6e:9d:54:e6:cf:96:b6:30:cb:57:69:35:f0:a7:cc:
96:9c:c5:cf:b3:87:97:c9:6d:e0:72:be:9c:b9:bd:
e5:d9:84:56:5b:ed:5c:96:d6:7b:04:39:0d:c1:0e:
07:1e:24:1d:ad:bd:04:d9:55:37:9a:a3:09:1b:05:
6a:3e:6a:e0:e1:0a:9c:25:72:f1:16:90:73:fa:8c:
eb:7b:c8:68:8d:d1:c0:b3:a5:c6:34:27:58:ff:81:
13:8a:0e:d5:e8:1a:cf:f7:9f:74:72:b0:88:fa:ea:
0a:6d:e9:14:ee:ff:7e:6f:31:77:37:0b:58:95:2e:
4f:39:83:c0:a0:6a:6b:c9:ff:0a:99:a8:43:3c:2f:
86:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:32:D4:91:CA:FC:15:C6:18:7B:F6:59:F3:82:C2:28:F4:67:5E:25
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8FC567C8A73C11EF955E42A4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.181.0/24
Signature Algorithm: sha256WithRSAEncryption
31:e5:d1:f0:6a:fc:9c:d1:b0:08:61:9a:88:b7:73:a4:b1:7d:
df:fe:2b:ac:ad:4b:25:d0:06:e6:0a:3b:f7:8f:3c:08:3d:34:
0a:1b:11:0c:bc:a5:a5:75:11:2e:00:91:ea:87:68:ef:c7:d5:
a3:b9:82:a1:91:27:31:31:26:e8:62:17:b5:a6:da:2a:a3:ea:
ff:18:9b:93:09:f9:fa:45:5b:6f:02:29:c5:64:7b:9f:97:5e:
d6:58:43:ee:dc:07:37:3f:6f:a9:d4:61:e7:ec:a3:f5:9d:35:
e8:40:8e:ac:20:d9:ca:5a:81:33:d9:a5:f5:1e:7d:14:00:b1:
16:a8:7d:8a:cb:db:2c:a0:b1:84:ac:ff:da:41:6d:85:c9:1e:
bb:47:85:57:b9:34:9f:b5:82:7f:cd:5e:ae:0c:aa:42:f8:74:
86:2b:97:97:35:2a:55:db:cc:11:6a:5d:73:6b:9a:bb:bb:16:
dc:f7:1d:1d:a5:fc:a1:c9:00:ca:4f:fe:c5:4b:9e:20:0a:b5:
1f:ba:b1:de:38:e3:95:22:dd:ab:f5:7d:30:27:67:15:bb:77:
d9:74:6b:ed:23:1c:d5:cc:cd:88:8b:20:f4:03:71:79:98:51:
d9:49:39:da:25:8e:60:c3:d1:70:d0:b2:04:17:4d:4a:69:8e:
71:0c:d7:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:38 2024 by rpki-client on console-fra.rpki-client.org