Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A72C67E2A0DC11EF92900F64762E951A.roa
File: A72C67E2A0DC11EF92900F64762E951A.roa (raw, json)
Hash identifier: 5wCjpONbq5X/aO+zoYe0uHiYm7Km741qI+Ca7+Hm7OY=
Subject key identifier: F5:AF:B6:46:E8:EA:5A:5B:C7:91:FE:E0:18:3E:55:CF:EA:AB:D2:37
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D18B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A72C67E2A0DC11EF92900F64762E951A.roa
Signing time: Tue 12 Nov 2024 09:58:23 +0000
ROA not before: Tue 12 Nov 2024 09:58:19 +0000
ROA not after: Sun 29 Dec 2024 09:58:19 +0000
asID: 149440
IP address blocks: 45.195.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53643 (0xd18b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 12 09:58:19 2024 GMT
Not After : Dec 29 09:58:19 2024 GMT
Subject: CN=673326bf-86f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:20:9a:da:5a:02:7a:0b:18:8b:e7:9e:1f:18:
ec:c3:07:1d:3f:40:8d:4f:92:43:19:f8:64:7c:de:
20:2c:23:e1:0b:5c:a1:4a:67:b0:04:6a:ee:ac:b0:
f6:b7:86:61:aa:d7:82:6e:38:6e:aa:7d:4a:ae:e7:
ac:9b:27:62:d9:93:97:be:b9:4d:4e:8b:00:3e:93:
0e:1b:aa:60:90:6e:35:eb:fb:5f:7d:1f:8d:34:aa:
f0:4e:19:df:78:a5:6d:c1:ea:63:1c:4a:af:81:cb:
43:65:1d:7e:b3:57:6b:51:f9:9e:a1:02:38:2d:c7:
51:ed:56:66:16:52:31:18:e3:b6:54:bc:af:aa:a1:
80:cd:8c:a7:23:15:f0:75:d3:fc:f3:10:8e:2b:79:
03:31:70:99:84:94:62:80:e0:33:f9:8e:67:35:18:
1b:e8:74:42:6e:f3:b3:3d:59:b0:7c:21:27:52:c2:
3b:8c:23:2b:25:8b:96:e9:c3:4a:78:a1:70:e2:95:
41:cc:8a:61:e8:b1:23:93:a3:a9:0b:53:e5:60:33:
7a:6c:6f:6e:c2:b6:9b:04:59:b7:68:4c:49:22:67:
c1:3c:ae:d7:d2:d8:47:73:2c:cf:0c:22:d2:8c:89:
d9:a4:21:1d:07:5d:44:07:4a:42:e9:6a:c5:af:75:
60:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:AF:B6:46:E8:EA:5A:5B:C7:91:FE:E0:18:3E:55:CF:EA:AB:D2:37
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A72C67E2A0DC11EF92900F64762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.69.0/24
Signature Algorithm: sha256WithRSAEncryption
52:ab:55:e2:a9:98:a6:fc:8a:0b:d2:ac:d4:b5:37:b1:a7:62:
ad:fd:8e:04:ce:02:cc:b3:fa:bb:94:8f:42:b4:5c:bf:55:b2:
ae:3b:0a:35:30:e7:b3:75:06:80:0d:23:40:95:0c:ae:72:84:
45:21:d1:87:03:08:a2:d0:21:af:ad:ed:3e:85:93:ca:cd:69:
37:2c:84:b2:24:63:e6:07:6d:f7:05:60:5f:df:dd:80:74:60:
8e:0d:e5:f1:50:28:10:cd:4a:96:ea:b5:f2:fb:02:33:72:4f:
fa:31:01:f4:0f:02:2f:45:65:c3:ae:9f:b1:96:fc:e2:ff:ca:
21:e8:49:b3:d1:45:bf:9e:03:72:f2:6f:ab:0c:b5:91:ee:62:
fb:b1:3f:05:49:01:4f:6f:b9:b3:67:e0:89:6f:0b:d1:1d:ad:
48:d3:d0:2c:30:ae:20:7a:d8:85:ed:59:65:7e:cf:b5:d6:f3:
2c:1e:da:db:2e:ca:f0:be:54:db:22:92:07:f4:65:00:f4:e0:
1f:cf:d1:8c:f0:54:95:11:45:3a:cf:96:87:b5:0b:6c:d4:80:
42:b2:ec:6f:4f:00:ea:20:52:76:27:98:18:f3:02:4f:85:6d:
1e:1b:72:a7:6b:9c:90:a0:dd:9f:86:ba:0d:ff:55:59:f6:f2:
04:16:d7:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:44 2024 by rpki-client on console-ams.rpki-client.org