Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9D956AC49A9411EFA5202055762E951A.roa
File: 9D956AC49A9411EFA5202055762E951A.roa (raw, json)
Hash identifier: yYywkXHGMScbw8bRgRHjsehHwDV0L6rDpYGIztziQ3c=
Subject key identifier: 02:A8:FB:5C:A7:0B:0D:90:CC:CB:3D:8E:0A:0A:CD:75:D1:63:84:1E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CD64
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9D956AC49A9411EFA5202055762E951A.roa
Signing time: Mon 04 Nov 2024 10:07:36 +0000
ROA not before: Mon 04 Nov 2024 10:07:33 +0000
ROA not after: Mon 25 Nov 2024 10:07:33 +0000
asID: 44559
IP address blocks: 45.197.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52580 (0xcd64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 4 10:07:33 2024 GMT
Not After : Nov 25 10:07:33 2024 GMT
Subject: CN=67289ce8-0657
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:81:6d:a7:16:0e:22:89:1a:ef:dd:b6:42:eb:
16:09:54:e9:fc:87:13:0f:ca:a8:14:61:e8:7b:13:
ed:06:d6:e5:ef:c0:69:eb:2e:d5:9c:e7:a2:19:ab:
84:a7:e1:1a:88:27:ed:72:9b:58:ed:66:14:1f:36:
9b:3d:7c:cf:b5:07:0c:3f:db:72:9c:bb:a2:c5:15:
9b:e5:8c:cd:e9:9b:94:55:53:79:32:48:2b:42:7c:
59:bf:97:e0:46:79:cf:1e:00:78:a4:23:d1:6d:55:
57:b8:0d:06:be:86:15:a2:83:14:62:79:9d:02:38:
f9:ba:37:f6:b4:87:84:49:d4:71:18:d1:9a:b6:e7:
5c:ed:3b:2f:3b:1e:be:f1:ec:b4:90:2c:a0:0c:52:
8d:d6:d5:0e:4f:94:2a:0b:56:b8:cb:f8:f5:88:e2:
26:c0:9f:6e:f9:21:36:41:c6:b6:9d:84:37:50:e0:
dc:4c:a6:cf:fd:84:f7:e4:43:e6:4f:cc:d8:47:89:
6d:44:c0:5f:33:a2:f0:f6:17:75:ce:d6:80:ae:1a:
22:ff:74:9b:86:e3:9c:0c:9f:25:f4:eb:3c:48:b4:
cf:33:42:77:9e:29:21:02:bc:8b:15:e3:5c:17:6f:
10:93:71:31:36:4c:b6:52:e0:eb:7e:7a:6b:0e:23:
6c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:A8:FB:5C:A7:0B:0D:90:CC:CB:3D:8E:0A:0A:CD:75:D1:63:84:1E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9D956AC49A9411EFA5202055762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.141.0/24
Signature Algorithm: sha256WithRSAEncryption
32:6c:48:e3:3f:98:b0:4d:45:24:8f:a0:ff:56:4d:34:da:28:
d4:a2:f5:3b:45:5c:00:a0:47:47:56:22:bb:bf:8e:8e:76:27:
b3:3f:16:36:ab:31:88:4d:8e:d0:58:21:bb:9c:2e:16:aa:38:
6a:76:a1:a8:8e:62:a3:da:cc:2a:65:9f:25:80:d4:da:0e:0d:
cc:4c:6e:33:28:36:cd:b8:62:91:f0:65:e3:90:7a:db:4d:22:
08:09:64:87:e5:77:37:de:ea:c2:a1:fe:df:e2:9a:e1:9f:71:
ea:b7:b5:02:52:10:c9:fa:6f:3a:38:4a:92:50:dc:c5:31:3e:
9c:2d:43:9f:e1:32:2d:b2:1b:85:f2:1f:3a:4d:24:7b:96:60:
15:14:fa:75:95:25:86:19:8e:da:c9:ed:76:2d:38:a8:91:45:
cf:ae:b8:90:96:0a:00:83:c2:56:51:7f:f6:10:37:71:16:bc:
d1:24:57:4a:ad:5c:db:5a:0c:6a:1d:c2:26:12:72:7a:54:ae:
a4:ac:60:a6:a2:93:28:c5:96:84:6b:1c:68:e4:ac:db:ca:4d:
ef:4e:f8:e3:f3:0b:a7:40:95:53:84:bd:a2:bf:76:72:a2:bc:
5f:90:e0:4f:42:9f:b9:8d:e6:b6:f6:61:71:cd:72:f0:35:33:
a3:11:77:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:40 2024 by rpki-client on console-fra.rpki-client.org