Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AE65A808982F11EFAB2BB4B8762E951A.roa
File: AE65A808982F11EFAB2BB4B8762E951A.roa (raw, json)
Hash identifier: Mg+5Ic37y+GP6ITe8VPZ+c9TP+EJEWUJEpDu+m38Kds=
Subject key identifier: D4:7A:C2:9D:24:FE:68:62:E4:93:84:B5:98:31:C4:E7:46:54:BA:2C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CB61
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AE65A808982F11EFAB2BB4B8762E951A.roa
Signing time: Fri 01 Nov 2024 09:00:03 +0000
ROA not before: Fri 01 Nov 2024 08:59:59 +0000
ROA not after: Wed 04 Dec 2024 08:59:59 +0000
asID: 42831
IP address blocks: 45.198.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52065 (0xcb61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 1 08:59:59 2024 GMT
Not After : Dec 4 08:59:59 2024 GMT
Subject: CN=67249893-ba3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:1a:77:b0:1c:56:3c:57:d8:f7:ae:cb:e5:af:
9d:3a:21:a7:10:25:d7:4f:50:bc:45:35:3d:48:d9:
47:10:a8:b3:87:a9:11:58:05:46:61:18:5f:e0:ed:
8c:f3:22:47:98:83:12:70:ca:ca:9b:b8:5d:ad:b9:
39:bd:69:d6:a4:e1:cd:9e:27:24:9e:0f:60:aa:a0:
e2:2e:59:b5:af:a8:41:a1:06:e9:9b:c7:c8:ba:cd:
82:52:71:21:52:53:cb:9e:61:3c:28:cd:ad:08:4e:
e9:72:8b:85:50:00:67:63:d9:fd:06:1d:7d:79:83:
b5:ea:00:c2:53:19:bf:20:cb:22:45:68:df:08:5e:
cb:49:34:9f:52:43:72:58:f9:b4:51:cc:89:9a:5c:
0c:ee:57:74:be:89:e3:bd:97:1c:dd:eb:6d:ac:78:
b8:71:ae:38:62:37:47:d3:6b:20:ed:56:b7:4c:5c:
a5:86:8b:a7:ac:d6:92:a9:03:7a:1d:b6:4b:2c:f3:
cd:50:79:fa:eb:b9:58:21:e4:02:75:6e:11:77:ee:
13:74:08:47:20:c8:ef:3d:24:26:5b:55:a0:ff:bd:
26:cb:7f:9f:84:b3:0a:b3:52:d7:4d:cd:c6:cc:d0:
82:8d:79:12:46:b5:37:3d:6d:1a:69:ce:c5:27:6e:
41:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:7A:C2:9D:24:FE:68:62:E4:93:84:B5:98:31:C4:E7:46:54:BA:2C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AE65A808982F11EFAB2BB4B8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.64.0/18
Signature Algorithm: sha256WithRSAEncryption
a3:fa:91:02:da:24:50:e9:a0:24:63:1c:64:7b:31:2a:36:12:
b5:5b:8a:47:2c:3a:d8:b1:55:a1:c5:f8:c3:ad:bb:a7:31:1b:
c6:f6:28:7e:71:8d:e5:4f:76:2c:c2:24:5f:dd:1c:c1:ff:36:
26:cd:7e:8f:70:36:93:71:a6:fe:31:39:e1:2f:e3:04:6c:82:
b9:31:57:21:9b:a6:b3:6b:78:8e:6e:a7:dc:4e:88:2e:a0:fb:
a3:99:1b:40:a8:2c:92:d0:f2:7f:20:3b:a1:11:2e:e5:63:ff:
98:2b:e8:a4:8a:51:e2:2a:fd:b6:83:b7:cb:9c:18:02:a8:1c:
58:c9:11:06:1f:93:8e:cb:d3:b7:12:83:53:e1:c9:0f:4d:f1:
76:cc:45:4f:bf:d0:a7:16:aa:99:7a:d9:e9:cf:5e:1a:48:cc:
68:97:59:0c:19:0d:28:b3:bb:54:65:30:8c:91:52:9c:cd:33:
19:f2:c6:aa:e5:68:31:08:c7:73:c6:b8:a5:a3:d0:be:2d:cd:
e2:be:57:59:65:22:0b:3f:f8:cc:1e:3f:c5:e0:2f:80:35:54:
ed:20:4d:95:ed:89:5d:5a:37:46:7c:8a:ef:78:48:43:c1:39:
40:ff:7b:4e:ca:ac:21:48:14:30:ca:bb:2a:90:19:48:69:e6:
f6:31:f5:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:45 2024 by rpki-client on console-ams.rpki-client.org