Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9B6B08F6A4C811EF86609142762E951A.roa
File: 9B6B08F6A4C811EF86609142762E951A.roa (raw, json)
Hash identifier: WolivRwPLWPdB6u8Wd7C9x2A8RdP6f2xpc+tzToAWFg=
Subject key identifier: 10:44:2E:A1:96:77:FD:F8:68:04:4C:8E:CD:0C:54:8F:8A:72:55:D3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D4A5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9B6B08F6A4C811EF86609142762E951A.roa
Signing time: Sun 17 Nov 2024 09:44:58 +0000
ROA not before: Sun 17 Nov 2024 09:44:54 +0000
ROA not after: Mon 25 Nov 2024 09:44:54 +0000
asID: 5650
IP address blocks: 45.196.56.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54437 (0xd4a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 09:44:54 2024 GMT
Not After : Nov 25 09:44:54 2024 GMT
Subject: CN=6739bb1a-0da3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:6b:84:25:1e:f6:c9:2f:b3:f9:a2:d8:fb:5f:
a1:1e:fb:12:be:bd:32:72:f8:0d:7d:d9:ba:8c:f4:
61:99:f9:67:06:ed:53:d7:6c:a4:4f:e9:82:c5:b4:
4d:12:0a:a8:c4:98:1e:18:ef:a1:e9:40:6e:11:52:
6c:65:b9:1c:fb:29:9a:6d:01:c1:c5:86:f3:02:57:
0a:31:45:4d:2a:90:fd:91:95:d1:0a:a5:4f:76:36:
47:ad:78:60:d2:a1:c1:4b:59:58:48:11:c4:9b:c3:
02:8f:89:d6:c8:e0:55:e8:0b:be:28:60:43:be:5c:
28:05:7d:d6:3c:ff:9e:23:8e:7a:aa:18:53:25:6e:
05:aa:81:84:5b:d8:86:f7:d1:ea:eb:2e:5a:0a:fa:
d7:7a:98:da:20:c0:15:54:80:c9:77:96:8a:08:5a:
21:db:3e:62:00:17:ea:af:ae:e8:90:f5:06:cc:76:
2d:02:7d:19:21:43:c3:59:13:fb:90:9b:06:cd:c2:
b5:bd:a7:a7:08:f3:87:f5:41:fa:d8:4b:1d:dd:8f:
81:37:b9:cd:de:5e:18:39:c3:67:ed:a0:3a:26:9d:
a7:ca:c6:32:73:6e:65:8c:db:2a:49:48:f8:c5:a7:
b5:51:52:15:d6:c1:18:1b:2c:3a:19:9d:cf:57:65:
1a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:44:2E:A1:96:77:FD:F8:68:04:4C:8E:CD:0C:54:8F:8A:72:55:D3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9B6B08F6A4C811EF86609142762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.56.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:2d:40:a2:04:75:ae:3f:90:49:63:c6:17:87:bf:f0:ab:5f:
c7:79:ad:7c:23:8f:9e:ab:af:bc:27:29:72:a1:9f:86:da:a1:
a7:45:04:26:48:33:45:fb:37:5d:a0:01:d8:40:73:a4:27:a8:
bb:15:1d:04:36:f2:55:0f:19:95:1f:9d:87:16:92:e9:19:c0:
b3:2b:0b:e8:3c:d7:d5:90:a3:5a:a9:d0:93:3b:c2:1e:d1:6b:
9d:c8:3f:e2:f7:6b:45:c5:bf:66:9a:20:18:5f:8a:62:30:56:
54:ea:b4:50:93:18:cd:d4:a2:af:aa:b0:c6:94:45:aa:63:98:
da:e2:ef:13:cc:7e:2b:47:f5:ce:00:ce:cd:aa:86:00:55:2a:
98:8e:fd:7b:e3:64:88:b2:34:22:5f:08:2d:be:3e:8e:fd:a5:
f4:9a:f9:33:4a:fd:b7:23:c5:39:15:e7:73:cf:d5:6d:7e:0d:
e1:a5:54:d3:e2:44:d4:ce:dc:de:53:f3:5b:37:d0:8d:90:ec:
19:7b:27:bc:05:15:fd:bf:58:87:6f:da:09:7f:cd:14:b9:06:
a7:9c:25:3b:09:17:c3:ee:54:40:47:11:7d:65:1f:de:39:e0:
86:fd:c8:ce:86:81:ef:81:27:63:41:2a:94:68:e9:e3:b3:f1:
b6:39:51:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:40 2024 by rpki-client on console-fra.rpki-client.org