Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9986379AA70711EFAF3FE35D762E951A.roa
File: 9986379AA70711EFAF3FE35D762E951A.roa (raw, json)
Hash identifier: RfrMBEA279YZWD/0oAIWp9Yj+w0V2t928oAfFeuhDFc=
Subject key identifier: B2:DD:11:F4:97:5E:FB:B6:D9:A2:B9:C2:7A:94:2D:54:23:C4:11:79
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D59B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9986379AA70711EFAF3FE35D762E951A.roa
Signing time: Wed 20 Nov 2024 06:20:55 +0000
ROA not before: Wed 20 Nov 2024 06:20:50 +0000
ROA not after: Sun 22 Dec 2024 06:20:50 +0000
asID: 395793
IP address blocks: 45.198.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54683 (0xd59b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 06:20:50 2024 GMT
Not After : Dec 22 06:20:50 2024 GMT
Subject: CN=673d7fc7-8162
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:38:a0:ab:8c:c0:44:02:ee:cf:18:fa:87:79:
7e:e9:3a:98:62:13:f3:85:14:a4:65:38:bc:d3:ee:
cf:74:67:ee:3a:41:dd:be:d8:12:90:a9:83:13:4a:
89:6a:fd:dd:c9:27:81:83:7c:20:a5:67:ae:df:dd:
96:70:6b:8d:d5:d9:61:1f:b7:2e:b5:17:cb:2a:66:
e4:09:6a:47:17:62:56:67:11:f0:97:51:7b:00:91:
d9:c0:15:b1:3f:b0:94:9b:66:de:a8:fc:07:18:50:
b7:69:9b:4b:fc:66:ec:46:1e:3a:db:15:89:5f:ef:
7a:ea:ec:1d:81:4a:70:d9:e6:52:c4:4f:c9:b3:b9:
0a:a7:6c:4f:87:4a:48:02:a3:da:0f:fc:bc:0e:da:
0e:86:d9:44:48:37:68:d5:32:02:59:f5:7d:d6:c7:
08:9c:13:e0:2e:60:d0:6e:75:93:0f:d5:32:e3:34:
5d:68:d0:df:84:63:1b:b8:42:9a:bc:4f:6b:39:9d:
59:84:19:4f:8f:5d:20:c2:67:c7:26:9e:33:85:74:
6d:83:2a:7a:2b:81:0e:91:75:3f:31:83:bc:98:a4:
78:5b:6f:9e:ea:15:d3:ba:8a:f9:66:fc:e1:f3:1d:
a2:01:f9:a6:3a:d8:09:7a:11:22:05:e3:9e:bc:6e:
ff:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:DD:11:F4:97:5E:FB:B6:D9:A2:B9:C2:7A:94:2D:54:23:C4:11:79
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9986379AA70711EFAF3FE35D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.183.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:8e:2f:bb:fc:9c:d1:fb:56:5a:4b:1c:e0:18:35:4b:82:c2:
d3:46:77:7f:b2:ec:ec:e9:b2:3e:de:a2:7e:fd:09:c3:d4:61:
81:93:8b:bc:17:fa:d6:15:f6:5f:88:d3:d6:b6:05:c3:71:4f:
cb:8a:db:b9:ff:90:a2:99:9d:1a:de:82:07:8e:bb:1b:25:7d:
4e:1b:48:6e:dd:49:a3:89:b2:86:61:b5:8e:70:ec:54:9d:5d:
4c:fd:3b:cb:ea:65:25:9c:2b:52:e8:a5:3c:1f:e0:24:b0:89:
ee:b9:0f:04:b4:c6:17:27:9f:43:89:72:f1:97:fb:ae:0c:ab:
e2:3f:b7:12:5a:0f:02:b3:ef:e3:c0:ed:63:fc:0b:9f:05:9a:
fb:d3:c6:ec:e6:eb:b2:96:93:00:4b:48:2a:0c:31:57:7a:5b:
b6:89:4e:d0:3a:e9:da:b4:b6:28:05:7f:45:39:d3:3d:d5:cb:
d2:a5:fa:9b:1c:21:51:1b:87:0e:d9:76:3d:45:10:43:c5:8c:
95:55:00:36:fa:c9:aa:9b:96:89:63:86:ec:59:4a:0f:6e:b9:
18:3b:97:1f:cc:11:5c:6e:b5:60:fc:be:f1:eb:ff:5a:52:b5:
b0:e7:86:c1:8e:54:af:68:45:63:dd:f1:a3:b2:68:8e:40:44:
ea:0d:b1:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:41 2024 by rpki-client on console-ams.rpki-client.org