Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AB3C4B64A74D11EF8ADF2790762E951A.roa
File: AB3C4B64A74D11EF8ADF2790762E951A.roa (raw, json)
Hash identifier: tasfrASZw+Smpd9f4fxQ0yfe3s3Wa2vTnL516uPI2UA=
Subject key identifier: 44:08:A1:DD:97:3C:5E:48:A1:F5:1D:6E:D9:33:E2:FB:6E:84:F4:3D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D6C8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AB3C4B64A74D11EF8ADF2790762E951A.roa
Signing time: Wed 20 Nov 2024 14:42:30 +0000
ROA not before: Wed 20 Nov 2024 14:42:26 +0000
ROA not after: Sat 30 Nov 2024 14:42:26 +0000
asID: 202656
IP address blocks: 45.199.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54984 (0xd6c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 14:42:26 2024 GMT
Not After : Nov 30 14:42:26 2024 GMT
Subject: CN=673df556-c415
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3d:6e:44:0d:3c:0f:0d:23:99:19:c0:35:6e:
92:b9:07:76:5d:28:78:2f:02:61:df:93:f7:d8:0b:
1f:d3:4a:0c:3b:e9:38:02:54:07:df:9f:91:83:2e:
be:d4:87:97:a2:8f:e6:05:6e:a4:4c:37:63:d0:ca:
12:41:28:73:97:d2:af:06:8c:1b:8b:28:f9:e3:ef:
31:42:d6:81:23:9b:fc:4d:d5:5a:7a:aa:1a:ec:5c:
e4:24:c1:d9:6f:5a:b1:e4:6d:89:40:fd:92:c3:ea:
7a:d9:60:42:ed:44:65:ed:c8:3f:d3:56:05:a2:28:
68:3c:c2:ba:ea:c2:5b:d8:f8:47:d1:f3:a3:a5:35:
e1:06:6b:a3:e3:d2:8e:4e:58:20:b9:49:0e:50:b2:
4a:50:ef:20:13:1d:4f:f4:2c:fb:0a:17:96:55:dd:
9d:1e:b6:99:24:a8:5a:29:ae:48:c4:2e:c2:ef:b2:
60:40:ef:5d:2e:71:47:b3:31:88:30:bf:c1:5d:e2:
e6:0c:67:4d:08:21:40:be:99:17:c4:36:b6:a5:41:
da:46:80:90:68:80:df:a1:82:b5:c1:7d:e2:67:28:
be:2d:80:b7:4e:83:42:a7:2a:f7:0e:d3:06:02:23:
00:51:46:c4:4b:d4:40:b9:49:02:37:7c:83:5c:33:
68:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:08:A1:DD:97:3C:5E:48:A1:F5:1D:6E:D9:33:E2:FB:6E:84:F4:3D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AB3C4B64A74D11EF8ADF2790762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.226.0/24
Signature Algorithm: sha256WithRSAEncryption
77:b3:87:ce:8e:a9:d8:d7:20:3a:43:7a:cc:db:bf:3c:5e:f9:
54:68:44:9f:0e:63:69:58:b2:a8:71:74:ac:f9:75:bd:4f:fa:
e4:08:20:7e:17:17:1f:7c:8a:23:77:22:eb:3d:37:fa:45:22:
8d:63:ff:42:7f:21:a9:19:32:45:eb:70:58:36:16:19:7f:53:
a0:3d:2c:f4:71:49:9f:90:50:4b:1e:87:57:6f:f3:39:73:28:
ce:a9:5e:08:c9:ba:5c:75:97:aa:4e:64:e4:95:63:9a:53:c8:
37:8c:cb:6b:9a:ed:08:ab:72:2a:19:dc:82:33:36:a3:72:ba:
29:68:d4:8d:62:5b:da:d3:54:1f:90:f0:af:ff:ce:de:b1:20:
73:15:02:d2:84:ef:21:c7:a6:34:af:f5:ca:fc:09:f5:16:de:
04:43:76:34:f9:fa:35:ca:9f:85:2f:ed:cf:97:18:67:c0:7f:
0d:cf:cd:ee:e2:42:fd:db:24:75:7a:b2:27:a1:af:4f:06:ad:
18:45:bb:ee:d4:c2:b9:99:c7:79:f6:a6:65:19:0b:82:08:e4:
1b:b2:7c:c8:1e:06:7d:de:93:70:58:d6:e7:15:60:6f:b8:66:
57:85:5c:a1:e1:1e:77:9a:11:7f:7d:d0:78:9d:08:66:8d:81:
7c:6f:29:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:44 2024 by rpki-client on console-ams.rpki-client.org