Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A3F1C52EA72411EFA5F26391762E951A.roa
File: A3F1C52EA72411EFA5F26391762E951A.roa (raw, json)
Hash identifier: VsWaBVYyMMFGFjZL6YmcmTDHlHxoRx9yfVBuTod8pMQ=
Subject key identifier: 2D:50:55:E4:FE:48:8B:1E:F6:3A:92:2C:3C:1B:54:4D:A9:7F:3F:93
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D5D3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A3F1C52EA72411EFA5F26391762E951A.roa
Signing time: Wed 20 Nov 2024 09:48:48 +0000
ROA not before: Wed 20 Nov 2024 09:48:45 +0000
ROA not after: Mon 02 Dec 2024 09:48:45 +0000
asID: 39600
IP address blocks: 45.204.74.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54739 (0xd5d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 09:48:45 2024 GMT
Not After : Dec 2 09:48:45 2024 GMT
Subject: CN=673db080-0993
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:1e:01:7e:f8:08:dd:86:38:d0:bd:38:7e:31:
be:73:66:1d:f6:00:9f:c1:1b:0f:f7:2a:ed:85:70:
21:ab:b0:10:ee:4c:8b:16:33:ef:65:5c:9a:52:43:
6d:56:e1:ec:cf:17:a3:68:0e:a5:55:71:e4:a8:d7:
af:89:0c:bc:2e:d7:2c:d3:7b:23:85:3c:38:54:85:
05:e9:61:34:01:99:92:88:9a:67:c5:60:7d:0e:b9:
da:77:41:a1:cd:a9:d6:28:0b:8f:55:ce:55:b9:7c:
dc:03:de:e4:06:73:00:71:c4:82:ea:79:46:6d:f4:
07:f8:8a:ac:92:ed:ca:41:8e:12:8d:99:32:5a:a8:
07:79:b2:ab:9f:9f:60:6a:6a:43:3c:45:17:be:70:
3d:cb:17:97:03:2d:69:88:ca:ce:03:76:a9:a5:3f:
64:62:ec:62:83:38:6d:24:a3:24:72:ae:a7:23:00:
a3:d4:b9:a5:bb:8c:ba:67:04:5c:3e:7b:08:89:7b:
f0:b7:cc:f7:59:07:e4:cc:d1:f4:11:59:92:ca:d0:
68:4c:c9:9b:0c:61:0f:49:56:61:4c:b9:d1:95:b2:
1e:5d:7e:6c:96:1f:9d:8d:d7:97:63:b3:cd:0e:1e:
16:f3:81:40:b3:e8:b7:bd:ac:01:32:d3:6b:78:bc:
89:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:50:55:E4:FE:48:8B:1E:F6:3A:92:2C:3C:1B:54:4D:A9:7F:3F:93
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A3F1C52EA72411EFA5F26391762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.74.0/24
Signature Algorithm: sha256WithRSAEncryption
09:d7:d9:35:82:8b:4c:ac:35:d8:35:a0:2f:bd:6a:3b:10:43:
5e:f2:5e:67:11:1d:32:55:b5:23:46:09:80:9d:95:26:5a:ab:
d3:b4:3d:d9:eb:16:5d:19:74:e0:98:25:f7:a4:10:2c:3b:0f:
a5:bb:d7:10:76:62:ce:29:1a:00:33:1f:33:78:79:49:0c:61:
05:62:50:73:d1:f4:d3:38:c4:6d:d4:b1:41:e8:be:1c:8f:b2:
95:a0:f3:a4:02:9c:f5:db:56:19:86:e8:10:56:da:2d:d2:ca:
10:ea:26:be:e8:58:da:f6:56:70:19:ea:d0:fb:8a:71:3e:91:
bb:9d:89:94:08:bd:dd:a9:c0:75:49:3e:90:41:d7:41:80:40:
90:6c:bf:5e:aa:69:8e:9a:52:2e:dd:c1:d3:b1:1a:7e:35:d4:
b4:81:44:60:07:79:d5:ea:91:7f:86:bf:f2:f4:9c:19:48:06:
db:f2:30:82:6f:c3:63:aa:cf:76:e4:23:d9:db:93:91:27:13:
b4:f8:bc:35:f3:fb:d7:4d:b8:5a:7b:7d:ef:0a:e2:8c:d7:ce:
47:f8:73:68:a6:86:4c:b5:0d:cd:a9:24:31:ab:40:21:0a:3f:
98:59:ca:71:5b:46:0b:d3:6e:8c:c6:1b:55:62:a5:3a:de:e4:
4d:12:52:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:43 2024 by rpki-client on console-ams.rpki-client.org