Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9B1B1ACC24A211EFA30B4EFA7CDC24C2.roa
File: 9B1B1ACC24A211EFA30B4EFA7CDC24C2.roa (raw, json)
Hash identifier: gBDHE+gUiKeicmSVqtPcIFead+yhIz3BMXVTWAwN3eY=
Subject key identifier: D9:BE:DF:5C:8A:82:F4:FF:EE:9E:05:9E:06:DC:EF:36:C1:3A:A8:BD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8FD4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9B1B1ACC24A211EFA30B4EFA7CDC24C2.roa
Signing time: Fri 07 Jun 2024 07:50:28 +0000
ROA not before: Fri 07 Jun 2024 07:50:24 +0000
ROA not after: Wed 04 Jun 2025 07:50:24 +0000
asID: 137577
IP address blocks: 45.195.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36820 (0x8fd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 7 07:50:24 2024 GMT
Not After : Jun 4 07:50:24 2025 GMT
Subject: CN=6662bbc4-b678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:60:96:fc:0c:61:16:d2:76:64:4f:b4:30:9b:
77:25:c4:15:d1:d8:d0:03:0c:21:1d:f4:d3:2b:a4:
eb:0a:f5:38:a1:70:aa:92:5b:6c:14:1a:e3:bd:b5:
88:40:c2:33:db:ee:d9:14:a3:8b:d3:7a:f8:4b:fc:
9a:4a:0d:df:9b:5d:a1:82:57:a7:a3:f6:6a:37:d7:
32:4e:e0:3f:db:a1:58:0b:cd:28:76:32:59:92:a0:
d7:54:e8:b0:3b:5f:9f:f2:12:7c:b3:ed:a0:c0:d2:
bf:15:72:6e:df:8b:67:3c:da:73:33:92:17:9c:0f:
d7:cc:be:1e:db:b8:9c:8f:c8:79:db:b0:0a:5b:5f:
b2:d2:82:12:a9:1e:f3:38:da:dc:40:80:97:73:b9:
29:3f:f3:52:d0:f8:66:b5:79:c0:08:a1:a0:ee:ca:
db:c6:88:f7:0e:43:15:dd:92:b3:34:20:ae:39:19:
fa:80:b2:aa:64:df:00:17:96:b0:d3:29:d3:ac:8e:
2f:b0:89:44:77:62:6a:74:f6:70:58:9f:18:29:8f:
f5:8b:d0:27:3f:96:c5:87:cd:d5:f0:3b:27:62:0c:
57:cc:03:bc:40:1f:f3:e7:54:29:e0:2a:7a:ab:cb:
f5:49:cc:69:aa:d3:7f:90:82:57:cb:af:7b:54:db:
9c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:BE:DF:5C:8A:82:F4:FF:EE:9E:05:9E:06:DC:EF:36:C1:3A:A8:BD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9B1B1ACC24A211EFA30B4EFA7CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.49.0/24
Signature Algorithm: sha256WithRSAEncryption
48:d3:4c:20:c4:0e:eb:7f:17:c6:6d:9c:a5:c0:d3:cc:ab:a3:
26:b1:16:bc:4b:6c:5d:8a:a9:a2:66:3b:fb:8b:20:35:83:73:
f5:77:bb:4a:13:c7:bc:41:03:d7:1e:56:ed:04:7b:f0:d2:81:
63:27:29:9f:35:95:4b:31:8c:59:35:13:29:af:03:9f:27:6c:
12:86:66:f9:d2:5c:8d:43:83:dd:d4:af:1e:13:8d:2c:96:64:
d2:ed:0e:8f:d0:dd:95:c2:b3:71:a6:b8:61:75:cd:1a:40:51:
b0:5e:ea:1e:cd:2c:ef:5c:38:05:ba:29:59:ca:25:3b:a0:62:
da:4b:11:ad:e2:89:c7:e0:75:b3:16:8b:aa:74:73:67:54:dc:
49:a3:e3:de:27:fb:3f:b7:04:a7:23:13:bd:65:7e:0f:d0:cf:
83:9e:f4:a8:8c:39:50:79:cd:79:36:88:c0:7f:3d:30:7d:17:
fa:28:8e:26:93:dd:1d:ef:b0:88:1d:4b:11:b7:bb:f3:a8:85:
b9:1b:cc:e2:59:42:a0:90:9b:1e:37:53:c4:6a:2e:ef:45:b7:
a1:39:72:84:d2:cb:df:8e:c2:bd:81:15:4c:3a:a3:5c:57:36:
0f:24:6d:1a:cb:de:a4:51:75:07:35:c6:56:4b:f9:e7:52:a7:
d2:fd:3c:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:40 2024 by rpki-client on console-fra.rpki-client.org