Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A5CFE3D4A19E11EFA97E0C54762E951A.roa
File: A5CFE3D4A19E11EFA97E0C54762E951A.roa (raw, json)
Hash identifier: ptcYiz8cuz2gjf//Vzd++r0Ja6Oh4ygnSRtgLlPxmKM=
Subject key identifier: 3A:63:43:E9:0E:F7:AE:37:B0:B7:B3:53:FF:49:9D:4D:1B:81:B6:DF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D266
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A5CFE3D4A19E11EFA97E0C54762E951A.roa
Signing time: Wed 13 Nov 2024 09:07:03 +0000
ROA not before: Wed 13 Nov 2024 09:06:59 +0000
ROA not after: Sat 23 Nov 2024 09:06:59 +0000
asID: 39600
IP address blocks: 45.196.132.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53862 (0xd266)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 13 09:06:59 2024 GMT
Not After : Nov 23 09:06:59 2024 GMT
Subject: CN=67346c37-b4f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f3:ba:56:07:76:c0:1b:7c:19:53:cf:54:ae:
e3:04:3d:72:37:09:00:37:24:f5:36:e1:6d:2b:8f:
1a:25:49:2d:cd:2e:90:da:92:1d:84:46:e3:a4:b4:
98:64:ef:cf:57:08:89:45:3b:67:95:53:a6:84:89:
18:23:fa:03:7e:54:22:8a:3f:f1:ef:a9:4a:2c:73:
66:0d:ed:4e:bc:2a:fb:8a:bc:24:bf:e1:bc:4f:0e:
3d:f8:e5:3b:b0:ce:59:e1:75:1e:69:c1:a0:cb:ac:
ba:a4:10:96:67:97:92:6d:e0:59:e6:17:0f:6b:a4:
36:8e:dd:5d:f8:58:87:3b:2e:5f:b8:bc:7c:14:76:
ff:c6:89:29:61:9d:a8:56:9e:67:54:be:fd:1c:c2:
96:71:8e:48:e6:34:a9:2f:7a:5f:7b:3a:41:86:c0:
64:d0:b8:0f:50:bd:1f:a3:3a:19:ab:83:49:60:ee:
5f:a4:57:9d:e6:53:ea:49:ef:45:cb:e7:51:6b:fa:
8e:8f:b9:65:c8:e3:e8:da:46:7b:f5:10:46:be:08:
e2:6c:fc:3b:3a:b8:f1:1a:a8:c0:0d:05:46:09:6b:
26:f8:34:76:aa:87:4a:9a:14:ad:b8:a5:9e:f1:85:
c5:50:b9:e9:e4:df:fb:1e:2d:35:a5:45:c4:9c:0f:
00:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:63:43:E9:0E:F7:AE:37:B0:B7:B3:53:FF:49:9D:4D:1B:81:B6:DF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A5CFE3D4A19E11EFA97E0C54762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.132.0/22
Signature Algorithm: sha256WithRSAEncryption
98:5d:81:c9:81:02:3a:98:27:75:37:35:b7:ab:12:d5:8f:87:
67:8e:a8:5c:b8:43:0f:0c:df:65:2c:4d:b3:cf:49:83:a7:e6:
38:dd:2b:70:81:ee:f9:de:52:71:fb:9d:fa:01:35:db:fc:0f:
a8:fd:8c:9c:e2:77:8f:5b:17:ac:94:6c:0a:10:59:5a:d8:67:
7a:6f:7d:c7:90:56:fb:31:0d:d2:a2:97:5f:ad:dd:87:eb:3a:
fd:a9:c3:44:f5:7b:bc:a6:44:10:11:6d:61:60:ef:ed:b6:6a:
03:26:7e:eb:cd:35:ec:d5:ba:d6:c1:ab:b3:0c:0a:62:f0:c2:
91:32:87:0b:d3:8c:c6:65:ef:d7:4e:68:b8:82:51:8e:81:43:
4e:76:97:2b:96:b1:95:b5:e3:12:c7:41:11:d6:55:6e:f0:41:
4d:76:78:8f:8c:30:38:09:c1:0a:4f:f0:0e:d8:3b:a5:a0:4f:
a3:fc:32:35:0d:4a:75:e4:a8:f9:34:67:7d:7b:da:56:97:d1:
5b:22:98:e3:a2:6c:a7:dd:2b:c1:22:2a:60:d5:71:a9:d1:09:
38:e5:05:55:1f:92:ce:3f:45:18:25:b3:c9:8a:cb:f9:06:99:
2e:77:de:63:26:4b:89:94:50:35:71:b1:1d:80:fc:a6:2e:d2:
5b:2b:59:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:42 2024 by rpki-client on console-fra.rpki-client.org